Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
File: doZr5p83cHIKbcxHkuaA_H9zIaE.mft (raw, json)
Hash identifier: 71j7IqlHHi69PR48cfoiIKtbChlpNDx0aFmU8MmOnOc=
Subject key identifier: 91:C8:5F:82:9C:30:B5:FD:95:4B:56:12:FC:35:17:01:5A:07:72:AE
Authority key identifier: 76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
Certificate issuer: /CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Certificate serial: 019654C99FB76574F371AF61690D46FD1001
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
Manifest number: 1500
Signing time: Sun 20 Apr 2025 20:00:21 +0000
Manifest this update: Sun 20 Apr 2025 20:00:21 +0000
Manifest next update: Mon 21 Apr 2025 20:00:21 +0000
Files and hashes: 1: VGNUuwe-hqqAy7oOkHM2nEayK1o.roa (hash: PbhbER0ewQHcNx+5Jye/cmyEemdCt4HhzE4je62M8OM=)
2: doZr5p83cHIKbcxHkuaA_H9zIaE.crl (hash: HPf3CX0B/XYk3AO/YSXUU1dvbeq/E1h1+qjH/N9KoVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 20:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:9f:b7:65:74:f3:71:af:61:69:0d:46:fd:10:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76866be69f3770720a6dcc4792e680fc7f7321a1
Validity
Not Before: Apr 20 20:00:21 2025 GMT
Not After : Apr 21 20:00:21 2025 GMT
Subject: CN=91c85f829c30b5fd954b5612fc3517015a0772ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6b:ad:4b:59:c7:c0:06:d7:54:bd:dc:d0:94:
b0:de:87:66:0b:23:22:3f:f3:d7:93:4f:e4:8e:d8:
58:9e:bc:ca:ac:0b:e3:9d:f0:db:dd:5f:bf:d9:a1:
11:e8:80:d6:2d:2b:fc:13:d4:6f:a2:4f:b5:e4:94:
9e:f3:ac:05:8a:75:e4:c3:36:ef:60:40:eb:3c:2a:
39:ba:59:9d:ac:0c:69:e0:a5:3f:fb:71:3f:44:84:
36:93:c5:b5:0e:ce:d3:14:32:21:d1:be:e1:12:bd:
dc:d2:4f:81:5e:9b:15:71:6d:d6:df:07:b2:04:69:
15:df:2c:37:88:4c:29:16:a2:44:1f:d5:17:c1:8d:
b0:b2:a6:b2:9c:10:0b:24:28:f0:c7:d0:a6:4e:26:
c9:34:2f:b3:03:8e:34:59:f3:80:9e:8e:5a:1d:c8:
6d:4b:44:eb:18:31:f1:0e:74:c9:e8:ed:d6:6c:0b:
2d:a6:5d:cd:ba:77:cc:b2:b6:e4:b6:9f:af:4d:2d:
51:b0:2d:6b:5d:89:f2:87:af:5d:e0:f9:6e:48:05:
69:50:2b:8a:ce:85:bd:eb:2c:03:c0:26:df:04:7b:
b5:1d:0d:6f:04:bf:94:22:f1:77:e7:fa:5a:41:96:
53:0b:52:88:2b:61:fa:f7:37:07:44:c1:b7:bb:cb:
4d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C8:5F:82:9C:30:B5:FD:95:4B:56:12:FC:35:17:01:5A:07:72:AE
X509v3 Authority Key Identifier:
keyid:76:86:6B:E6:9F:37:70:72:0A:6D:CC:47:92:E6:80:FC:7F:73:21:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doZr5p83cHIKbcxHkuaA_H9zIaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/25812d-8cd7-4707-8bdb-cfa5042dc95c/1/doZr5p83cHIKbcxHkuaA_H9zIaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:6e:5a:e1:95:bc:9a:e9:10:b9:fb:6f:c5:47:50:7c:fd:12:
bd:e1:13:64:43:7e:76:2f:65:04:13:98:3b:1a:eb:62:1e:ed:
f2:57:0f:63:3a:33:9d:9e:42:88:60:09:fe:88:b7:d3:22:9f:
1a:2a:9c:b1:5c:8b:7d:0b:40:3c:85:af:24:f4:b2:de:dd:8d:
b5:51:49:aa:2e:2d:3a:a8:1a:4d:3d:36:8b:61:0e:d6:12:ee:
c0:d8:1d:72:02:5b:26:10:5f:ee:8f:2a:3c:26:14:6c:6e:5d:
99:1e:64:15:6e:74:0d:7b:1b:d3:ea:67:6c:c3:cc:7b:a1:ad:
cc:f2:99:de:31:d5:02:0b:e9:d6:66:01:0e:6b:7f:cf:76:73:
9b:86:21:95:20:09:41:a1:b5:86:37:1b:61:a6:69:08:0c:f1:
fb:49:ee:22:82:5c:8d:de:89:fc:37:8b:0a:72:a8:84:ab:f5:
a6:fd:98:cf:ac:b1:6c:1e:b9:6f:ed:7e:c0:40:2a:a6:a4:b7:
dd:f0:04:8e:13:db:23:8d:d7:23:15:63:4f:69:7d:53:b0:07:
00:6d:0c:50:75:c9:7a:22:05:c1:67:74:1d:c0:e0:4c:bc:71:
18:a2:50:ce:cd:63:70:cc:c4:59:c3:b5:e0:34:4e:2e:db:b1:
cf:a4:9f:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:29:23 2025 by rpki-client