Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
File: md6y4fhaF9okDPyBbZcsheQR5iQ.mft (raw, json)
Hash identifier: FIKPXm2zFo289yie9ZOI77OEcb9ZD0MU2znF5PaJSF8=
Subject key identifier: E9:20:FF:EB:D1:4A:F4:ED:D8:EA:88:5F:89:32:40:07:A7:3C:58:72
Authority key identifier: 99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
Certificate issuer: /CN=99deb2e1f85a17da240cfc816d972c85e411e624
Certificate serial: 019644B2560703E032B4A12EE61220048ED1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
Manifest number: 14F7
Signing time: Thu 17 Apr 2025 17:01:00 +0000
Manifest this update: Thu 17 Apr 2025 17:01:00 +0000
Manifest next update: Fri 18 Apr 2025 17:01:00 +0000
Files and hashes: 1: G9mF37Fb91r0jC33-YcK9r4IAmk.roa (hash: MaEVR8Nlqavgaakwb2T4C4sUXoGT+mVODKAXw14Vucs=)
2: md6y4fhaF9okDPyBbZcsheQR5iQ.crl (hash: f2kX6QTLGNyYl5vvLmL10sl1np+HlxHLDqPk7L2lJoo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:b2:56:07:03:e0:32:b4:a1:2e:e6:12:20:04:8e:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99deb2e1f85a17da240cfc816d972c85e411e624
Validity
Not Before: Apr 17 17:01:00 2025 GMT
Not After : Apr 18 17:01:00 2025 GMT
Subject: CN=e920ffebd14af4edd8ea885f89324007a73c5872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ac:27:38:76:7f:e0:b7:2b:3b:17:f3:f3:fc:
ca:7d:d1:e9:63:34:c9:70:f5:b3:cf:e8:16:32:a8:
ef:ae:f0:86:31:34:24:b1:24:be:e8:17:b2:c5:56:
93:cd:4e:12:0f:dc:80:9b:a2:3b:78:75:44:66:7d:
1e:26:12:4b:c6:d8:02:84:2c:c1:fa:54:26:6f:7b:
61:69:29:f1:99:6d:b1:d3:6a:ef:89:f4:b7:4e:06:
ac:bc:c9:e1:aa:83:c8:03:61:f5:3a:13:ce:d6:5d:
9e:3c:af:3a:f0:be:10:d6:ce:24:45:ac:46:b2:b6:
1e:30:60:3f:4a:ad:7a:1e:e6:bc:a6:6b:d4:b9:12:
3f:e5:ea:39:d6:1f:c1:de:94:34:51:09:f1:01:c2:
35:88:eb:65:40:85:a1:39:7d:c6:a1:07:91:f9:fd:
00:70:a4:b1:89:2d:1f:6c:5e:de:04:51:f7:63:c6:
b8:8a:b1:9d:b8:e1:7a:08:09:e9:c9:bc:2d:39:cc:
ca:f8:f5:30:d6:fe:2c:09:e2:d5:2a:b9:c9:fe:a3:
a6:82:81:0e:37:36:b8:cc:ff:c3:78:a5:8a:c7:0c:
3f:13:62:48:91:4a:0c:e2:5e:6b:d3:51:2e:c9:d8:
16:ef:0b:bb:e2:c0:3e:d4:07:dc:8d:42:20:41:97:
72:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:20:FF:EB:D1:4A:F4:ED:D8:EA:88:5F:89:32:40:07:A7:3C:58:72
X509v3 Authority Key Identifier:
keyid:99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:3c:9b:f1:15:b6:d9:31:ca:4f:61:ae:e6:8f:f6:0a:39:7f:
21:86:1d:fe:a7:a9:96:20:25:48:42:cd:ac:38:c9:2c:78:e2:
76:09:34:d7:a0:f7:1d:3a:4e:96:66:93:5a:6c:24:07:07:64:
6d:84:5c:4a:47:52:61:43:c9:2a:19:65:e1:06:a0:65:bf:7b:
33:82:05:79:7f:9e:e2:c9:13:14:37:9a:e8:68:bb:01:b1:34:
f3:de:e3:d4:98:e5:95:a8:15:8c:7e:42:d1:c3:6f:92:d6:4a:
5d:2e:9e:54:af:c3:0b:ee:79:fd:bf:42:98:25:78:07:1c:76:
ae:a2:ef:5b:18:86:a3:e3:1c:59:5e:f1:10:d2:4c:f1:52:17:
9c:03:b7:d1:b8:0c:c3:58:86:e8:04:b4:03:e0:3d:08:ce:53:
4a:b0:65:76:d0:45:10:2f:00:da:d4:18:67:0a:4a:8f:9d:8b:
1f:6c:f5:a5:a9:c8:1e:2d:54:33:87:ce:c7:30:72:ce:d5:ef:
de:9e:b5:15:1f:de:22:64:15:dd:b7:27:fe:66:3e:4c:73:e5:
c7:aa:03:91:4d:6b:ba:77:13:69:69:04:df:ce:e8:ab:10:c3:
0f:2c:37:5f:95:bb:15:da:36:de:ba:ac:5a:cc:6b:68:13:86:
68:d0:a4:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:22:29 2025 by rpki-client