Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
File: Dri8RONvrhbTcQL9DVGfKE1mPZA.mft (raw, json)
Hash identifier: ayPf+jzhPuF6gRLhCWUHlsJKAu4Prhs6Rlh/S/9aSvk=
Subject key identifier: B9:03:F2:0D:EC:3C:C2:53:E6:B7:FE:4D:94:F6:C8:E9:7F:D3:17:B8
Authority key identifier: 0E:B8:BC:44:E3:6F:AE:16:D3:71:02:FD:0D:51:9F:28:4D:66:3D:90
Certificate issuer: /CN=0eb8bc44e36fae16d37102fd0d519f284d663d90
Certificate serial: 01964E59F12920F3125D54DE53F0E74C8BE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
Manifest number: 1445
Signing time: Sat 19 Apr 2025 14:00:39 +0000
Manifest this update: Sat 19 Apr 2025 14:00:39 +0000
Manifest next update: Sun 20 Apr 2025 14:00:39 +0000
Files and hashes: 1: Dri8RONvrhbTcQL9DVGfKE1mPZA.crl (hash: WOfriEsfCesg6/ctbmRfzUtX6h66P+i4UceRNHIIK8c=)
2: EnQM4_whnPJeaxWRQxPEz7dH7rY.roa (hash: anAGsxZMEMPM7WeK+BVeddK3oakg7+TLd3wIh7D05ik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:59:f1:29:20:f3:12:5d:54:de:53:f0:e7:4c:8b:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0eb8bc44e36fae16d37102fd0d519f284d663d90
Validity
Not Before: Apr 19 14:00:39 2025 GMT
Not After : Apr 20 14:00:39 2025 GMT
Subject: CN=b903f20dec3cc253e6b7fe4d94f6c8e97fd317b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3f:ac:fb:09:3e:f1:84:b5:db:6e:b3:ef:d1:
93:03:ff:b8:82:11:87:03:15:cd:04:de:a7:42:ab:
61:3f:d1:f2:b5:3e:66:9b:41:fb:d5:70:f7:f7:5c:
f5:98:7c:15:a0:41:3b:c3:aa:35:55:95:84:7f:f0:
0e:6f:a1:9b:f0:20:e9:5f:78:d7:e3:1a:2e:d4:84:
11:06:32:eb:14:7d:3b:68:6b:16:4d:4b:e6:64:76:
b3:76:7a:55:6e:e8:48:a6:b8:49:ee:83:02:cc:7b:
4a:79:18:9a:e9:a5:65:83:7d:39:1b:e8:7c:57:93:
27:a3:3c:1b:76:59:1b:94:a5:ab:a4:50:28:38:40:
0f:52:44:b1:29:47:0a:45:b7:19:01:83:a7:58:d2:
99:54:f6:fb:ed:94:86:62:e6:20:ae:f2:ba:1e:f1:
5c:ce:61:b8:b2:b7:76:54:2c:76:88:e1:05:03:5a:
45:ad:cd:ef:18:d7:fc:62:9b:ba:fe:ed:91:f4:f5:
be:4c:64:a2:dc:86:38:74:8b:e9:a1:0f:75:68:08:
e2:66:34:23:72:65:10:6b:a7:2f:16:90:29:5a:ae:
8e:55:31:ba:db:d3:90:9a:c7:92:93:03:cf:e7:41:
7b:0f:69:9e:00:94:56:a1:58:5c:5f:fe:33:b2:dc:
2e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:03:F2:0D:EC:3C:C2:53:E6:B7:FE:4D:94:F6:C8:E9:7F:D3:17:B8
X509v3 Authority Key Identifier:
keyid:0E:B8:BC:44:E3:6F:AE:16:D3:71:02:FD:0D:51:9F:28:4D:66:3D:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dri8RONvrhbTcQL9DVGfKE1mPZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61d1ce-cd80-429d-bfe1-89b3a3f15df0/1/Dri8RONvrhbTcQL9DVGfKE1mPZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:e0:a2:bc:c1:e2:93:9b:fe:56:40:fb:c8:fa:1b:b0:63:de:
84:d1:7b:68:9c:4c:02:9a:f7:b1:da:e3:0c:01:d9:ad:28:7c:
88:60:76:30:cd:ff:c5:b1:97:0f:32:54:17:52:b3:94:fa:d3:
1c:b6:3b:70:46:f8:63:45:4e:6c:93:f9:45:bd:b1:e7:8f:6f:
b8:29:a2:98:af:f4:75:73:5a:26:e2:47:a4:56:c7:97:0b:67:
37:f4:fd:1d:91:99:91:f4:1f:65:be:2c:0b:eb:99:8b:8e:c1:
4a:1f:06:4a:e5:b3:ea:d9:3c:cc:a4:59:a9:3c:85:25:ac:19:
b7:1e:5e:e7:fb:5e:3d:43:75:2b:d3:06:36:f5:2c:6a:51:c6:
8e:8d:fd:ef:70:82:8a:4a:3d:76:f3:c9:79:50:54:20:47:2c:
b0:c9:1a:ac:34:09:5d:97:73:f6:8d:8f:63:52:90:0f:0f:1c:
b9:41:ec:21:03:45:1c:d0:d4:ac:c5:84:c2:85:32:80:7a:e7:
ee:6c:79:ad:68:60:07:3d:95:f4:be:05:45:db:91:e0:5b:16:
60:50:68:5c:82:41:8e:82:ad:06:2d:b7:4c:64:35:07:96:4d:
f4:0e:86:90:3a:ca:23:07:ae:1d:a2:26:b9:14:a6:fb:0b:44:
ea:10:5e:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:16:26 2025 by rpki-client