Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
File: Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft (raw, json)
Hash identifier: wjrRqOSvV/YB2IDiE56Ta6oORIKN36nDDnFAxTnzS+Q=
Subject key identifier: 55:8D:C3:14:1D:0E:F6:82:49:9E:A9:26:03:13:2B:85:3A:2B:F2:2E
Authority key identifier: 09:EF:0B:8E:5B:BA:B2:9A:13:30:FA:0E:74:93:F2:A1:79:84:7B:B2
Certificate issuer: /CN=09ef0b8e5bbab29a1330fa0e7493f2a179847bb2
Certificate serial: 0196515B507E821A3F5FC6CCECB111BAAC0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
Manifest number: 01EF
Signing time: Sun 20 Apr 2025 04:01:00 +0000
Manifest this update: Sun 20 Apr 2025 04:01:00 +0000
Manifest next update: Mon 21 Apr 2025 04:01:00 +0000
Files and hashes: 1: Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl (hash: cPadrt21/d6nkxQUSVg1/hxLioCfFfFmHXasjAlPf8M=)
2: oDzw6scHjTvVUxNbd-QUot4DsM0.roa (hash: wtt4piWURYUGaUVkeFPj0sScj6sbR4E+qyw2r+vT/ds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5b:50:7e:82:1a:3f:5f:c6:cc:ec:b1:11:ba:ac:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09ef0b8e5bbab29a1330fa0e7493f2a179847bb2
Validity
Not Before: Apr 20 04:01:00 2025 GMT
Not After : Apr 21 04:01:00 2025 GMT
Subject: CN=558dc3141d0ef682499ea92603132b853a2bf22e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c8:8b:95:0c:34:fd:b3:e1:39:ff:08:9b:cb:
47:a7:54:c2:5c:aa:8e:31:18:ea:8f:b4:02:c6:b8:
c6:77:69:06:7d:ce:66:4a:d8:e8:d4:6b:e5:94:75:
c2:cd:68:e1:b3:d8:b0:28:a1:33:51:3a:9a:a2:98:
bd:90:fc:5b:c7:f8:28:fe:9e:8d:36:02:3d:1a:f8:
85:9d:1c:98:5e:c5:4f:f8:19:99:df:bc:b3:3d:d5:
c6:1c:eb:85:49:ab:0b:5c:bd:ea:46:40:72:af:9c:
e5:41:39:c2:31:2d:85:cd:b8:c4:2f:0e:1a:6b:a0:
06:47:9d:cc:52:18:bd:e4:89:74:6b:7b:b9:1b:bf:
30:14:4b:60:33:94:77:b1:38:bb:2f:31:cc:0e:d6:
51:da:7b:3f:c8:0a:4b:de:d0:aa:a8:25:df:17:43:
b6:0c:a9:f0:94:4d:1e:b4:5d:44:97:b6:2b:70:82:
bd:a3:56:60:f1:f5:1e:ad:0f:9c:c3:9f:9b:bf:5b:
eb:c2:ab:8e:a7:c2:74:ff:32:ac:62:e6:85:a1:c4:
35:5b:44:e6:11:d8:3d:52:70:d4:63:7d:60:12:77:
80:16:2c:57:8c:89:e0:91:26:21:68:92:94:be:84:
87:6c:e8:83:da:78:65:4b:8a:6b:26:3d:49:c8:70:
58:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:8D:C3:14:1D:0E:F6:82:49:9E:A9:26:03:13:2B:85:3A:2B:F2:2E
X509v3 Authority Key Identifier:
keyid:09:EF:0B:8E:5B:BA:B2:9A:13:30:FA:0E:74:93:F2:A1:79:84:7B:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/40543e-195a-4332-a8ed-37374e396c7d/1/Ce8Ljlu6spoTMPoOdJPyoXmEe7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:7f:c6:99:79:fa:95:d6:ab:8f:a4:79:70:3a:be:bd:a4:78:
e9:8e:96:c5:fd:02:ea:30:bd:8c:10:a9:2a:d0:fc:a1:17:7c:
fb:9d:90:6d:ed:4e:a7:2a:a6:fc:af:8a:b7:8e:2b:fb:e3:2e:
7f:41:2e:12:4f:38:bf:a7:a2:09:a3:96:2f:a6:74:ef:ad:02:
52:74:cc:a2:26:6a:eb:3f:78:e2:ec:cc:2e:a5:ce:61:0a:4a:
43:b5:c9:35:61:e4:a1:68:d9:6e:f3:62:ef:4a:8f:44:d7:dd:
73:1e:14:35:80:93:45:43:2a:4c:cd:47:0e:ab:03:ce:52:0c:
9c:e7:63:b4:df:77:f7:dc:62:a0:54:a3:00:32:da:b4:e9:7c:
c9:c2:f8:71:20:2c:07:bb:6d:57:d9:71:c2:61:36:3f:e0:cd:
02:df:c3:45:ae:1b:a8:b9:fe:02:26:8c:8d:3c:7f:08:25:c1:
6c:0d:ff:cd:40:6f:b9:97:2b:c0:75:3d:6d:4b:c6:d7:4d:f1:
ba:3f:66:2f:d1:66:94:7f:7c:70:31:12:7c:b2:c7:24:49:18:
b4:d1:1c:5c:83:f9:3e:3f:2f:cb:60:75:7b:39:5f:34:9c:77:
c9:f7:6c:c1:30:b3:2e:a4:e2:24:bf:3d:9a:1b:f1:f1:6a:f6:
44:da:55:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:17:45 2025 by rpki-client