Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
File: d2-uQ_c9o1_houQpZirguRdR4_s.mft (raw, json)
Hash identifier: WMFlxdXAwn4g7Rr6PAaFq2ReU4uesdr5ibXKvoB60w0=
Subject key identifier: 04:57:0A:22:1A:99:57:0D:43:E1:D0:B8:2E:7F:20:30:2A:0E:3B:15
Authority key identifier: 77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
Certificate issuer: /CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Certificate serial: 01960AC341F0D48ACD8C7D31D501B3A14432
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
Manifest number: 11FC
Signing time: Sun 06 Apr 2025 11:01:30 +0000
Manifest this update: Sun 06 Apr 2025 11:01:30 +0000
Manifest next update: Mon 07 Apr 2025 11:01:30 +0000
Files and hashes: 1: BIbyN6MobH1STyCEPdXKcXxO-0I.roa (hash: Os4l0m9oxr0hmnuszsL7ZwnRaiayTTQWv9r3AFurnXg=)
2: Bbz0bBQb7OvBUdzdUU2fR0aTHW0.roa (hash: oXnG95uJE4GWCusPMitN/8TOoOTM8j2qb4pX4QMQ5u0=)
3: bdDCotOAfO1kv_FK4imM3A-Vth0.roa (hash: SflKXIddgIp/qAd1Zs2morymiezh6i6wy0uu+gUqlSk=)
4: d2-uQ_c9o1_houQpZirguRdR4_s.crl (hash: qoGE+g+AjPF4ffyC1XCSVTvFGQ77vtNBvq1CUcfXzCY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0a:c3:41:f0:d4:8a:cd:8c:7d:31:d5:01:b3:a1:44:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Validity
Not Before: Apr 6 11:01:30 2025 GMT
Not After : Apr 7 11:01:30 2025 GMT
Subject: CN=04570a221a99570d43e1d0b82e7f20302a0e3b15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:dc:79:dc:b6:13:86:8e:0a:23:28:0f:25:5b:
da:77:37:0c:9f:26:ea:7b:35:12:11:05:3b:7a:bc:
db:dc:78:f2:ba:87:b2:f9:27:35:ac:2d:cd:fd:61:
93:8e:85:1e:1b:ad:0e:70:cc:c9:b2:4e:9a:15:f7:
5b:9d:93:f2:13:96:8f:37:5a:ec:e4:8f:c2:69:d3:
14:8c:f7:13:e9:4d:b5:21:6d:a5:d5:08:cb:fd:ca:
1b:71:9e:54:6b:f2:2c:37:85:ce:fc:f8:76:a9:98:
f7:a3:29:d7:d2:ed:ae:d9:01:6a:cc:c3:8e:85:93:
e4:1b:4e:7b:d6:bf:c7:91:10:9f:db:5a:1c:c9:ee:
d7:00:35:63:87:9e:75:2a:6f:7a:86:f7:74:76:66:
9f:d0:c8:80:43:82:d2:78:38:6e:a6:24:87:2e:89:
9b:56:0a:42:67:a0:d2:26:31:73:66:fe:8b:a8:15:
35:8b:0c:ad:51:82:40:8e:be:f9:36:33:d8:a6:c7:
75:91:30:1e:66:7a:6d:15:5d:e3:51:78:45:e4:de:
9c:af:30:49:05:15:49:0e:bb:9f:6a:1a:45:62:d2:
ca:04:9f:68:b3:14:b8:e7:7e:21:f6:6a:6e:b0:20:
21:ea:bc:28:8b:51:a5:04:3f:01:d4:63:b8:f2:82:
b1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:57:0A:22:1A:99:57:0D:43:E1:D0:B8:2E:7F:20:30:2A:0E:3B:15
X509v3 Authority Key Identifier:
keyid:77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:89:c6:ae:5b:74:d0:e3:e6:dc:8b:de:85:f6:4a:dc:17:ae:
43:f0:2a:78:b7:46:6e:37:04:a9:9c:63:94:c3:02:08:cf:79:
b4:86:91:39:1b:a2:53:2d:38:59:46:28:6b:76:d4:50:bb:90:
eb:39:64:d4:a2:f5:28:c8:58:57:95:7b:10:ab:18:d4:0c:a7:
3d:62:42:04:0c:c7:ff:a2:ed:f4:8e:18:d8:6e:23:f2:c7:12:
da:3e:0b:f2:32:98:a8:07:d7:ab:ad:92:2d:0e:67:fb:ad:bf:
3e:58:62:ba:6f:fe:27:61:c1:42:6b:93:61:c7:72:70:21:7f:
bd:bf:6c:38:94:f4:56:7e:ba:40:0b:46:dc:16:78:81:77:92:
f8:ff:e0:18:14:5a:07:cd:90:32:6b:3b:9c:f1:c8:20:ed:48:
c5:81:45:d4:5c:a5:90:79:98:d0:45:2f:d7:14:8c:c5:45:6b:
1c:c1:3f:e3:7d:1d:35:50:15:6d:95:c1:7f:bf:6c:52:f5:49:
e4:63:4f:b5:f1:05:57:d3:a7:d5:60:45:eb:1e:d3:18:67:15:
ef:82:2d:50:f3:94:59:56:d9:f1:b1:e9:5e:be:55:d0:06:45:
e4:34:8f:ce:4f:5f:f2:79:87:5e:56:40:4b:16:bc:6a:13:17:
41:96:55:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:32:50 2025 by rpki-client