Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
File: rpPMjMqB-gDcU-e4B46RtcEbou8.mft (raw, json)
Hash identifier: +jHNImvKYNSIAPyfd/9/9E03m6CAAfUFm+avG1CHIIA=
Subject key identifier: 9A:A9:7A:42:C5:49:AC:45:F3:9D:40:5D:4A:FC:7B:2D:D8:4D:E6:A2
Authority key identifier: AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
Certificate issuer: /CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef
Certificate serial: 01965794830B10D8EAFFE4396D6888885E9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
Manifest number: 1008
Signing time: Mon 21 Apr 2025 09:01:12 +0000
Manifest this update: Mon 21 Apr 2025 09:01:12 +0000
Manifest next update: Tue 22 Apr 2025 09:01:12 +0000
Files and hashes: 1: crHez21ajs4tpxPy7D0FO2U5bxU.roa (hash: gCTLggUH/wf+1HoWxwo5Fpy8idWpj7d4gVSkhA0S2qM=)
2: rpPMjMqB-gDcU-e4B46RtcEbou8.crl (hash: dV1C5hk4KbKA3tZU1CfcmlmC7FHrhOn+06Uy1jpZGHg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:94:83:0b:10:d8:ea:ff:e4:39:6d:68:88:88:5e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae93cc8cca81fa00dc53e7b8078e91b5c11ba2ef
Validity
Not Before: Apr 21 09:01:12 2025 GMT
Not After : Apr 22 09:01:12 2025 GMT
Subject: CN=9aa97a42c549ac45f39d405d4afc7b2dd84de6a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a0:b9:44:43:e9:11:30:7a:1d:5e:56:d9:69:
9d:6c:2c:75:c1:e4:54:ed:00:e0:e3:44:a7:4a:45:
cc:7f:ae:c4:4a:8b:d4:92:16:0e:72:96:ad:ab:7e:
9f:ba:66:68:3d:6b:3c:69:7a:7e:9b:e3:e9:dc:5e:
73:25:2a:b9:40:3b:78:55:a4:62:d4:df:8e:99:f1:
97:15:5c:c8:b6:ce:8e:e4:d2:c8:57:5d:0b:e7:6a:
76:7f:e2:c1:b8:48:aa:e3:1c:36:fe:04:5c:6c:98:
9f:6e:43:02:39:b7:81:05:1c:fd:2d:4d:92:83:bd:
48:fc:9e:41:f2:c3:6e:a7:0f:30:90:10:ba:65:3f:
c2:00:fe:c6:10:f0:30:4c:3f:8d:e9:96:d3:48:42:
d1:75:30:d9:c6:1b:54:de:51:d4:22:73:96:f5:e3:
f6:7d:8f:bb:3a:f9:9e:cd:9b:24:13:47:da:5c:82:
59:6b:e6:8a:05:a6:d8:4d:a9:94:94:b1:0f:d6:4d:
7a:d6:44:fa:7c:0c:05:84:f5:d8:8c:18:c5:35:02:
67:3c:51:8e:ff:1e:f4:e7:ed:92:c1:0f:82:a2:35:
f7:0c:2b:23:05:67:c0:3f:2c:af:ea:96:d1:41:ac:
d5:53:29:cc:3f:5e:40:19:0f:5a:b9:8f:86:bd:e9:
85:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A9:7A:42:C5:49:AC:45:F3:9D:40:5D:4A:FC:7B:2D:D8:4D:E6:A2
X509v3 Authority Key Identifier:
keyid:AE:93:CC:8C:CA:81:FA:00:DC:53:E7:B8:07:8E:91:B5:C1:1B:A2:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rpPMjMqB-gDcU-e4B46RtcEbou8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/179891-41cc-4aa0-ab68-f406c83b3fba/1/rpPMjMqB-gDcU-e4B46RtcEbou8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:62:b2:bb:93:5a:1e:09:ba:bc:2d:6f:24:87:a9:29:11:51:
2f:3d:69:c7:43:0e:ec:32:9a:5e:5f:3f:fa:57:7e:8b:c9:20:
40:04:cd:f6:ba:15:59:3d:1f:06:4c:37:c7:0a:cb:3f:28:dd:
f6:fb:c3:09:32:2a:92:a0:f5:9f:fc:9d:5e:f4:28:a4:d1:28:
3f:a9:c4:78:52:44:30:53:0d:7f:71:eb:47:e6:c3:32:1b:b7:
92:ea:7b:ba:09:df:2a:f5:a0:aa:3d:0f:31:fe:45:00:72:36:
99:29:b8:08:34:b1:23:5e:2b:e5:98:61:07:41:d1:0c:76:1e:
a4:1a:88:74:47:89:1a:a6:43:e1:03:a9:50:93:06:17:d5:4b:
01:77:8a:90:eb:ee:26:1b:a4:fd:33:59:6e:b5:f6:34:45:3b:
db:d4:c7:eb:b7:e3:45:4d:60:ad:7a:60:0f:5d:e3:df:4b:9a:
0d:75:e1:96:3e:c3:0d:5c:e2:97:c0:96:64:84:d9:80:db:82:
6c:b0:ed:41:99:99:c9:c6:80:f1:d9:ef:90:5e:75:13:9d:d6:
98:59:90:33:78:a1:d9:5d:37:43:96:2b:02:14:c7:a3:49:57:
3a:40:c6:b3:8f:5a:7d:44:93:77:fe:8b:71:5f:09:dc:37:b5:
68:40:f1:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:48:52 2025 by rpki-client