Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
File: 9OQPA5eaP05K052pg7Z7p-YhXA0.mft (raw, json)
Hash identifier: 3h/hTMuxqlCvBXmpHbvL5PKrKkc2OnBNLDVtiOFPlqQ=
Subject key identifier: 40:5D:69:4C:00:6E:0A:73:DE:26:BD:8E:F5:2D:6D:AA:B4:F5:C3:55
Authority key identifier: F4:E4:0F:03:97:9A:3F:4E:4A:D3:9D:A9:83:B6:7B:A7:E6:21:5C:0D
Certificate issuer: /CN=f4e40f03979a3f4e4ad39da983b67ba7e6215c0d
Certificate serial: 0196542516B33E9195223B35938C00D70985
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
Manifest number: 14FF
Signing time: Sun 20 Apr 2025 17:00:38 +0000
Manifest this update: Sun 20 Apr 2025 17:00:38 +0000
Manifest next update: Mon 21 Apr 2025 17:00:38 +0000
Files and hashes: 1: 9OQPA5eaP05K052pg7Z7p-YhXA0.crl (hash: 1RH80gfWDW3fgscnS66ofaIml9x/TraNEN+FH7VxVgc=)
2: scYwC-e6lFDetGsqMlwn-CerbGM.roa (hash: zF9JwzHkhXPpsqlzXkaGHeYsm+/OmjpyP3gHhfOOwfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:25:16:b3:3e:91:95:22:3b:35:93:8c:00:d7:09:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e40f03979a3f4e4ad39da983b67ba7e6215c0d
Validity
Not Before: Apr 20 17:00:38 2025 GMT
Not After : Apr 21 17:00:38 2025 GMT
Subject: CN=405d694c006e0a73de26bd8ef52d6daab4f5c355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1d:b4:19:1c:64:68:de:fa:7b:ed:ee:2a:54:
ff:af:de:10:8e:81:d5:fb:78:98:36:5a:be:50:7d:
ef:12:e5:03:c0:9d:17:2e:e8:29:c6:ac:de:02:04:
59:7a:7d:e4:d5:5f:fe:cf:c9:18:67:e4:45:61:4a:
72:27:48:93:22:d8:09:0c:29:50:18:ff:9c:d8:d6:
ba:1a:99:50:f8:4a:03:76:3a:26:65:b3:b2:00:1a:
90:3d:2c:c2:df:28:76:1b:1b:7e:4a:7b:84:28:8b:
47:ab:ea:a8:65:6d:95:a9:b6:5e:11:bc:09:55:47:
eb:36:2c:99:ca:30:be:ac:e5:1c:73:6e:95:9e:fd:
39:0b:b1:19:2b:f2:6e:93:a2:31:26:45:79:18:33:
75:f1:7f:a1:64:b3:0f:e2:e1:1f:83:a5:c7:af:bd:
b2:7b:db:7a:de:a7:c0:88:57:ad:c8:a5:50:5a:f5:
bb:9f:7e:ab:0a:89:b4:9f:43:36:28:b6:3a:0d:aa:
8f:2b:15:4f:aa:c5:34:04:25:b0:b9:73:d1:f7:eb:
f5:e1:2e:c8:56:1c:6e:71:09:0f:77:b2:94:b2:78:
d7:a1:43:1e:55:57:ac:1b:bf:5c:c9:58:e0:c5:f1:
e0:f8:6e:9d:74:59:2c:70:1c:c5:d3:ea:37:2b:50:
47:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:5D:69:4C:00:6E:0A:73:DE:26:BD:8E:F5:2D:6D:AA:B4:F5:C3:55
X509v3 Authority Key Identifier:
keyid:F4:E4:0F:03:97:9A:3F:4E:4A:D3:9D:A9:83:B6:7B:A7:E6:21:5C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OQPA5eaP05K052pg7Z7p-YhXA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d4ffc0-a52d-461b-9719-a914e3ce3941/1/9OQPA5eaP05K052pg7Z7p-YhXA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:17:bf:fd:5d:f9:11:84:d6:0f:5f:39:4f:36:d6:41:eb:84:
6a:6b:3c:81:28:10:e8:bf:f4:89:d4:a5:63:7a:80:2b:76:bd:
d7:97:63:3b:f6:ac:a8:27:b1:d6:17:81:02:15:7c:08:0c:f5:
56:e1:ef:10:58:f2:34:02:66:e0:0b:2c:06:af:70:f6:f7:e6:
5f:0c:01:5e:09:38:a7:5e:74:b8:66:a9:4f:94:23:fe:29:74:
10:62:9f:70:a4:33:ef:50:a6:f5:0c:a9:21:69:92:6d:34:7b:
fc:8d:be:97:c6:02:82:35:b6:42:92:ab:ea:92:2c:19:fb:c6:
01:72:af:d9:a5:b4:0a:4a:29:4c:ec:13:b8:95:81:e7:3f:bd:
c1:a1:f2:d4:53:5b:2e:3f:61:b1:0f:16:38:b5:5d:13:f6:f0:
09:6f:e7:25:6e:13:b4:ac:7b:87:e9:19:2f:14:85:ab:89:b7:
6e:fb:1e:41:eb:da:3d:46:d3:95:1e:f6:65:ef:30:5b:86:28:
9b:17:92:0a:9a:dc:4d:6f:d1:93:f0:a1:46:7a:42:54:a8:fe:
95:e1:e4:f8:5a:10:0f:5d:ff:91:21:47:ab:0c:ef:4a:42:70:
c1:a4:7b:7f:d5:4f:e4:6f:56:e2:8a:a8:2c:1c:91:52:42:2e:
31:54:a4:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:30:13 2025 by rpki-client