Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: 5qQbMIr2Fb82wN/oBMjipC+h2V1FtpP1C/FQz/DfHpw=
Subject key identifier: DF:9E:DF:E2:35:59:CC:F2:3D:E3:58:2F:BB:94:2B:B2:2A:7E:82:EA
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 0196594B40AF7F0BA5B41E6822414E088A13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 1501
Signing time: Mon 21 Apr 2025 17:00:25 +0000
Manifest this update: Mon 21 Apr 2025 17:00:25 +0000
Manifest next update: Tue 22 Apr 2025 17:00:25 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: yHi9Xkhm6vb3i+fQVLlGLRL01+uQLSUhR1cwQbwx/Ug=)
2: b7sNWlzHmaj36hpl7542OiFeLhk.roa (hash: r2LdfaqH2ThvketoRQBfUQ9ZRTad2+2P2sxQXJTCIiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:4b:40:af:7f:0b:a5:b4:1e:68:22:41:4e:08:8a:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: Apr 21 17:00:25 2025 GMT
Not After : Apr 22 17:00:25 2025 GMT
Subject: CN=df9edfe23559ccf23de3582fbb942bb22a7e82ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:73:b6:42:b2:f4:f5:4e:16:27:42:37:d5:9e:
cd:e4:a4:0e:64:11:38:67:8b:50:85:56:36:62:09:
d4:bd:fc:3c:bd:9d:78:98:6e:8e:4c:52:5b:c4:c7:
56:8f:85:e7:14:8c:58:01:ba:94:37:0e:a2:60:44:
77:04:3f:8a:3f:48:46:c7:59:d2:e2:0f:cc:a3:4e:
cb:c0:7d:70:88:3b:a7:dd:2a:a5:c9:1e:47:63:50:
23:f3:2d:4f:30:50:48:c4:48:a9:0f:f5:db:37:9d:
2e:29:31:93:46:ea:98:fc:e9:29:28:5b:98:27:9f:
20:25:7d:c0:89:c3:60:56:1c:71:66:95:26:cb:a0:
c3:be:b6:ed:66:44:42:3d:8f:cc:dd:42:72:cb:0e:
7c:f8:19:14:03:bd:b6:0c:ff:17:d3:6d:54:80:fc:
52:60:51:c7:31:77:69:e9:22:eb:23:cd:31:08:79:
8b:e2:c7:52:c3:56:ed:56:cf:54:51:4f:7d:3b:bb:
95:30:6f:4f:4b:f2:f7:7f:f3:09:ee:17:81:1f:d7:
07:a0:80:d0:5b:39:87:bc:88:37:ce:1f:be:e4:f9:
9a:9f:50:b8:2f:be:13:0e:26:45:ff:2d:89:08:f8:
b1:99:21:24:a6:95:25:3f:a4:77:4f:ee:ee:69:3e:
35:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:9E:DF:E2:35:59:CC:F2:3D:E3:58:2F:BB:94:2B:B2:2A:7E:82:EA
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:71:80:df:66:11:7a:b4:02:65:ab:55:90:9d:5c:e0:fb:53:
00:93:ac:8f:37:05:cc:4f:c2:ea:18:f8:7e:36:02:b5:4a:35:
02:37:1a:b8:e7:97:df:1a:d4:63:66:73:56:66:c8:20:75:c8:
cd:dd:76:6c:67:a3:47:f4:6f:7f:86:af:de:9a:ad:e8:46:8d:
cc:d4:f5:7d:3b:1c:c4:ee:69:fa:38:ff:c3:dc:c5:6d:c3:c7:
a4:8e:46:22:d8:9d:4a:e9:4f:bd:37:9b:de:66:5d:da:3d:bd:
53:8c:be:fe:bc:77:d8:91:bb:e0:63:0f:9f:05:00:1c:1e:c0:
86:d8:b7:ff:97:e0:a4:ce:db:87:68:e7:c9:22:ce:f8:e2:3b:
18:f3:6b:95:2f:6f:7e:e6:0d:0d:93:95:72:21:03:7a:07:87:
5e:15:dd:65:0c:99:b5:79:e0:84:66:68:a4:b6:e4:1d:20:6e:
71:47:78:77:b5:79:8c:ff:e5:b8:3e:89:85:b2:80:cb:93:45:
3f:8e:f7:7a:1f:c0:04:d0:cf:46:81:b5:80:44:d0:40:57:8d:
9a:e7:6e:8f:6b:b3:5e:38:ef:6e:57:cf:ea:b7:18:20:40:7d:
53:99:73:cb:38:2d:80:2a:7c:59:43:d9:d6:22:48:9f:ec:87:
77:32:bb:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:22:30 2025 by rpki-client