Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
File: 0ccPHzPFgdt4oUm8htc5zcfOJqc.mft (raw, json)
Hash identifier: PqCH5JjJ+kMCqdxhTBoKpLgVvSxYr2IDhJx3kraZR2w=
Subject key identifier: 31:FD:26:69:59:0E:3B:1B:0B:6F:21:77:1F:5C:F6:85:BA:FE:6E:9F
Authority key identifier: D1:C7:0F:1F:33:C5:81:DB:78:A1:49:BC:86:D7:39:CD:C7:CE:26:A7
Certificate issuer: /CN=d1c70f1f33c581db78a149bc86d739cdc7ce26a7
Certificate serial: 019607C2086D91E327D3E5F2933D42778964
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
Manifest number: 036C
Signing time: Sat 05 Apr 2025 21:01:18 +0000
Manifest this update: Sat 05 Apr 2025 21:01:18 +0000
Manifest next update: Sun 06 Apr 2025 21:01:18 +0000
Files and hashes: 1: 00FQiMdjUQle4zFwKcr67i8rD5o.roa (hash: vAwK94aBbQ1WLXSLlow/JuiTreizX+JgqV5lHzwa2Js=)
2: 0ccPHzPFgdt4oUm8htc5zcfOJqc.crl (hash: YPjEHfKH8DCAMIB+MEJf3Q8Eejni+iB1yXqo8+y+aiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 21:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:07:c2:08:6d:91:e3:27:d3:e5:f2:93:3d:42:77:89:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1c70f1f33c581db78a149bc86d739cdc7ce26a7
Validity
Not Before: Apr 5 21:01:18 2025 GMT
Not After : Apr 6 21:01:18 2025 GMT
Subject: CN=31fd2669590e3b1b0b6f21771f5cf685bafe6e9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:05:69:31:fc:d2:2e:2a:b8:e2:c1:d0:14:9e:
62:1f:5c:91:14:c7:ed:7c:d9:54:c8:4e:65:6b:59:
cc:46:57:03:d8:c3:03:d1:1a:be:87:27:84:22:84:
e3:02:56:41:d5:12:27:92:fd:63:83:9c:6a:c0:c2:
bb:04:27:ce:ad:c3:a8:fb:90:3a:35:74:ec:9e:f6:
77:0f:d0:aa:4b:29:4e:cc:bd:70:a2:88:b4:75:37:
81:b5:08:0f:00:94:99:96:bf:2e:1b:91:64:65:df:
e6:ad:17:f0:9b:78:35:d1:af:88:b1:4b:31:6b:34:
9a:5e:4c:5b:8d:a3:ab:e5:41:e6:f7:5b:26:e0:f4:
41:b9:a7:40:45:1e:4b:2a:e5:71:41:57:bc:16:a6:
7d:ff:91:9d:33:2f:56:82:1f:f9:df:b1:6a:32:81:
d7:49:2e:a1:42:54:85:8a:19:49:0c:0f:fd:7d:e1:
ee:16:2c:2f:07:e3:8b:ac:d7:49:6e:c0:6b:66:25:
ed:e4:bd:53:e1:bb:b9:d5:9c:1c:e7:77:d8:f3:f3:
c0:a4:38:c9:10:49:d7:08:14:dc:eb:dc:1d:39:35:
11:f3:4f:8c:0d:7a:57:2d:ad:c4:a9:8c:6e:b5:d6:
56:79:8c:35:c9:ed:66:dc:4c:13:58:43:4d:85:1c:
62:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:FD:26:69:59:0E:3B:1B:0B:6F:21:77:1F:5C:F6:85:BA:FE:6E:9F
X509v3 Authority Key Identifier:
keyid:D1:C7:0F:1F:33:C5:81:DB:78:A1:49:BC:86:D7:39:CD:C7:CE:26:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ccPHzPFgdt4oUm8htc5zcfOJqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/d3d257-6e4c-4d60-9c93-dfcae36a3ef8/1/0ccPHzPFgdt4oUm8htc5zcfOJqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:76:ce:68:a8:37:50:87:8a:e9:13:51:b8:71:92:a4:41:5a:
e9:b4:67:9e:f1:54:d7:aa:61:6e:9d:f6:ab:d8:5d:15:6c:51:
e9:23:48:18:82:51:e5:ef:8e:31:7f:f4:c7:87:04:96:97:a3:
4e:93:57:37:a8:b9:36:a1:f9:39:2b:27:a5:91:66:e0:42:d6:
cb:e2:c5:c0:db:e5:ba:10:78:10:f2:5d:91:3a:d2:98:50:33:
05:6d:43:e2:c6:c0:c8:5c:ab:11:01:3d:e4:d0:0f:a3:3e:3b:
cd:41:d0:5e:8a:08:d3:75:34:b9:47:f9:88:01:94:ac:ad:8a:
ab:c5:ba:e8:4a:59:92:b2:ee:99:50:06:e8:e4:84:a2:d5:b2:
98:48:b7:d6:96:47:fe:76:19:99:17:08:8e:8b:b8:b3:56:5a:
be:01:9e:9c:d2:39:95:f9:c6:07:77:4a:f6:73:a9:76:ac:4d:
35:10:3e:69:21:7c:af:3b:d5:55:cb:24:16:dd:cc:4c:7a:65:
84:fe:9f:41:e9:57:bd:95:99:d9:19:89:44:55:96:aa:4a:d3:
1d:63:4e:a1:de:1b:4f:69:ba:8e:84:0f:dc:b9:98:05:60:1d:
85:b1:64:9a:06:12:77:01:41:69:94:14:d2:cf:5e:79:97:88:
02:3b:a0:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:52:41 2025 by rpki-client