Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
File: l72bhlMeVEr6AwnYvip7ppFj-a0.mft (raw, json)
Hash identifier: PsSReJW0wyvXOQHYN3xlzAjlo7XP/WJ4rKydslknerk=
Subject key identifier: 8A:9A:3F:BD:5A:56:90:B4:65:83:77:70:38:E6:07:30:1C:01:D1:77
Authority key identifier: 97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD
Certificate issuer: /CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad
Certificate serial: 019655008F5B266ED72BA598C855700D14D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
Manifest number: 12B2
Signing time: Sun 20 Apr 2025 21:00:22 +0000
Manifest this update: Sun 20 Apr 2025 21:00:22 +0000
Manifest next update: Mon 21 Apr 2025 21:00:22 +0000
Files and hashes: 1: aMPRUufSIC3BSpnCaSjB3R1EWjU.roa (hash: PznJuTDoIXsWz9HXtvvwD92eU5XcI97tyAGmTVxGT4c=)
2: jkSVZWrRJ0p_sHmkLKgtRqPLq4c.roa (hash: 5AMIR+nAOYfoGTd/SNFuAJTTjyBmPlK6SsLZWPzLm6Q=)
3: l72bhlMeVEr6AwnYvip7ppFj-a0.crl (hash: o4ZPOYV5GYQ1KpRZgJg6KZbg38H3pfTaewGn3a4Vmf0=)
4: vYaorPpQFuOhpBOvS0Y7tNPAUfw.roa (hash: yR9f2kZ/nIXVrv9dXrEzRY+6fv+TWV0eQZK0RZqpM/c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 21:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:00:8f:5b:26:6e:d7:2b:a5:98:c8:55:70:0d:14:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97bd9b86531e544afa0309d8be2a7ba69163f9ad
Validity
Not Before: Apr 20 21:00:22 2025 GMT
Not After : Apr 21 21:00:22 2025 GMT
Subject: CN=8a9a3fbd5a5690b46583777038e607301c01d177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7e:c6:ca:c7:1b:af:3e:71:ac:c5:3d:2f:a8:
72:a9:7b:28:37:fe:67:68:a8:44:44:cb:5f:30:cf:
09:06:e8:d4:87:41:5c:e7:78:d4:e5:9a:08:74:bd:
7b:8c:87:c4:a2:b1:38:6f:57:eb:5f:fb:12:98:3d:
7e:a7:17:93:84:83:74:f5:8c:b8:7e:6d:13:eb:0c:
72:02:fc:d9:6f:51:0c:38:e0:4c:a0:f4:6d:58:5b:
20:4d:ae:91:bb:33:fd:8a:66:f1:f3:72:d2:cf:72:
8e:8f:cd:33:d7:3f:3a:46:d6:1a:99:a9:5a:ad:1e:
e4:ea:c4:e0:80:e8:b1:79:59:24:e9:00:af:6a:b7:
2f:64:0a:dd:67:61:de:83:c5:a9:ea:6d:81:1a:94:
35:19:1c:38:10:92:3a:e1:ec:89:f4:48:3d:87:03:
15:d5:26:bf:4d:b8:fd:50:a0:a9:a2:28:ba:a2:32:
c1:ec:04:f3:c8:bc:a3:25:86:c6:93:5b:52:2a:a6:
02:88:c7:0b:21:cd:55:85:8b:90:cd:11:62:2e:c8:
2c:fe:25:23:6f:66:35:14:16:6e:79:bc:78:5b:3f:
29:99:8d:62:29:eb:5d:4c:18:21:63:fc:18:fb:c6:
92:da:02:e8:ad:96:11:24:03:65:1b:74:ba:75:cf:
6c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:9A:3F:BD:5A:56:90:B4:65:83:77:70:38:E6:07:30:1C:01:D1:77
X509v3 Authority Key Identifier:
keyid:97:BD:9B:86:53:1E:54:4A:FA:03:09:D8:BE:2A:7B:A6:91:63:F9:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l72bhlMeVEr6AwnYvip7ppFj-a0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/d4bd8b-55f4-4765-ad22-3460cc26480b/1/l72bhlMeVEr6AwnYvip7ppFj-a0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:e4:3a:0d:b8:56:fa:c9:14:09:b2:e0:01:74:29:e0:06:7f:
03:66:65:9b:d5:15:91:89:94:bc:cf:a4:9b:0a:df:8f:5a:db:
36:df:4e:12:ea:47:b2:3b:ca:0e:f8:40:d8:d7:0c:e6:99:a5:
05:e2:41:42:b4:69:b1:2b:c1:02:06:70:09:1e:d6:fa:b3:66:
05:38:9f:ae:19:36:9a:c6:f5:ea:b8:bf:2a:c6:0a:b2:c6:25:
97:7b:e3:e8:42:a9:8d:9e:1d:dd:02:ba:3e:8a:52:8d:bb:eb:
5d:26:34:16:59:71:f0:ed:69:4f:f6:f9:fb:57:ed:01:a9:40:
e5:ea:8e:a0:87:24:93:cd:b2:11:7d:24:72:cb:3a:43:46:b0:
fb:ce:ff:a6:b8:66:9e:ec:16:37:49:60:50:e1:2f:b7:25:7e:
41:6f:4a:ae:08:bc:11:9a:3f:1f:2e:b6:bd:b8:88:47:16:63:
98:5d:9c:f0:c1:b4:f8:3c:e0:c4:51:0b:3d:72:17:48:c1:7c:
49:5a:6e:65:d4:72:27:25:19:10:2e:14:be:74:79:7b:5a:f5:
48:e5:de:96:6f:9a:bd:3f:7b:50:36:f6:2f:5c:09:a6:e7:83:
f5:e1:13:1c:b4:79:4a:cf:2b:0d:d1:ef:6d:61:1b:8c:f2:a3:
45:66:60:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:38:27 2025 by rpki-client