Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
File: ddoOY-skfZoLE7TLNt1nJJkgu8o.mft (raw, json)
Hash identifier: 0OtHE0wl6vN89l6K23g0tLYvUjDuZpdxWTrGPFzo4uA=
Subject key identifier: 05:A9:ED:4C:AB:78:31:24:32:B5:07:88:77:E1:44:ED:4C:EB:FC:AB
Authority key identifier: 75:DA:0E:63:EB:24:7D:9A:0B:13:B4:CB:36:DD:67:24:99:20:BB:CA
Certificate issuer: /CN=75da0e63eb247d9a0b13b4cb36dd67249920bbca
Certificate serial: 01964C6B75887923476566FB3E147695D16B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
Manifest number: 14FC
Signing time: Sat 19 Apr 2025 05:00:32 +0000
Manifest this update: Sat 19 Apr 2025 05:00:32 +0000
Manifest next update: Sun 20 Apr 2025 05:00:32 +0000
Files and hashes: 1: Qij-xPisZGBBqpNgu1KPeAhYyeA.roa (hash: 0qt3Er+wn2Xj8MdmWfSXDbZ9aYW82PDchwg6o4/NTxg=)
2: ddoOY-skfZoLE7TLNt1nJJkgu8o.crl (hash: Bezt5SDvmz6i6CsdA7HubulLQrQlX+Xltg2RQ7qVKzg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6b:75:88:79:23:47:65:66:fb:3e:14:76:95:d1:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75da0e63eb247d9a0b13b4cb36dd67249920bbca
Validity
Not Before: Apr 19 05:00:32 2025 GMT
Not After : Apr 20 05:00:32 2025 GMT
Subject: CN=05a9ed4cab78312432b5078877e144ed4cebfcab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:47:36:76:4f:a5:d2:43:7d:21:ed:6d:d4:0a:
b7:c5:51:c7:e6:72:43:cf:5e:59:c5:bc:b2:63:b2:
29:3c:ee:80:c0:7e:5f:f0:57:95:57:9c:47:8b:8d:
6f:a5:34:03:98:7e:ed:a3:8d:37:d2:e7:61:04:9a:
ff:71:2b:b3:79:02:ba:8b:f0:7f:07:80:8e:3f:be:
a7:7b:a2:80:a0:9d:7a:0f:d1:da:38:5d:cd:1e:67:
d9:9a:63:2a:5a:64:c1:f3:28:6f:cd:9b:51:d4:fb:
0d:49:d5:10:61:99:ed:f2:19:92:0a:d6:91:9a:4e:
79:d3:19:a0:79:e0:d2:72:e8:03:11:54:4b:45:65:
5b:b3:a0:ed:6a:d0:ca:77:99:3c:0b:8f:f8:b8:dc:
86:df:54:3b:eb:2b:ca:aa:4c:66:61:37:53:45:46:
13:d5:ee:40:89:82:49:bd:83:26:4f:8c:ab:f7:04:
ee:2f:35:75:bb:1b:f9:77:27:90:eb:3b:18:e6:c8:
ad:2c:b7:0c:90:45:2b:48:b3:a7:a6:77:73:a6:fa:
6d:df:86:7b:20:36:d5:57:b9:22:6d:f6:6f:87:ef:
83:b2:0f:4c:e3:b6:f6:e8:36:9d:4b:0a:62:d9:05:
1f:3a:41:43:9b:fe:50:6e:90:f7:00:7e:42:12:b0:
e1:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:A9:ED:4C:AB:78:31:24:32:B5:07:88:77:E1:44:ED:4C:EB:FC:AB
X509v3 Authority Key Identifier:
keyid:75:DA:0E:63:EB:24:7D:9A:0B:13:B4:CB:36:DD:67:24:99:20:BB:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:78:5b:6d:a7:72:ed:2b:5e:e2:7f:10:53:9e:44:99:c4:e8:
b2:fd:3d:d8:08:4e:84:f6:e9:58:09:70:ef:25:48:83:2e:6e:
d6:5a:a9:c8:7e:10:15:c2:0c:78:dc:b5:64:50:b9:8b:3e:75:
ba:a4:01:2e:33:40:b3:f0:0d:a5:e0:fe:98:31:99:ab:fc:15:
80:92:a3:11:6c:12:cb:96:3c:24:d1:dd:53:df:49:60:e0:79:
e9:2d:eb:11:5d:45:2f:1c:6f:52:84:f1:6d:22:ea:d8:7c:22:
aa:c1:2d:dd:16:8a:c0:bd:a8:bb:a7:45:9d:6e:01:a1:9f:94:
ab:f8:a6:ff:2c:10:ec:c7:3c:11:be:84:81:08:12:ee:3d:99:
3f:c7:20:22:e6:15:42:44:4f:ec:43:0a:cd:00:61:cd:63:8c:
67:77:44:d8:c4:4e:b3:f0:e9:ce:74:36:59:8a:2f:9b:eb:b6:
0f:77:e2:44:ed:e3:1f:c5:0a:eb:aa:93:73:eb:40:68:d1:5e:
c8:df:5a:bc:a5:32:20:54:9e:3f:44:a2:4c:02:c2:5e:e4:76:
92:8a:89:54:96:76:97:19:5f:d3:a5:37:d4:3c:31:49:a7:18:
26:83:a9:85:5a:92:26:1f:d4:78:a1:67:43:6f:44:79:f9:90:
dc:99:5c:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:47:03 2025 by rpki-client