Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft
File: u3zLGm47yrYxnTF_YsdL8eH0FHM.mft (raw, json)
Hash identifier: jmz05rmAHmAL123kWciwUS9OVCeqRRlNQwWd8Hnk3BE=
Subject key identifier: 97:18:A5:AF:F8:86:6E:6B:C6:06:2B:AC:7B:32:2C:09:05:61:72:B8
Authority key identifier: BB:7C:CB:1A:6E:3B:CA:B6:31:9D:31:7F:62:C7:4B:F1:E1:F4:14:73
Certificate issuer: /CN=bb7ccb1a6e3bcab6319d317f62c74bf1e1f41473
Certificate serial: 0196293B787E9793BB3CDFEBD28D0131C767
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u3zLGm47yrYxnTF_YsdL8eH0FHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft
Manifest number: 04B5
Signing time: Sat 12 Apr 2025 09:01:25 +0000
Manifest this update: Sat 12 Apr 2025 09:01:25 +0000
Manifest next update: Sun 13 Apr 2025 09:01:25 +0000
Files and hashes: 1: WziYZQTgG6uYWNEdvqwQxarVou4.roa (hash: K1TtQwXEcoMLvYVaawZdU+KIeSsRtPv5nA+Jxlzh0sU=)
2: u3zLGm47yrYxnTF_YsdL8eH0FHM.crl (hash: 4aqqqR41GJjgxo8KScdkTR4FGOTfriKUo/Nv9wkQ/GA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft
rsync://rpki.ripe.net/repository/DEFAULT/u3zLGm47yrYxnTF_YsdL8eH0FHM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 05:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:29:3b:78:7e:97:93:bb:3c:df:eb:d2:8d:01:31:c7:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb7ccb1a6e3bcab6319d317f62c74bf1e1f41473
Validity
Not Before: Apr 12 09:01:25 2025 GMT
Not After : Apr 13 09:01:25 2025 GMT
Subject: CN=9718a5aff8866e6bc6062bac7b322c09056172b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:44:af:fe:67:24:2e:00:45:cc:a6:95:bb:74:
cb:f4:da:83:55:65:21:5a:b6:17:b6:6a:03:e6:bb:
09:de:74:a4:ca:57:a9:20:97:52:b8:06:9f:74:bd:
92:15:d1:df:df:30:d7:bc:72:f1:54:75:9c:55:93:
19:c6:7f:22:3a:ce:f7:41:04:6e:b5:97:73:9f:89:
eb:73:0d:3e:ad:41:00:70:39:19:5c:11:3c:c7:a6:
17:1f:60:20:24:3b:1c:18:32:26:ae:49:d6:68:cc:
f3:0b:bd:1a:07:e0:a1:02:7a:b8:e8:6e:69:cf:29:
d7:cb:1b:41:33:e8:2b:eb:88:a3:d2:8e:1c:2c:1f:
ec:49:21:37:ca:ec:f8:4e:f3:3b:63:df:c9:39:c9:
08:d8:45:05:02:8c:ef:11:ca:b8:47:a5:5a:4c:29:
be:1f:d8:12:98:55:e7:a0:70:8b:70:d7:b1:d4:32:
9d:16:07:66:74:ea:fd:78:05:e6:f8:e0:6a:5e:a5:
fe:35:ca:15:cc:95:0d:1d:4b:3a:f5:7a:12:ef:95:
6d:5d:bd:66:a6:fb:c9:8b:a9:c8:9b:99:2b:7b:60:
9c:55:13:e9:35:c8:59:fd:9b:6b:27:f0:b0:fd:2a:
6e:c1:6f:60:6f:2b:9d:e5:1d:cd:15:98:ba:3a:6d:
f5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:18:A5:AF:F8:86:6E:6B:C6:06:2B:AC:7B:32:2C:09:05:61:72:B8
X509v3 Authority Key Identifier:
keyid:BB:7C:CB:1A:6E:3B:CA:B6:31:9D:31:7F:62:C7:4B:F1:E1:F4:14:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u3zLGm47yrYxnTF_YsdL8eH0FHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/1bf7b0-4518-4141-bd6c-64b0e614d004/1/u3zLGm47yrYxnTF_YsdL8eH0FHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:73:c2:c8:38:7a:e4:50:3d:0e:f9:72:fa:f6:ff:20:bc:19:
8c:c5:00:a3:6a:aa:b0:4f:65:90:d6:74:53:03:d9:7f:58:39:
c4:96:c8:60:32:04:77:d3:3c:5f:23:7b:58:fd:1a:ca:5d:b1:
c9:53:34:14:43:0a:fb:ee:e2:93:b2:ca:f8:bc:e3:ef:21:b7:
91:86:e7:60:fe:bd:8d:f8:9e:1f:53:02:1d:ea:72:c7:0e:02:
32:42:c6:d2:77:03:74:6a:c5:be:22:ca:4b:f8:9a:bf:bf:05:
b3:d8:72:8a:04:1a:99:49:36:d5:4f:2c:5a:d1:ea:2c:b0:12:
f8:25:e4:32:68:c3:26:ee:d7:dd:b5:57:c5:70:be:28:5a:91:
53:ae:81:9f:41:95:11:46:3b:8b:a5:6c:be:9c:30:e0:eb:ce:
48:02:d8:c4:eb:8c:5f:50:17:bf:be:6f:54:8b:d4:b0:c0:fd:
62:be:b4:4c:b7:d3:01:e9:4d:d2:38:04:a3:22:1b:dd:8f:af:
8a:37:7c:ad:91:5d:ad:27:3d:ca:e9:7c:f8:45:70:c7:ab:b1:
4a:1f:cb:bc:8b:b0:a9:f4:9a:f6:ec:21:ed:d8:83:04:74:38:
23:0b:7b:13:2c:a2:80:3b:e8:74:92:1c:fc:f9:6e:65:17:a4:
a9:2d:5b:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 15:12:33 2025 by rpki-client