Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.mft
File: D81k6vJZSCLz-aLrzRnbm3-nDZo.mft (raw, json)
Hash identifier: GORvRNPFwv4YCCbcaVxDaT41eLUoXN/6+b3tWrC9ma8=
Subject key identifier: 8B:B3:B4:58:D9:74:D0:A9:11:83:D7:44:95:E7:D0:AC:FF:9E:1A:7B
Authority key identifier: 0F:CD:64:EA:F2:59:48:22:F3:F9:A2:EB:CD:19:DB:9B:7F:A7:0D:9A
Certificate issuer: /CN=0fcd64eaf2594822f3f9a2ebcd19db9b7fa70d9a
Certificate serial: 019657CB4F2A29AC6AE5EA4ACC821DA610A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D81k6vJZSCLz-aLrzRnbm3-nDZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.mft
Manifest number: 0107
Signing time: Mon 21 Apr 2025 10:01:03 +0000
Manifest this update: Mon 21 Apr 2025 10:01:03 +0000
Manifest next update: Tue 22 Apr 2025 10:01:03 +0000
Files and hashes: 1: D81k6vJZSCLz-aLrzRnbm3-nDZo.crl (hash: OwjyAde+56x1azgfftvkH2Cv646ubiUz80xac5C+Cjs=)
2: tCQKTUl91gUF9YCakBjVvOmahA8.roa (hash: +o4wlq7VWOUaSft8SFBzstGqOiur0Xr8ur6qt9Ob1Nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/D81k6vJZSCLz-aLrzRnbm3-nDZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:cb:4f:2a:29:ac:6a:e5:ea:4a:cc:82:1d:a6:10:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fcd64eaf2594822f3f9a2ebcd19db9b7fa70d9a
Validity
Not Before: Apr 21 10:01:03 2025 GMT
Not After : Apr 22 10:01:03 2025 GMT
Subject: CN=8bb3b458d974d0a91183d74495e7d0acff9e1a7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ae:38:e6:0c:42:54:a6:c0:00:26:13:e4:02:
47:98:9f:de:c0:77:0d:75:db:74:eb:03:6e:ca:a1:
bb:86:42:51:35:0c:a0:8b:6d:d2:61:e9:9d:b1:19:
94:20:b6:68:75:08:4a:99:63:bd:be:6d:8e:a0:87:
ed:0f:12:04:a3:5c:a9:f3:0e:1b:58:4e:5d:81:98:
81:a8:53:e0:18:91:5d:31:b5:d0:e4:af:ad:95:43:
77:2d:05:f0:4b:48:46:94:bf:d0:61:ff:62:00:c3:
07:a6:6a:c7:49:1d:e6:7a:39:90:92:30:62:4e:87:
3b:66:f5:4f:ea:a3:33:cb:a8:fb:df:f6:14:42:13:
41:dd:d2:a2:67:87:02:b9:5c:24:ef:df:65:bf:00:
33:8b:73:9f:18:0a:e4:6c:01:97:02:6a:c7:77:2a:
cc:7c:cb:27:c4:a2:6b:ee:e0:6c:3b:8b:6f:57:f1:
d7:df:2a:88:a0:d4:37:e1:e4:c6:bd:81:ad:2c:77:
79:27:c5:59:16:4d:1c:c6:35:9e:ec:aa:e4:8c:fa:
6a:d2:1c:62:c9:ce:ba:1c:d2:6d:92:bf:b1:1c:15:
e4:9f:76:0c:03:93:ff:a2:55:78:d9:54:57:53:84:
89:32:26:33:55:79:e8:e7:83:bf:4b:a9:0a:2e:61:
c1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B3:B4:58:D9:74:D0:A9:11:83:D7:44:95:E7:D0:AC:FF:9E:1A:7B
X509v3 Authority Key Identifier:
keyid:0F:CD:64:EA:F2:59:48:22:F3:F9:A2:EB:CD:19:DB:9B:7F:A7:0D:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D81k6vJZSCLz-aLrzRnbm3-nDZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0e6542-3abe-45a1-a838-1a37f1076557/1/D81k6vJZSCLz-aLrzRnbm3-nDZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:42:84:f4:2e:af:d4:91:08:10:cd:11:12:c0:16:05:f9:ae:
0a:a3:ac:5f:f2:45:d5:98:ff:11:41:8b:01:f0:1d:a7:4e:3f:
e9:13:a7:d8:62:3a:0a:9a:5e:a4:7f:13:3b:f9:e7:bf:56:61:
84:8e:0f:93:e2:13:3d:51:83:4b:6d:29:90:9b:b1:8f:ae:d4:
f4:14:a7:fd:c0:3b:d6:80:f6:13:07:ad:9c:71:d3:30:7f:71:
55:d6:9a:bc:3f:46:12:42:3d:24:1e:44:b4:3b:7a:69:1c:53:
61:7a:47:b6:af:ba:66:84:93:47:2d:3b:d7:ba:0b:01:f0:7d:
09:fa:69:f0:90:7c:0e:c4:e7:b9:af:29:09:65:ac:6d:bd:c0:
cd:dc:cc:d6:95:63:01:7d:ef:f6:fd:56:37:b8:7d:86:9b:ab:
4b:25:be:3d:74:93:10:fa:4b:8b:e9:6d:91:ae:57:a3:22:d0:
da:1c:88:ca:f0:d1:52:58:05:01:5f:7d:7f:ee:be:9e:51:c5:
e9:70:f0:fc:cd:b9:5d:d3:4c:1c:3f:4c:09:a2:77:d6:b4:40:
68:e8:8e:26:d0:c1:9c:09:b5:4b:bb:5f:ce:c6:0f:f1:6f:49:
aa:e2:4e:01:04:57:e9:ed:3b:95:70:49:83:42:1e:e3:a9:1b:
a2:41:f2:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:02:12 2025 by rpki-client