Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier: 8AD3ncBUn8N6dd1rnRjd6ScWZz0tpxC5PleZ/pecIck=
Subject key identifier: DB:81:EE:B0:FF:07:60:48:7C:3E:C3:31:27:B0:9E:D7:D5:93:08:54
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial: 01965492ED47B9AC33A60FF5F0911322A1ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number: 09
Signing time: Sun 20 Apr 2025 19:00:37 +0000
Manifest this update: Sun 20 Apr 2025 19:00:37 +0000
Manifest next update: Mon 21 Apr 2025 19:00:37 +0000
Files and hashes: 1: ZZ126kZc2Gs9amlt5Rc0VmUZOPw.roa (hash: laA9ImB0VtnpNlOC8RmvM5URSIvzaqpg8ewZvS5hOLw=)
2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: KBqKNSnBTsrD48/r2/zhZn9xKfrz/GBfMukIwkXe99c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 19:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:92:ed:47:b9:ac:33:a6:0f:f5:f0:91:13:22:a1:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Validity
Not Before: Apr 20 19:00:37 2025 GMT
Not After : Apr 21 19:00:37 2025 GMT
Subject: CN=db81eeb0ff0760487c3ec33127b09ed7d5930854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8d:87:ca:83:6f:c5:52:34:67:78:cd:f4:5b:
cc:5c:3e:38:ea:a5:91:2c:e2:7e:23:1c:c6:bc:cc:
46:64:2d:bd:e0:b5:b4:6c:cf:a4:da:b9:12:b5:68:
81:5c:31:26:64:8b:59:98:71:ae:64:2a:1d:df:e2:
89:50:d8:7b:2b:7b:b3:ba:c0:0c:37:5c:5a:c2:6e:
03:a0:c8:09:69:4c:65:2c:a9:66:d7:d6:2a:64:8b:
e5:1f:66:14:2f:23:55:e4:79:c2:dd:96:a5:22:3b:
a2:d7:6a:2c:e4:23:d6:fc:84:10:29:88:91:3a:9c:
89:27:16:b5:07:46:c8:8f:cf:45:d4:0e:19:c2:46:
f7:82:33:c9:f9:a9:53:d0:f6:fc:ce:e2:72:9a:05:
16:d8:c8:90:03:82:db:9a:fc:f2:d9:e5:95:87:c2:
a6:06:b9:51:e0:e0:d0:b8:67:fd:98:4b:69:57:84:
21:83:5a:24:93:3c:d2:7b:97:cc:f8:55:12:0c:00:
64:fc:d1:ed:c3:ac:51:9c:f2:c8:de:f4:98:50:b5:
13:8f:d8:4c:1c:b1:ed:8d:05:19:56:4b:46:cc:70:
46:9e:68:2f:da:08:12:68:ce:08:6b:53:e5:72:75:
f7:b5:86:e7:41:be:55:2e:c3:70:19:50:28:37:16:
d1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:81:EE:B0:FF:07:60:48:7C:3E:C3:31:27:B0:9E:D7:D5:93:08:54
X509v3 Authority Key Identifier:
keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:0a:69:16:d9:c6:2d:ae:67:a1:c9:8d:6f:4c:e6:22:e8:4e:
46:ab:b1:07:41:16:da:0e:0c:d3:5c:38:35:be:17:d9:5f:ba:
8e:2b:f2:3e:f9:2a:0e:d1:9e:d0:99:15:b9:f4:b6:f4:61:2b:
c7:6f:c5:54:99:f5:2c:25:0d:2d:b0:5a:3f:3d:9c:68:66:de:
60:bb:55:eb:40:4d:d1:b3:28:f1:11:46:8a:ef:d5:d0:c6:20:
72:fb:c8:e5:cd:1b:c6:c2:8e:c4:30:a9:be:55:45:76:f0:18:
ed:12:da:ed:4a:43:04:1d:70:09:19:03:2f:7b:46:87:25:ee:
67:94:cf:cc:bc:1f:f1:bd:86:d4:ab:43:93:7c:f8:6d:24:1a:
c1:e0:a1:75:ff:6f:89:6c:58:86:04:2f:d6:81:17:f9:ec:ae:
29:4c:2e:86:1d:49:0a:ae:17:b2:d4:4a:7b:f6:25:0e:14:a0:
a7:b2:dd:48:ad:15:7f:ed:c1:f3:33:66:09:d4:e9:82:3b:5f:
d3:9a:44:0f:77:3c:e7:0b:4a:a1:06:41:19:35:40:7e:16:e2:
08:04:f0:03:f3:01:b1:cd:d1:32:f8:e6:5a:1b:31:43:66:b4:
fa:2f:5d:60:c9:10:15:6c:9a:0a:f8:4b:94:cb:6a:bc:21:e3:
74:6d:e3:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:23:05 2025 by rpki-client