Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft
File: 0SIIZtpI4MfP--jHOjUcKkexpNs.mft (raw, json)
Hash identifier: JLBOnudxNAlWp5T/qzGF4bB2VJukMVivsWgT5XMG6zI=
Subject key identifier: 71:37:79:7C:46:A5:39:02:F3:6C:A6:3B:ED:B1:14:F0:7D:E9:F2:A1
Authority key identifier: D1:22:08:66:DA:48:E0:C7:CF:FB:E8:C7:3A:35:1C:2A:47:B1:A4:DB
Certificate issuer: /CN=d1220866da48e0c7cffbe8c73a351c2a47b1a4db
Certificate serial: 019648FC7A6BE487827F26B3E5261523CD15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0SIIZtpI4MfP--jHOjUcKkexpNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft
Manifest number: 0280
Signing time: Fri 18 Apr 2025 13:00:27 +0000
Manifest this update: Fri 18 Apr 2025 13:00:27 +0000
Manifest next update: Sat 19 Apr 2025 13:00:27 +0000
Files and hashes: 1: 0SIIZtpI4MfP--jHOjUcKkexpNs.crl (hash: 8z65jfCMNYA2FYsZZ+VDTY/NdVUO5YRVY+gt0pnYcqo=)
2: BtILLkhjQwKc-cBqSY27nFkJu8g.roa (hash: j7KTEXdiX1vJGa7Y4gsoM737n4p+uU95jozk1BXznCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/0SIIZtpI4MfP--jHOjUcKkexpNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:48:fc:7a:6b:e4:87:82:7f:26:b3:e5:26:15:23:cd:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1220866da48e0c7cffbe8c73a351c2a47b1a4db
Validity
Not Before: Apr 18 13:00:27 2025 GMT
Not After : Apr 19 13:00:27 2025 GMT
Subject: CN=7137797c46a53902f36ca63bedb114f07de9f2a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:42:b8:56:d2:50:a6:2f:55:36:8a:9e:c8:ea:
d6:0c:da:59:a8:fa:0f:62:c0:f7:58:e8:1e:36:0b:
1f:c7:a9:8a:fb:10:7a:dc:de:d2:ce:14:f9:66:13:
28:48:e5:9b:a0:e0:23:8e:4a:89:23:a4:4f:a7:b6:
8a:15:11:48:8e:5f:3f:19:a2:d0:11:86:2f:56:63:
a8:5a:56:4b:63:3d:5f:b9:f5:c9:2a:df:e2:b9:eb:
8f:8b:4e:b2:0f:5e:2e:3b:e1:a2:9b:f1:2f:8f:8e:
10:08:3c:b9:e3:39:c2:6f:c2:75:f8:a8:d2:bf:89:
1f:0e:81:36:97:4d:cf:b7:ad:33:6b:27:f8:9e:0f:
6a:0f:31:2d:ef:65:55:fd:c9:96:95:26:ae:73:b9:
8b:e8:05:41:f0:67:c6:29:fe:2d:4f:90:8b:14:94:
1a:f6:2a:5e:99:b5:3b:21:2d:2e:b4:c1:16:02:c7:
6e:eb:d0:38:b4:89:bf:39:23:35:3f:f9:cc:10:da:
cc:df:32:ed:8e:27:2e:4e:5a:c3:6d:f9:20:46:f4:
03:bd:95:f8:1f:c0:92:ce:11:e8:86:f2:51:43:b0:
ed:af:cf:bc:69:17:b7:55:5e:72:51:78:e4:a3:2a:
d7:0f:92:67:a4:41:da:2a:97:75:4d:45:36:ff:67:
33:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:37:79:7C:46:A5:39:02:F3:6C:A6:3B:ED:B1:14:F0:7D:E9:F2:A1
X509v3 Authority Key Identifier:
keyid:D1:22:08:66:DA:48:E0:C7:CF:FB:E8:C7:3A:35:1C:2A:47:B1:A4:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0SIIZtpI4MfP--jHOjUcKkexpNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/60951e-7ab5-45d8-9015-95ecd6718887/1/0SIIZtpI4MfP--jHOjUcKkexpNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:c6:23:da:ff:36:ce:78:b7:b7:26:55:1d:94:e0:f4:94:57:
89:fc:94:52:a2:23:17:a5:57:eb:a7:c2:75:a9:a8:6b:93:4f:
1c:62:1d:60:41:2d:f3:d8:5c:b3:6b:dd:f8:5d:c0:8f:9d:6c:
4c:4e:f2:94:8b:16:f6:11:f3:64:14:e0:ca:4f:78:cd:81:23:
5a:e8:ae:d0:15:62:fe:36:98:f5:7c:ec:17:d8:1f:cd:8e:4b:
00:00:ab:30:08:fb:66:36:d4:97:b0:f0:7e:85:af:6f:93:6d:
b1:26:dc:72:97:54:63:45:20:31:b4:bb:7e:60:31:ce:2b:10:
e4:a6:05:89:4b:52:17:fc:77:c2:3c:2b:14:7b:72:96:ce:87:
30:29:c3:e7:a7:66:96:09:85:ea:6f:85:70:48:90:4b:27:55:
e5:58:d9:2b:66:7d:0b:79:ab:c4:8a:04:ef:c4:90:fb:ed:f7:
05:3e:a7:78:03:fb:61:9c:01:19:cb:7c:f4:6e:36:21:a0:41:
02:4d:35:5c:91:8d:7c:5f:69:29:08:ea:b0:f8:3f:94:3f:85:
dc:c0:c5:3d:ff:ab:14:85:63:86:7e:f7:2f:48:8f:2c:c0:86:
6a:3c:27:0e:10:0f:f1:7a:02:25:4d:71:74:a2:b0:23:cc:3a:
1f:eb:d1:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 16:31:41 2025 by rpki-client