Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
File: u4rmO3V9oa95DyD1nGNIEe7rG8w.mft (raw, json)
Hash identifier: vxh0iiYTwYw82ozNGY3H3484b8tACoTYohVYABHIfds=
Subject key identifier: 9A:11:EE:78:64:BF:66:DC:02:92:1B:0C:4F:B2:8C:44:0F:D7:E1:26
Authority key identifier: BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
Certificate issuer: /CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Certificate serial: 01964B58F8F48E3559D330154605FBBE0092
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
Manifest number: 099A
Signing time: Sat 19 Apr 2025 00:00:44 +0000
Manifest this update: Sat 19 Apr 2025 00:00:44 +0000
Manifest next update: Sun 20 Apr 2025 00:00:44 +0000
Files and hashes: 1: DIYIrtOVCh0oZUgoHnsBzDVYRgk.roa (hash: 9ygbw2KxTYEdLBVrIZpBTqLv2Fu0lBk+DuBHrlgf8dM=)
2: u4rmO3V9oa95DyD1nGNIEe7rG8w.crl (hash: JwNKll99QM7sA83s+I85j1/ylPTDdZ5LW6rDNewSdxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:58:f8:f4:8e:35:59:d3:30:15:46:05:fb:be:00:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Validity
Not Before: Apr 19 00:00:44 2025 GMT
Not After : Apr 20 00:00:44 2025 GMT
Subject: CN=9a11ee7864bf66dc02921b0c4fb28c440fd7e126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4b:a0:c2:09:dc:20:b3:57:d4:c0:96:22:08:
8a:36:64:b1:07:84:d3:8d:a5:b3:73:76:7a:b6:5c:
86:21:8d:5f:39:f9:32:0b:d2:43:f7:93:a1:1e:da:
8f:86:fb:83:fd:cd:d7:72:7d:79:bd:65:23:e4:9e:
d8:6f:6f:48:90:cd:2a:85:3f:fa:07:50:48:62:8b:
1e:46:9e:da:f8:1b:65:f5:d8:c3:2a:94:f5:ec:b9:
dc:8f:31:39:13:9b:62:c4:c4:a8:f1:57:64:2a:58:
75:02:6d:c9:63:42:64:50:eb:f9:66:88:fe:1d:32:
fa:6c:22:0c:d7:65:92:a4:35:98:56:ad:c6:69:7e:
10:c4:42:0f:3d:89:8a:b7:4a:86:f1:36:9b:dd:75:
9a:13:d2:28:87:91:04:7a:d8:c5:8b:d0:fa:0b:36:
f1:ff:ad:2c:01:bb:23:a2:56:e7:5c:ca:81:f5:7c:
a6:c1:0c:f4:f2:72:db:56:65:25:e9:c7:fb:30:96:
7b:f6:8d:81:51:60:fc:a2:ca:b0:1c:07:84:c8:66:
ca:b5:99:94:3e:b6:dd:56:cd:a6:b9:49:75:86:0d:
aa:66:49:be:c0:56:d5:e3:50:e1:e0:61:ba:99:c9:
a5:db:ea:6c:ad:67:30:1e:1c:31:23:0b:8e:0b:7c:
ab:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:11:EE:78:64:BF:66:DC:02:92:1B:0C:4F:B2:8C:44:0F:D7:E1:26
X509v3 Authority Key Identifier:
keyid:BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:8d:e3:32:86:df:f7:fa:0f:6d:d7:ef:ad:f9:2a:9b:fe:13:
b8:9f:c2:8a:0f:80:5d:44:f8:35:e4:d0:73:61:a0:c3:01:4b:
1a:7e:08:e6:b4:41:8c:d2:b9:fb:ae:7d:29:70:8b:cc:28:cc:
a5:d2:8e:7a:c0:c9:74:e4:55:c3:8f:64:f1:78:2f:56:1d:09:
58:51:d3:52:76:ce:ea:d7:39:a7:05:9c:66:65:0b:6d:ad:d6:
09:09:75:35:c1:8e:e2:82:40:e9:4b:62:f0:67:c9:95:96:0c:
b9:dd:6d:a0:b0:97:44:2e:9f:7c:1d:b3:5e:90:81:a3:93:57:
f8:eb:6d:e4:f0:f2:4f:f0:e4:eb:92:3c:44:73:ec:06:a1:65:
49:b4:b5:7b:5c:29:f6:b0:b0:ed:81:02:5a:82:22:86:c7:72:
c5:e9:97:af:5e:1a:e8:91:c0:5c:00:7d:80:1e:1e:6a:32:e2:
0d:4f:76:6e:c7:ac:fa:c9:8f:67:0a:c2:c1:f1:7e:f9:c2:58:
64:f9:25:b0:7f:bb:63:df:03:09:c7:1d:de:4f:90:90:9b:da:
b5:5e:13:a7:8a:b9:4d:55:60:22:3b:0b:4f:2a:40:65:17:b6:
4c:2c:5c:c8:a7:f2:ec:df:a5:45:ae:06:72:1d:37:1f:b6:ba:
a5:01:99:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:35:31 2025 by rpki-client