Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
File: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft (raw, json)
Hash identifier: YiTB1/i2xuFVPT2Xl/l9ojfLWR1408N1O4R23NSrujU=
Subject key identifier: 6C:CE:82:8B:50:CF:8F:79:B3:62:E4:0B:3C:B4:B9:2C:31:4C:52:75
Authority key identifier: D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
Certificate issuer: /CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Certificate serial: 019655009612518C6F1E530603DC1A31D6E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
Manifest number: 14FF
Signing time: Sun 20 Apr 2025 21:00:23 +0000
Manifest this update: Sun 20 Apr 2025 21:00:23 +0000
Manifest next update: Mon 21 Apr 2025 21:00:23 +0000
Files and hashes: 1: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl (hash: 0vcQV6lXABHtF4/pQtT+S+0KiV19ofSRc2PTbuKQr6U=)
2: 4RiMrm8aaExTJ5NxhFCCQc-LTfQ.roa (hash: xT77mBm76fvxQ/4syBVoQsoquUiDMD7RefgDewlMNII=)
3: O84I_LAanBtJYvSSTZhnAsP3iQA.roa (hash: 6ivMoGITrJjRBuEurkZGNP+0M6whX3cvNI3NRDFJ7b8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 21:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:00:96:12:51:8c:6f:1e:53:06:03:dc:1a:31:d6:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Validity
Not Before: Apr 20 21:00:23 2025 GMT
Not After : Apr 21 21:00:23 2025 GMT
Subject: CN=6cce828b50cf8f79b362e40b3cb4b92c314c5275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:a8:37:ee:6a:ee:47:cc:ed:61:5c:c1:39:77:
03:0d:1a:61:7d:bb:88:50:69:d0:05:cb:0d:f7:30:
d4:57:f9:8d:ca:77:45:7d:fd:a2:47:18:88:61:97:
86:2f:a8:02:9e:a1:6d:a4:cc:1b:b8:3c:3a:27:00:
cb:69:02:1e:6c:f9:f5:b1:d3:53:f5:9a:ed:b8:7f:
6c:6f:4d:71:fc:fe:4d:6e:a1:5c:ee:4b:df:bc:49:
42:fb:7e:a3:ff:7d:20:4f:de:a9:ec:96:01:af:0d:
87:e2:22:95:9e:d5:cf:a4:59:e2:d3:e4:da:3f:f1:
18:9c:de:d8:f4:d6:00:87:56:99:5f:77:ed:8c:67:
f4:e7:15:ed:c1:29:50:e5:41:a7:a1:90:f2:cb:65:
f9:86:03:5f:2e:30:40:8d:42:a3:8d:82:3b:4c:e4:
2a:0a:d3:c8:2f:ca:79:e2:c8:30:da:4e:54:8e:43:
ed:db:9c:30:9b:99:42:27:12:1f:84:0b:f2:8e:f7:
21:8d:1e:77:05:7c:1e:85:b9:e0:82:e2:65:b0:14:
15:c0:3e:aa:43:9e:ab:eb:10:53:50:f7:e9:85:53:
d0:a6:3b:01:83:92:ea:a7:4f:06:5f:3d:c9:43:be:
30:0d:02:55:37:4e:69:34:52:ce:83:e6:37:3c:60:
a6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:CE:82:8B:50:CF:8F:79:B3:62:E4:0B:3C:B4:B9:2C:31:4C:52:75
X509v3 Authority Key Identifier:
keyid:D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:27:c2:cb:d5:33:ca:88:57:7d:77:36:fd:83:cb:cc:61:60:
f6:b6:bc:31:6f:62:d6:4e:ed:a8:b7:42:dc:c9:82:90:da:5d:
ad:17:28:9b:8d:c5:d6:74:1e:07:4c:53:bc:35:65:eb:f7:30:
81:b6:49:c1:1e:eb:d9:c5:2c:30:a6:7f:a7:f6:57:a3:94:ce:
59:94:4d:0c:f9:3e:06:63:1e:a5:3b:bc:12:6c:e0:ee:e0:63:
c0:77:30:ab:35:b6:99:c3:3b:38:04:61:4d:3e:d3:cc:df:3e:
26:d0:d9:f7:8a:f1:0b:3d:ee:d9:fb:d1:8e:fc:64:3a:e3:df:
e8:ba:36:e7:62:ad:ba:b3:ee:cc:1b:24:c5:e2:f5:e3:63:f3:
01:8d:74:82:a7:a1:df:03:cc:d8:0a:03:b8:a1:90:68:97:05:
b6:47:11:13:40:74:04:03:7c:08:ce:03:ed:e8:84:3d:f1:09:
3c:95:39:be:f7:2e:e1:4b:dd:f0:2c:a7:cf:4f:18:ab:21:29:
a8:b1:af:ee:55:ee:94:3d:0a:8e:c6:dd:64:c3:53:ff:0b:d8:
e8:d9:6f:a0:b3:1e:1a:64:a1:63:e8:d1:98:88:ac:27:9e:79:
a9:87:19:c6:89:e7:33:f0:94:d4:b5:ec:b0:46:5b:aa:c5:38:
d5:07:71:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:49:12 2025 by rpki-client