Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
File: D9zw7HuvNJ6JLVERXCLA29Q1C44.mft (raw, json)
Hash identifier: y6cQqQ1pjdmbcWEEqspKqhwZXDhLq3m6mSYtdR+nKUE=
Subject key identifier: 3A:E4:91:88:D4:5E:67:25:23:5C:07:04:F3:24:6D:40:6C:80:C7:7D
Authority key identifier: 0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E
Certificate issuer: /CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e
Certificate serial: 019656EF2D0714B31DA7BAF75707D089E660
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
Manifest number: 01B7
Signing time: Mon 21 Apr 2025 06:00:37 +0000
Manifest this update: Mon 21 Apr 2025 06:00:37 +0000
Manifest next update: Tue 22 Apr 2025 06:00:37 +0000
Files and hashes: 1: D9zw7HuvNJ6JLVERXCLA29Q1C44.crl (hash: si0fuElH8Pec6vJBbuAK/rQNiaFWm9cYkjdMYU1G3gk=)
2: LkbZ9NbuqV8kVwW0R6t_W7E36SY.roa (hash: OFwtZ8nR+nHbeTcy4UO/g/3elRZlu1GMxchq0zT/W/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 06:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:ef:2d:07:14:b3:1d:a7:ba:f7:57:07:d0:89:e6:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdcf0ec7baf349e892d51115c22c0dbd4350b8e
Validity
Not Before: Apr 21 06:00:37 2025 GMT
Not After : Apr 22 06:00:37 2025 GMT
Subject: CN=3ae49188d45e6725235c0704f3246d406c80c77d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6c:23:b6:62:ec:97:1e:f2:e0:83:37:3a:a1:
c6:37:89:c0:53:66:b3:9b:ba:6a:e0:e8:f2:86:19:
bf:17:c7:52:16:8e:15:eb:0a:bd:be:79:7c:9d:50:
32:94:1b:f5:14:58:59:d7:8d:b2:9f:ab:11:42:6b:
6f:f8:c6:af:94:21:71:63:6f:02:04:7d:7c:8c:87:
26:44:95:e4:09:83:45:cf:76:c8:58:72:ea:cf:8e:
e8:aa:67:40:b1:9c:06:53:38:64:8a:b8:e3:10:eb:
b8:b9:ab:80:7f:1c:92:1d:51:52:a1:2c:14:9c:b6:
6a:85:2e:f8:7c:c5:85:68:f8:79:bc:d2:f3:7f:b0:
39:dd:2d:fb:d8:cf:72:2c:40:4b:eb:4f:e0:19:dc:
87:a1:27:3f:ef:c7:84:89:7d:1c:df:3a:6e:24:b2:
63:9c:4c:a1:40:13:6e:bb:d8:b8:98:db:77:6a:1e:
dd:d7:86:41:a3:3d:4b:68:3f:71:42:6d:a8:1c:64:
67:02:d6:68:13:b8:9a:4d:96:7a:4c:50:49:b2:21:
9c:7e:f3:59:ca:c2:56:bb:98:74:f4:94:01:e0:76:
db:ad:41:f4:69:96:0b:1a:9f:6f:04:55:a6:53:e9:
2b:bf:38:4e:ff:7b:35:07:7b:88:25:f1:39:51:22:
c2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E4:91:88:D4:5E:67:25:23:5C:07:04:F3:24:6D:40:6C:80:C7:7D
X509v3 Authority Key Identifier:
keyid:0F:DC:F0:EC:7B:AF:34:9E:89:2D:51:11:5C:22:C0:DB:D4:35:0B:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D9zw7HuvNJ6JLVERXCLA29Q1C44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2482ba-41ce-409a-8e7e-b295838abbd9/1/D9zw7HuvNJ6JLVERXCLA29Q1C44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:3a:6a:b7:ec:60:a1:84:79:ec:aa:94:16:19:a9:51:10:7b:
81:ab:30:fc:c4:c5:36:71:e3:a1:b0:10:3f:15:ab:8c:bc:7c:
05:77:a2:b2:73:72:44:a8:eb:db:95:ce:e2:66:01:53:d9:bc:
fd:0b:d0:fb:7c:a8:a1:36:f9:6f:24:62:78:55:f4:0f:b8:5f:
ca:9b:44:e9:13:11:a6:d8:96:d3:64:1a:da:6b:f0:88:e9:bc:
95:6c:73:64:66:75:67:ba:e4:84:4d:ab:62:2f:e0:c9:57:c3:
56:69:90:ac:41:96:c5:39:af:60:eb:9f:b8:ce:4b:fb:a1:e8:
ef:13:9b:95:5b:20:e9:74:c4:a8:4a:c0:6e:2d:9f:78:22:b2:
47:fa:dd:13:77:6d:b6:ab:38:71:f1:70:a2:5f:c9:fa:f1:e9:
9a:76:7b:35:64:48:d8:8b:bb:34:55:9d:1a:1e:70:81:4c:4b:
c3:f4:9f:1b:9d:42:a1:5f:df:b0:25:ae:1f:3d:c1:7d:df:84:
bf:97:72:4e:17:a6:28:4a:2d:e8:40:97:09:1c:11:11:24:ad:
3b:af:d0:f4:b1:6d:78:b8:26:54:a0:97:e5:1b:a7:f0:6e:e6:
34:68:b5:e7:9f:f0:a7:3f:15:40:b8:d5:5e:27:8a:e3:ca:b8:
b3:7d:f3:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:14:52 2025 by rpki-client