Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
File: ss0DX6sYpLeCYURWP2DniYpO8PE.mft (raw, json)
Hash identifier: gEmZiX7cQPyKdwoP4UFkubjFsxHPbC0KccOOAzm59UI=
Subject key identifier: 09:F9:36:D9:81:CA:17:1E:51:4B:1F:9B:8A:39:3A:1F:78:1F:98:C7
Authority key identifier: B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
Certificate issuer: /CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Certificate serial: 01965C15557474D1CB4BB59FA00FF9679E2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
Manifest number: 101E
Signing time: Tue 22 Apr 2025 06:00:24 +0000
Manifest this update: Tue 22 Apr 2025 06:00:24 +0000
Manifest next update: Wed 23 Apr 2025 06:00:24 +0000
Files and hashes: 1: 8ioI1P3WjfVGZeocJzXjV25zEAM.roa (hash: R5/GZ5yigab2BnvLmrfCDXR0klk9Au0FN2fkvOAY+V4=)
2: ss0DX6sYpLeCYURWP2DniYpO8PE.crl (hash: QL4vXXq8pvHaRfoyen9jwBdwDq5eN6cG7iEY6ApSInc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:15:55:74:74:d1:cb:4b:b5:9f:a0:0f:f9:67:9e:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Validity
Not Before: Apr 22 06:00:24 2025 GMT
Not After : Apr 23 06:00:24 2025 GMT
Subject: CN=09f936d981ca171e514b1f9b8a393a1f781f98c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e2:81:ee:b2:51:33:95:5a:94:dc:d8:47:f0:
25:15:94:c8:22:7f:14:5c:2d:a8:f9:7d:76:1e:c3:
8a:a9:a7:9d:8d:fe:9a:ac:1e:e9:73:81:c0:fb:79:
8c:17:5a:6f:d3:75:9d:f7:a2:b0:56:90:f0:c0:6c:
68:c3:b2:26:73:b4:9a:31:81:40:6d:9b:ca:87:11:
4f:42:2f:cb:33:b3:17:3e:e3:42:bb:6f:7c:a9:e4:
dd:0f:0b:b1:00:24:ba:f4:46:f5:f5:70:2e:28:cd:
53:9a:c3:08:62:bc:d1:87:10:a3:51:79:1b:f8:c7:
cc:85:c7:17:01:3d:67:7a:b0:9a:fc:f1:ce:d2:9f:
8c:7f:a1:14:b5:17:6d:45:e5:53:f1:5e:ea:5d:06:
9b:60:9d:67:54:92:5e:7e:1d:78:03:74:cf:c1:a6:
6a:e0:c0:c0:cb:75:74:d6:1b:ec:16:45:79:4a:71:
0f:f0:24:ce:88:85:29:47:07:7a:40:cf:c5:87:6c:
fc:39:d0:58:3c:25:70:07:d9:52:1b:d9:67:d8:30:
bc:eb:3e:d5:e2:64:9b:3a:c1:ad:7f:5f:77:a9:83:
8f:af:34:d0:b6:84:8a:ef:7a:1f:84:48:fe:e8:eb:
89:89:b3:52:63:ac:00:b5:29:d3:bf:4c:d0:0b:36:
39:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:F9:36:D9:81:CA:17:1E:51:4B:1F:9B:8A:39:3A:1F:78:1F:98:C7
X509v3 Authority Key Identifier:
keyid:B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:80:fd:3a:96:73:3b:2b:27:de:41:4e:57:31:34:bc:ae:cd:
f4:1c:aa:eb:60:63:a0:88:73:0b:34:94:6e:b4:5a:f9:18:3f:
4e:c3:34:11:6d:e9:6a:1f:72:42:0b:10:e1:ae:be:2d:7d:20:
66:bf:42:3c:10:a7:e9:dc:08:b4:05:73:99:96:ac:23:0c:71:
7f:38:e0:b4:af:40:99:17:04:ed:63:4a:1d:8a:d7:bf:02:a4:
42:07:52:1f:30:b6:cb:3c:bc:02:38:1f:3d:d8:ae:25:e0:7d:
38:14:9e:45:51:97:1e:58:12:24:54:97:32:e1:49:85:44:cf:
62:37:d9:1b:cc:0b:9a:eb:aa:6c:ef:b3:6f:88:c2:3b:ff:e7:
ac:ca:80:69:13:c4:18:6c:ce:07:51:0e:a4:01:74:78:5e:5b:
7d:49:b1:59:97:68:ee:fd:11:3b:1d:22:27:85:59:e2:b3:ff:
60:d5:ad:9e:ac:c1:f6:4c:23:59:6d:9f:1d:ed:6d:fb:31:a4:
77:6e:a0:3e:1f:41:94:40:ec:1b:4a:96:e9:5a:f3:18:58:1e:
9f:5e:c9:00:04:c3:ea:b6:5e:2c:c6:14:b8:2d:b6:93:02:8f:
fb:5e:96:a0:a2:4a:c8:48:94:87:2f:68:2a:9c:da:f4:2d:5d:
7f:3c:12:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:24:48 2025 by rpki-client