Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
File: doFcfQ6GPCF4D4v0uezDqcZFkpg.mft (raw, json)
Hash identifier: aLVNCZ4XtCOVts4XDV9xNWE6rAV2W0EPf3ZlPRTLv7E=
Subject key identifier: 59:76:BE:F6:F6:7B:45:78:08:12:8C:BD:9C:2C:D8:E1:AA:9D:F0:CA
Authority key identifier: 76:81:5C:7D:0E:86:3C:21:78:0F:8B:F4:B9:EC:C3:A9:C6:45:92:98
Certificate issuer: /CN=76815c7d0e863c21780f8bf4b9ecc3a9c6459298
Certificate serial: 01960866DCC1BBCAFF7F28DF67EEFE4047B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
Manifest number: 01CC
Signing time: Sun 06 Apr 2025 00:01:20 +0000
Manifest this update: Sun 06 Apr 2025 00:01:20 +0000
Manifest next update: Mon 07 Apr 2025 00:01:20 +0000
Files and hashes: 1: doFcfQ6GPCF4D4v0uezDqcZFkpg.crl (hash: itl3rEW7L1/BAgdgmjy8iokoKYy+lx4j+ia3Mj69Z+4=)
2: pTTtPKmhE713zQ-lNSyfapckqck.roa (hash: Z4OXgVLMtdMbDgwAv+QfBL8XpAweOau33nbHajpmsxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 23:34:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:08:66:dc:c1:bb:ca:ff:7f:28:df:67:ee:fe:40:47:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76815c7d0e863c21780f8bf4b9ecc3a9c6459298
Validity
Not Before: Apr 6 00:01:20 2025 GMT
Not After : Apr 7 00:01:20 2025 GMT
Subject: CN=5976bef6f67b457808128cbd9c2cd8e1aa9df0ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:36:23:77:c8:a4:44:3a:99:29:64:50:ca:79:
3c:51:ff:11:60:60:a8:69:5f:3a:82:e5:c0:ff:c7:
8f:08:cd:78:ab:ac:88:86:2c:c7:cb:bb:5c:53:e4:
17:34:32:a0:39:e1:e3:b1:9f:d8:28:e3:de:b0:d6:
2d:1b:54:75:62:2a:2d:40:09:a0:a3:cb:a4:79:e2:
10:06:c9:21:39:c1:eb:ef:04:d7:fd:cd:0a:ce:53:
2e:f5:ec:d4:0d:ea:00:b3:36:fb:48:9f:a4:74:a8:
2b:05:02:fe:00:3a:e7:58:19:3a:91:f4:0c:c7:c3:
10:45:7a:53:0a:d5:ad:69:72:1a:e1:9a:cc:0c:59:
12:0f:d0:e0:13:ce:e8:46:1f:04:b2:46:d8:d6:08:
58:90:1b:95:fd:75:c5:c3:ad:a5:ba:27:84:47:e9:
8f:63:7b:f4:3c:e8:95:81:12:f1:58:77:81:c1:ad:
5d:2c:c9:98:2d:7b:6d:bc:01:6d:0a:be:f0:4c:84:
94:5e:66:84:e2:b6:a2:5d:60:77:04:85:16:a6:13:
58:44:01:49:52:c7:39:20:07:d4:61:ba:1f:0b:1e:
fb:06:f4:f9:d5:4c:00:e9:33:cc:52:59:43:78:21:
22:9f:7e:f8:a6:64:fa:8b:89:0e:53:f1:f6:2a:86:
b1:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:76:BE:F6:F6:7B:45:78:08:12:8C:BD:9C:2C:D8:E1:AA:9D:F0:CA
X509v3 Authority Key Identifier:
keyid:76:81:5C:7D:0E:86:3C:21:78:0F:8B:F4:B9:EC:C3:A9:C6:45:92:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:be:03:52:6b:f8:67:92:5b:3e:ea:11:71:23:d6:b9:d1:ca:
c3:ef:a3:66:d8:d2:92:a4:c6:33:7b:4c:5d:37:e6:b4:71:05:
e1:57:dc:4a:f9:a9:26:af:d9:d0:d6:ad:d7:1e:12:56:da:93:
29:d6:98:12:85:96:a6:b2:14:99:96:ed:21:61:cf:20:6e:78:
05:bb:86:02:f6:1a:00:de:6c:ee:44:9a:1e:fa:0f:d3:42:a0:
37:00:0d:8d:95:46:e6:c2:84:33:ec:4a:2a:e4:ff:38:ea:6b:
bb:e9:9a:6b:31:90:2a:42:1e:18:5b:a5:5d:c1:de:a1:2c:3f:
7a:4b:2b:e8:e4:81:2e:25:9f:2c:f2:fe:50:d6:61:bb:7a:c5:
b0:61:9f:dd:9f:8c:5e:75:53:c9:b9:49:22:b0:7a:5d:69:4b:
dd:4b:91:49:31:c5:ad:99:dd:18:fc:31:e0:da:a9:3f:fd:9e:
5a:5b:fe:53:28:05:c5:86:5e:8a:30:0d:7a:29:d2:fd:2e:41:
7b:6a:87:e8:f7:f7:74:7a:07:e5:3b:72:95:42:5e:53:fc:07:
64:4d:2c:49:f8:4a:32:bb:66:3b:3d:c6:f8:e8:32:d7:e7:92:
a9:0a:dd:4a:b7:2d:1b:50:7b:d1:ea:4f:1a:2f:68:c1:fd:49:
97:bd:a6:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:30:52 2025 by rpki-client