Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
File: o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft (raw, json)
Hash identifier: /eRkQc87VUXukiucuVmfu1pCxwHMnDjBiTMH/YCMqIc=
Subject key identifier: A4:C3:DA:43:6C:27:18:08:63:50:76:13:6B:30:8B:FB:58:D9:0B:1E
Authority key identifier: A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93
Certificate issuer: /CN=a3d3907f811cb83f16b816785e380bc24c8ac193
Certificate serial: 01963D2F23C5FD7DE35653BC769298E0476C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
Manifest number: 11FF
Signing time: Wed 16 Apr 2025 06:00:21 +0000
Manifest this update: Wed 16 Apr 2025 06:00:21 +0000
Manifest next update: Thu 17 Apr 2025 06:00:21 +0000
Files and hashes: 1: KHmBEFAHu1D8g7BNr6DM90HcrdE.roa (hash: cHCWZbVIixRYPkJFTsJoo7AK/4mwhNH2E0rmOh1q4HI=)
2: o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl (hash: q/kUCt7zM2lqkriWOMPbbP6Lk3Epuch9RX7ITskfsRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3d:2f:23:c5:fd:7d:e3:56:53:bc:76:92:98:e0:47:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3d3907f811cb83f16b816785e380bc24c8ac193
Validity
Not Before: Apr 16 06:00:21 2025 GMT
Not After : Apr 17 06:00:21 2025 GMT
Subject: CN=a4c3da436c271808635076136b308bfb58d90b1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:91:e8:dc:9c:9b:82:98:99:45:63:c3:c3:36:
20:bd:d2:c5:43:80:e0:7b:07:1d:30:13:20:4d:22:
67:ab:0a:de:ee:7e:67:98:48:8f:fb:01:c4:f3:13:
86:c2:48:12:ac:c5:43:d3:80:9f:31:81:e9:15:c9:
24:c6:8c:09:50:58:cd:64:46:10:7e:b1:38:2c:8a:
65:ad:68:f8:4e:8a:91:3f:cb:92:5e:34:91:92:60:
c4:3d:5e:39:fe:e4:fb:cf:4e:a9:7b:23:bf:a4:0d:
76:19:63:16:1c:9e:86:d8:02:4f:96:d6:98:89:10:
b5:3a:a7:d3:35:06:b1:10:c1:e6:c8:b3:26:54:a3:
fe:83:77:87:72:d6:20:12:a9:d6:65:fb:10:b3:21:
8c:ac:3a:4d:40:c0:ea:fc:5a:78:c3:01:29:72:6c:
00:c9:8e:e1:2c:2b:85:12:3d:11:f6:fa:20:4d:a8:
8d:c9:8a:7a:bd:3b:47:cd:65:bd:9e:e5:73:af:91:
39:56:79:13:bd:29:d9:8f:8c:24:b6:d4:a7:ba:e6:
5b:e8:75:8f:05:09:b1:b6:ae:8d:46:91:00:40:c5:
da:b6:61:d3:55:02:34:7d:76:06:97:b8:44:a2:97:
8f:3b:f2:e0:bf:a2:ae:af:55:55:bf:56:d2:b6:70:
d2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C3:DA:43:6C:27:18:08:63:50:76:13:6B:30:8B:FB:58:D9:0B:1E
X509v3 Authority Key Identifier:
keyid:A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:6f:4a:66:6a:96:92:a1:90:b9:6b:67:9e:1d:f1:c4:ae:f0:
11:e2:f4:cc:be:4e:91:ca:87:de:32:57:f8:45:d3:fa:92:68:
d2:81:d9:12:59:3c:cb:f1:1d:4b:5d:c0:2d:4c:fc:95:e8:2e:
bb:98:5b:d3:e7:95:2c:0b:a3:9f:4d:ad:1d:b2:b8:fa:cc:6f:
ad:fb:b9:b7:d2:da:36:95:79:0a:fe:d7:69:77:5f:a1:3b:4b:
c1:cc:17:77:58:32:8b:4a:61:5c:87:64:c8:77:5e:3f:9a:b4:
79:c7:7d:f4:a2:21:71:a7:ea:3b:9b:51:ec:9a:f7:f5:34:04:
c5:96:8b:f9:7c:1b:cf:b9:31:0d:7e:b9:4c:b6:f0:e8:7b:96:
56:c8:11:00:d0:bc:72:be:71:d8:f9:57:12:1d:d9:32:bd:e8:
54:bb:7f:b7:bc:b2:87:58:ba:0a:58:fe:54:1d:c8:3e:da:c6:
ea:4f:f0:ac:f3:a3:e5:39:d6:32:06:04:1d:5c:20:db:bb:3e:
24:9c:d1:ea:7a:1f:4d:6b:58:63:b8:21:64:00:e7:4e:b3:27:
86:84:ec:39:11:1b:f0:6d:24:3c:c0:85:1e:e6:e2:16:92:77:
cc:14:ee:e7:8d:24:ee:91:ec:15:fa:ee:a6:3d:cf:c6:c8:c3:
c1:68:b8:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 08:36:01 2025 by rpki-client