Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
File: 23uiovC_o6dvXJkaR82YaMbR674.mft (raw, json)
Hash identifier: u3hh2Ga/EQAWNlHDXQ5uj2Sf9PJN1gfXfstnrSvt/CA=
Subject key identifier: 9C:B0:41:80:01:BB:9C:C1:32:0D:86:7D:A2:12:9B:9C:70:FF:E4:FE
Authority key identifier: DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
Certificate issuer: /CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Certificate serial: 01964C6B4348D34AC79AFC0A6951F1EB83F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
Manifest number: 11AB
Signing time: Sat 19 Apr 2025 05:00:20 +0000
Manifest this update: Sat 19 Apr 2025 05:00:20 +0000
Manifest next update: Sun 20 Apr 2025 05:00:20 +0000
Files and hashes: 1: 23uiovC_o6dvXJkaR82YaMbR674.crl (hash: /eio2L6z64rGcw/6O0XvhM7yZYFgkxDUPZTHOUVe4ww=)
2: J8hzJTM2uz7yXJSlk16QOqdb0iI.roa (hash: sPVr5eHmre5tC1ZjjWRY6ekKAEsqs3UiVYcFX3QHcj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 05:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6b:43:48:d3:4a:c7:9a:fc:0a:69:51:f1:eb:83:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Validity
Not Before: Apr 19 05:00:20 2025 GMT
Not After : Apr 20 05:00:20 2025 GMT
Subject: CN=9cb0418001bb9cc1320d867da2129b9c70ffe4fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cd:1b:ac:8f:f4:7a:82:d5:80:60:ed:dc:96:
14:a4:a3:a0:0f:2c:62:d1:9a:65:0e:8a:0f:a9:93:
94:8d:ae:2a:da:ef:e2:ed:79:f5:f7:e0:79:21:8f:
14:e0:b2:c3:3f:30:d9:b4:9a:bf:22:18:74:54:92:
f3:a2:0e:c5:3b:9f:11:d4:f3:5e:11:d8:99:d0:71:
d1:e2:6d:0c:98:4a:b1:cb:f0:a5:cf:2e:fc:de:96:
5f:ba:9b:1d:37:52:18:dd:2b:23:f2:f2:2b:c4:35:
0d:28:e3:21:c6:88:94:9f:09:8e:6c:cf:74:25:16:
2d:9a:d9:a8:5a:82:55:2a:c6:37:ae:e4:39:df:21:
5a:55:b7:00:8b:d6:3e:7e:35:17:39:34:50:f2:1f:
c9:e7:5e:18:06:3a:5a:c3:fb:60:5a:a9:0a:bd:9e:
92:e0:0b:a7:2e:31:2c:53:9f:37:c0:fd:a3:d6:fc:
5f:44:1a:e3:c4:64:c4:31:26:43:13:20:55:29:e0:
12:bd:dc:79:00:20:1e:ce:95:9d:c6:e8:d1:a2:dd:
9f:7d:32:3c:ca:5c:88:5c:0a:3d:c5:ff:19:a5:73:
05:23:a0:35:7b:b5:98:ef:ec:3e:92:a4:8d:f0:8a:
20:7d:c0:08:d0:d2:12:03:50:fc:78:8e:2a:a5:02:
07:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:B0:41:80:01:BB:9C:C1:32:0D:86:7D:A2:12:9B:9C:70:FF:E4:FE
X509v3 Authority Key Identifier:
keyid:DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:0b:72:d0:33:66:2b:da:08:06:4b:b8:ed:37:fd:5e:cf:e1:
57:88:5b:ac:08:a6:eb:53:82:53:38:60:43:49:55:a5:45:74:
98:df:72:f0:ce:58:e2:8f:d8:f0:c0:1a:ce:9d:7e:14:77:5c:
94:3e:20:b7:31:0d:2a:03:2d:34:4a:c6:85:46:f8:c0:3d:33:
ef:1a:0a:3f:78:e3:27:ef:c1:9b:a0:76:8e:88:76:f9:ef:01:
df:0a:96:f0:de:ac:04:4a:ec:d4:ef:95:47:b6:3f:c8:35:68:
5d:ed:ea:37:e3:c2:8f:8d:5e:fd:a4:d1:9d:74:0f:40:2e:6f:
83:ec:df:c1:e1:07:1c:8c:93:78:49:0c:46:58:d3:4b:bc:74:
f7:2d:9d:f3:22:8a:95:e1:8a:c8:8f:59:7d:03:17:f6:52:d2:
c3:9a:8a:3f:79:24:66:93:25:dd:b1:5b:ac:80:85:5b:36:63:
08:9a:1f:e3:c7:fd:fc:ad:87:4f:a4:21:93:e3:3b:44:d6:20:
0a:dc:11:16:b4:e3:c7:af:de:2e:ea:a1:ae:e1:a4:14:65:da:
c1:af:54:4f:bc:3a:0c:bc:a3:3f:0b:17:21:7f:f9:87:eb:ca:
73:d2:a5:cb:f5:c1:b4:0c:64:95:31:16:d0:a5:05:10:82:3c:
f3:24:a4:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:23:16 2025 by rpki-client