Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
File: N5fgOfAlolqm6ZI5HZJCYGmbpns.mft (raw, json)
Hash identifier: rqFcJfNXO7SEYmS3vIKBpkvXad07U3rD7uuLJ68NZ3Q=
Subject key identifier: 0D:87:B1:BB:27:A3:D6:A8:E8:1E:6A:2E:44:50:ED:EE:5B:26:E0:DC
Authority key identifier: 37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B
Certificate issuer: /CN=3797e039f025a25aa6e992391d924260699ba67b
Certificate serial: 01958BBB4340531BD6C789BCC253F170FB92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
Manifest number: 0E10
Signing time: Wed 12 Mar 2025 19:01:00 +0000
Manifest this update: Wed 12 Mar 2025 19:01:00 +0000
Manifest next update: Thu 13 Mar 2025 19:01:00 +0000
Files and hashes: 1: N5fgOfAlolqm6ZI5HZJCYGmbpns.crl (hash: QqXqycxjAValpD7K8RbiMXyETrbxMLpkbjFg6jr/lgg=)
2: sVzqlUVXrHqVsVw4yhzSu1oYIjM.roa (hash: HaD8do3X9duYtx96VIyzNjLwjQlO2MrTlBSjfqbB5ec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:bb:43:40:53:1b:d6:c7:89:bc:c2:53:f1:70:fb:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3797e039f025a25aa6e992391d924260699ba67b
Validity
Not Before: Mar 12 19:01:00 2025 GMT
Not After : Mar 13 19:01:00 2025 GMT
Subject: CN=0d87b1bb27a3d6a8e81e6a2e4450edee5b26e0dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:0b:e4:c5:b9:bd:d1:13:a8:3a:92:e6:68:43:
44:80:22:35:9c:3e:91:29:e2:84:a1:4d:a8:22:ac:
77:70:8c:e8:ff:f5:2d:f5:ee:b2:00:8e:5f:a2:c5:
0a:0a:60:76:c5:65:de:4c:12:c8:50:7c:dc:ef:2a:
50:8d:3b:0f:a9:f3:6d:b6:2b:c1:b1:cf:8b:8b:03:
1c:c2:1b:ef:24:3b:26:31:2f:15:ca:ac:ba:a7:87:
7e:23:1b:16:ca:64:e0:0b:9e:cb:49:f7:3a:a5:0c:
55:2c:be:60:79:aa:83:4e:ea:6c:bf:8e:93:31:9a:
3b:a3:ec:47:49:54:de:ab:33:6f:61:40:4d:0a:d3:
4e:62:4a:3b:33:64:09:6c:ee:b6:a3:37:60:d0:b6:
3f:d0:30:60:57:8e:ec:34:8a:88:a4:00:e6:b8:69:
1e:56:1e:6e:5e:d4:3f:70:f7:10:1c:2b:96:99:26:
34:8f:2e:9f:03:07:98:2f:c0:1b:b4:99:09:e2:90:
ee:5a:61:bd:25:df:bc:e6:77:0a:45:65:05:72:ec:
08:cf:85:b1:f3:52:a2:48:2d:b2:9a:fb:52:52:20:
f9:08:45:91:4d:fb:c7:25:82:34:40:f2:ba:4d:84:
8b:a2:32:66:a5:1c:92:e1:dd:90:c6:c7:bb:d6:18:
66:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:87:B1:BB:27:A3:D6:A8:E8:1E:6A:2E:44:50:ED:EE:5B:26:E0:DC
X509v3 Authority Key Identifier:
keyid:37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:71:14:d0:1a:d7:a7:ac:a7:e2:b3:53:c1:1e:5f:12:1c:ed:
98:35:b9:4c:f3:f8:da:f1:0d:77:5e:0b:be:b9:ca:60:8a:75:
0d:e9:1d:2d:ed:13:22:18:11:b5:d1:88:f1:2f:14:53:e6:d6:
a5:27:1b:37:43:9f:3f:1d:56:72:bc:31:8d:e7:96:1c:61:03:
ca:84:53:7b:5a:2b:15:0a:24:89:12:cd:bf:51:43:de:4a:22:
6c:04:98:cf:11:ff:e8:7b:8a:36:32:aa:40:62:cb:23:e2:87:
34:2c:d2:bc:78:5a:77:f4:44:8f:5f:32:ef:b4:37:96:af:fc:
b8:a7:50:94:4a:b3:9d:11:29:7e:b2:72:55:27:25:9f:c9:dc:
49:b4:70:79:07:25:00:0d:a7:04:82:7a:d4:7c:36:2b:f2:87:
62:39:14:6d:82:5f:23:2b:f8:f3:71:c2:6a:dc:95:f4:68:95:
b0:89:98:10:60:75:c6:16:c0:b2:32:49:4e:71:36:5c:2d:32:
09:c3:46:e4:fd:a6:1a:fe:f5:84:41:fa:9f:7e:06:50:00:1a:
fb:b6:cc:e6:73:16:bb:41:32:45:02:01:54:59:c5:ac:06:26:
35:66:1d:36:81:e0:0d:7b:f9:0b:f7:c3:b2:61:3f:15:68:c3:
9b:4a:04:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:50:34 2025 by rpki-client