Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
File: 9YQK34T7C3WOuopaE1qYA5Pov3M.mft (raw, json)
Hash identifier: jftj28N7hyVfwNTUt1CcdZGz4PqXEYGE+uKWHh7cVgs=
Subject key identifier: E0:07:BC:01:D6:FE:1A:D3:F9:2C:47:3F:87:1B:01:68:71:CA:F8:2C
Authority key identifier: F5:84:0A:DF:84:FB:0B:75:8E:BA:8A:5A:13:5A:98:03:93:E8:BF:73
Certificate issuer: /CN=f5840adf84fb0b758eba8a5a135a980393e8bf73
Certificate serial: 019644B267AF23B9F6E47C1AA6AEEACD4283
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
Manifest number: 9B
Signing time: Thu 17 Apr 2025 17:01:04 +0000
Manifest this update: Thu 17 Apr 2025 17:01:04 +0000
Manifest next update: Fri 18 Apr 2025 17:01:04 +0000
Files and hashes: 1: 9YQK34T7C3WOuopaE1qYA5Pov3M.crl (hash: NbqMOBghQXxspCFGKds96FMccFxbKlsuNnJYbgEmqYI=)
2: n8NfpgAijMpzCpX65rpklB3Tlmg.roa (hash: tLj+vrFwuOUlrlwjfJTF2xymSSPYF1wq3UkCF0leCFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:b2:67:af:23:b9:f6:e4:7c:1a:a6:ae:ea:cd:42:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5840adf84fb0b758eba8a5a135a980393e8bf73
Validity
Not Before: Apr 17 17:01:04 2025 GMT
Not After : Apr 18 17:01:04 2025 GMT
Subject: CN=e007bc01d6fe1ad3f92c473f871b016871caf82c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:39:e8:d0:a2:b9:2c:28:4d:e1:a9:0e:03:37:
11:8e:3b:1e:4c:0b:18:4e:bf:a4:1e:ed:a2:ad:72:
97:86:a5:14:fe:47:43:73:f4:20:92:a4:f4:7a:4b:
c7:f4:b0:37:14:f7:d0:4c:33:e1:5c:d1:60:fe:9d:
31:53:b4:d6:59:d2:21:d8:46:bc:d2:af:d5:ba:9e:
cc:74:73:ea:5c:81:15:49:aa:e1:84:91:05:4d:ac:
89:55:f1:40:ae:55:a3:09:a8:55:bb:4e:53:92:6d:
dc:85:84:7c:ba:aa:47:3f:71:76:9f:48:d1:2a:9d:
8d:3c:72:aa:2a:52:cf:25:01:9c:37:d6:33:44:3c:
87:8b:bd:ce:e0:4f:e5:ce:bb:a3:5b:20:dc:d0:ad:
10:99:be:64:8d:1d:56:18:bb:11:bb:d1:f6:3b:22:
72:e2:59:63:e2:1d:b7:f4:1a:23:50:0e:69:d9:45:
99:d5:f0:fd:f0:6c:52:08:f1:d3:68:2f:69:84:79:
09:b7:8d:eb:c0:ed:5f:72:b0:d6:97:6f:2f:b0:a3:
5b:11:ba:5c:05:ce:b0:ef:92:a8:44:f0:60:95:38:
b6:34:a4:5c:fb:0e:fc:a0:4e:b5:48:d7:03:90:a1:
33:ec:5e:ab:ec:bb:e6:83:7b:ae:8e:b0:69:c9:85:
21:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:07:BC:01:D6:FE:1A:D3:F9:2C:47:3F:87:1B:01:68:71:CA:F8:2C
X509v3 Authority Key Identifier:
keyid:F5:84:0A:DF:84:FB:0B:75:8E:BA:8A:5A:13:5A:98:03:93:E8:BF:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9YQK34T7C3WOuopaE1qYA5Pov3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/4f687f-42fe-47ae-a0db-4c5960ddeb37/1/9YQK34T7C3WOuopaE1qYA5Pov3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:1a:1c:30:c4:e1:6f:09:70:d9:64:99:c6:71:3c:cb:8d:69:
77:48:7b:d5:f8:31:81:9c:a3:96:8b:80:c0:fb:bf:73:a6:7b:
ac:eb:1b:20:50:eb:c2:b7:77:4b:00:31:e9:3e:ad:24:af:b0:
f5:97:12:ed:30:ed:b9:33:dc:33:de:a8:83:59:5a:7e:c2:29:
42:5e:cd:b8:d0:94:1e:ec:e0:61:63:56:e9:b5:77:20:f2:f8:
81:86:f9:9b:4f:55:6e:a0:1a:89:be:19:38:2c:70:4d:05:4c:
48:36:76:bd:76:74:8f:60:89:84:eb:e5:47:55:e4:bc:ad:29:
59:72:8a:84:62:81:3d:1b:ad:99:98:37:c7:ee:c7:71:7f:e5:
cc:73:d7:81:1b:c3:f8:32:4e:44:32:f3:ab:4f:01:b4:55:36:
86:42:b1:29:cb:3a:14:31:15:0a:4b:8f:2e:c7:7a:e5:db:55:
ac:38:85:b0:00:77:dd:0b:0d:25:a2:2f:85:f3:a9:66:30:03:
f0:6c:b3:f0:4f:91:5f:a8:d7:02:00:31:6c:ab:68:cd:19:29:
be:5d:0d:78:db:c8:e3:aa:22:b3:08:e7:45:8c:1d:92:fe:08:
b8:01:9e:fd:bc:23:49:cd:8e:c8:3f:27:27:c9:92:2c:7d:11:
18:d1:18:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 20:00:57 2025 by rpki-client