Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.mft
File: du6ffY5dGMUIhPgzeK5Iui_NpuI.mft (raw, json)
Hash identifier: keMsdu1HyDFaOnOMGauRR7JoSwJVBpOILruqMmPMeXw=
Subject key identifier: 87:99:A1:7C:F7:6D:76:D0:22:8F:EF:E6:00:D2:DE:1D:5C:09:A9:4B
Authority key identifier: 76:EE:9F:7D:8E:5D:18:C5:08:84:F8:33:78:AE:48:BA:2F:CD:A6:E2
Certificate issuer: /CN=76ee9f7d8e5d18c50884f83378ae48ba2fcda6e2
Certificate serial: 01964C6BACC999615E469D49FE69BB4E6345
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/du6ffY5dGMUIhPgzeK5Iui_NpuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.mft
Manifest number: 1051
Signing time: Sat 19 Apr 2025 05:00:47 +0000
Manifest this update: Sat 19 Apr 2025 05:00:47 +0000
Manifest next update: Sun 20 Apr 2025 05:00:47 +0000
Files and hashes: 1: du6ffY5dGMUIhPgzeK5Iui_NpuI.crl (hash: 9tG0Y4ZsbRQxN3cViwCwSRMdheteHdeGL78R7g6q0ck=)
2: mXqLLr6nY4_O8xCSHszNUcdYNRQ.roa (hash: mR7ch814nod8YJeRcpIlHri0tj0aQVOIDu8w+ijK6HU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/du6ffY5dGMUIhPgzeK5Iui_NpuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 05:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6b:ac:c9:99:61:5e:46:9d:49:fe:69:bb:4e:63:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76ee9f7d8e5d18c50884f83378ae48ba2fcda6e2
Validity
Not Before: Apr 19 05:00:47 2025 GMT
Not After : Apr 20 05:00:47 2025 GMT
Subject: CN=8799a17cf76d76d0228fefe600d2de1d5c09a94b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0f:f2:13:8e:7d:d6:62:31:44:7c:f1:b0:a6:
6d:14:b5:63:6f:d2:b3:7d:5c:43:c3:76:1a:b9:ab:
3c:52:8a:ef:e5:a1:62:f6:63:19:3b:f1:55:ea:c5:
57:d1:9a:a4:de:0b:b9:ee:f2:47:10:76:5a:63:39:
55:6c:6f:26:98:e2:f0:86:14:09:8a:df:40:4b:6a:
c2:44:0e:f4:ec:a3:59:da:4f:1b:32:08:14:f1:ab:
94:56:a8:8c:5c:ff:8a:c4:11:a1:36:bc:69:fa:0d:
79:94:47:71:d3:4d:55:6c:4f:48:be:80:34:1b:1b:
9e:4f:4a:bb:e5:6c:37:46:d8:68:7a:d5:f3:be:80:
c9:7f:53:93:34:e9:13:e4:19:83:05:a0:4a:8d:37:
08:ac:4e:af:0d:9f:12:56:95:4a:52:c0:92:32:d6:
2d:7a:eb:03:a1:06:ce:db:ff:2b:80:ea:3c:93:22:
72:1a:d2:53:8d:8f:42:99:34:f1:1c:cf:5a:57:02:
38:f8:42:20:aa:97:72:a9:e2:9d:fb:5e:43:c2:c1:
27:7a:d8:4f:8c:8a:6c:6f:57:c4:70:ed:8d:65:6a:
9c:35:ed:8f:89:94:62:da:60:70:4d:1b:25:aa:5f:
d5:4e:28:47:43:9e:15:82:ff:ce:55:06:6d:c8:2a:
31:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:99:A1:7C:F7:6D:76:D0:22:8F:EF:E6:00:D2:DE:1D:5C:09:A9:4B
X509v3 Authority Key Identifier:
keyid:76:EE:9F:7D:8E:5D:18:C5:08:84:F8:33:78:AE:48:BA:2F:CD:A6:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/du6ffY5dGMUIhPgzeK5Iui_NpuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:b9:c7:8b:6d:9e:fe:f8:91:7b:2b:a8:75:f8:1c:5e:f1:17:
6f:b9:e0:cd:b3:90:93:f6:3e:b1:9c:99:85:0e:bb:96:56:80:
77:86:a0:61:ad:03:34:28:9f:ef:39:16:5d:53:03:06:fb:c5:
08:10:bc:b9:f3:d8:c5:53:47:98:6d:73:6d:9a:54:a8:0f:cd:
34:8c:7b:59:d3:d1:0c:5c:44:a4:73:98:5d:f6:96:7a:8f:4e:
1b:67:18:0b:f4:3d:bd:70:8d:22:be:cf:41:24:05:3d:a7:c8:
22:26:db:da:48:46:9b:25:e8:cc:56:81:ad:a7:cd:c7:30:09:
1a:20:d7:ff:66:b0:fa:da:b9:f2:8f:18:72:22:02:2d:24:ef:
85:7d:80:27:ba:f0:b7:5f:2f:ee:48:fd:bd:6a:99:69:17:86:
95:02:56:b3:58:71:ed:0c:9d:e4:75:23:05:a2:90:94:90:49:
80:89:bf:8b:e8:2d:69:8a:4a:b5:19:26:68:df:54:b2:c4:78:
6b:4c:46:b1:85:69:59:c3:93:b9:4f:e6:80:51:6d:a0:cb:9a:
12:6c:53:51:0c:b6:ea:ff:b3:74:94:25:b0:4a:80:d9:9d:a0:
72:11:ca:18:82:47:20:7c:f5:3f:bc:77:71:d0:e8:9f:c7:34:
8c:01:af:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:52:44 2025 by rpki-client