Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
File: CBg0SlIKOZknm7gkfheeiEBuNXg.mft (raw, json)
Hash identifier: iuWshwQUxMM1ML4QmUpt6Vl24g3v9tIW3xgOKiKyMrU=
Subject key identifier: 6E:00:47:4C:15:01:93:26:92:EF:85:A3:E9:DA:95:E5:02:AC:80:C2
Authority key identifier: 08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78
Certificate issuer: /CN=0818344a520a3999279bb8247e179e88406e3578
Certificate serial: 0196150FACA79044C127E4F4577A103CDD99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
Manifest number: 07AA
Signing time: Tue 08 Apr 2025 11:01:10 +0000
Manifest this update: Tue 08 Apr 2025 11:01:10 +0000
Manifest next update: Wed 09 Apr 2025 11:01:10 +0000
Files and hashes: 1: B-j6lkFyqvjbC_PQncwIGbX8TJo.roa (hash: UphQUvnVM6eEU6Z6D8ssHUSQvyAzogcc5pnYk33x3jA=)
2: CBg0SlIKOZknm7gkfheeiEBuNXg.crl (hash: Cqqi0Bd5p7BfkTT1VNWxl9d2kq7le/PDCETQCWUPf7g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:15:0f:ac:a7:90:44:c1:27:e4:f4:57:7a:10:3c:dd:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0818344a520a3999279bb8247e179e88406e3578
Validity
Not Before: Apr 8 11:01:10 2025 GMT
Not After : Apr 9 11:01:10 2025 GMT
Subject: CN=6e00474c1501932692ef85a3e9da95e502ac80c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:83:8c:d7:a3:41:a3:40:f1:ec:66:54:2c:7c:
fa:76:9d:35:40:e0:1b:cb:e5:01:83:41:6f:fa:ce:
34:09:79:fb:13:f6:e9:bc:63:30:8a:42:f7:aa:c2:
53:40:d3:52:76:5e:91:b2:1b:cb:5f:01:ba:b4:59:
45:c6:5b:e8:f3:01:8a:19:44:f0:21:0a:91:ba:02:
ad:ee:ed:25:85:15:04:9e:7a:7e:24:d6:1c:ff:62:
0c:8d:8e:bc:7c:44:10:da:a3:2b:39:15:33:03:24:
16:2e:20:3a:0c:8f:59:52:9d:b8:37:d5:9e:06:e7:
6b:c7:bd:9f:9c:5f:a5:35:6f:9c:9c:26:b7:e4:61:
08:b2:5f:a2:96:66:0f:af:8f:14:de:83:ad:07:65:
9a:a4:a8:f7:4a:a6:2d:42:58:9b:31:46:9c:03:34:
11:cc:8a:f5:e5:3d:a2:25:63:63:43:8a:d8:6a:2b:
68:38:15:9e:39:54:ad:e3:32:9b:b0:14:a7:7a:f9:
de:d7:d5:a8:77:ab:c8:84:8e:a7:13:5b:c3:03:4c:
44:9c:52:70:b9:0a:6c:47:fa:37:ff:39:d5:1f:88:
aa:ca:a9:f9:32:4e:11:4e:98:aa:c5:ae:27:d5:47:
83:a0:94:99:d0:d9:66:b8:c8:62:e8:69:1f:fd:1b:
61:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:00:47:4C:15:01:93:26:92:EF:85:A3:E9:DA:95:E5:02:AC:80:C2
X509v3 Authority Key Identifier:
keyid:08:18:34:4A:52:0A:39:99:27:9B:B8:24:7E:17:9E:88:40:6E:35:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBg0SlIKOZknm7gkfheeiEBuNXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/56b818-9ee1-4a06-a8ec-851ea65cb98b/1/CBg0SlIKOZknm7gkfheeiEBuNXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:07:ff:1a:92:93:46:a4:b7:a4:28:e2:aa:b6:90:30:df:4e:
be:49:9e:23:4a:e7:1d:82:5d:b1:3d:f5:f7:ed:e7:87:13:c4:
3a:8f:eb:56:30:c6:8b:b6:33:c3:24:97:72:2a:84:40:21:cb:
42:48:24:77:39:54:e3:e6:28:80:99:46:d2:97:a9:09:6c:a8:
5d:d5:13:5c:89:be:e3:86:ab:00:a3:e9:53:42:53:18:59:54:
ab:ac:ed:08:df:f8:6a:69:dc:cb:7c:19:9c:c3:63:57:fd:a0:
28:28:fe:4b:59:c9:6c:7a:71:57:1f:a8:5c:20:99:3c:dd:93:
49:89:89:42:7d:c5:14:7c:5d:f2:9d:83:e0:69:32:7e:73:74:
88:8b:48:d5:bc:46:54:90:4d:c9:9c:dc:e9:d1:a4:d8:81:b0:
7c:e6:9a:28:93:30:f2:9a:45:2c:ad:b3:ff:fb:d3:31:b0:73:
0d:f0:be:8d:2a:f6:69:13:fb:82:2d:a6:9e:74:73:02:18:dc:
4e:48:fe:ca:9a:9e:59:34:06:80:61:29:fc:4c:e6:89:82:86:
e2:43:f7:05:eb:19:6e:fb:95:2a:fb:b6:6a:26:8a:8f:59:62:
90:75:55:15:be:e9:b5:6e:8b:b5:4a:74:27:7e:dd:5d:72:69:
30:d7:34:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 13:06:18 2025 by rpki-client