Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
File: dotOLq79y-wVupnop6IcieSyzL0.mft (raw, json)
Hash identifier: zAhUycEJcKdmw/CZzER1h6rQEGp+NaOVNX4t9OnRHDA=
Subject key identifier: BB:E9:AE:7A:87:D2:9C:F7:76:DD:2F:F9:FF:CB:1D:4F:3F:AC:AF:E8
Authority key identifier: 76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
Certificate issuer: /CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Certificate serial: 01965537889679D09A4825A203452C5EBA53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
Manifest number: 69
Signing time: Sun 20 Apr 2025 22:00:24 +0000
Manifest this update: Sun 20 Apr 2025 22:00:24 +0000
Manifest next update: Mon 21 Apr 2025 22:00:24 +0000
Files and hashes: 1: 2d_NXZtW0ODYRMQ4wdJe7FkxoW0.roa (hash: PhAe9DgdWLVDbJJiZelbxMyByKXlfBNEMtHqWSG1jZ8=)
2: dotOLq79y-wVupnop6IcieSyzL0.crl (hash: mxkQkeIOJDTJCWHBZlbuhunPF67gQhaup81bmLaebUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:88:96:79:d0:9a:48:25:a2:03:45:2c:5e:ba:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Validity
Not Before: Apr 20 22:00:24 2025 GMT
Not After : Apr 21 22:00:24 2025 GMT
Subject: CN=bbe9ae7a87d29cf776dd2ff9ffcb1d4f3facafe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5c:ed:bd:32:84:bd:2d:69:5e:99:3c:3b:86:
d8:d4:9c:2e:fb:09:ee:dd:6e:1a:b3:c9:0d:45:df:
5d:d4:02:33:a5:1c:86:07:84:95:24:38:37:01:f2:
29:95:27:b3:8f:9e:18:92:ba:32:f0:b3:44:80:e1:
ee:68:b1:4a:17:80:9f:ed:29:c8:69:21:78:fd:8c:
b9:b4:e0:cc:39:00:89:ad:4a:56:60:8b:e1:35:66:
76:9a:3d:3c:31:2d:0c:26:69:ef:5a:b4:67:5f:4a:
c2:39:52:87:ce:5d:7d:c8:a2:aa:ab:34:6b:b4:ec:
65:a2:df:89:06:2e:69:81:72:2f:8f:6d:77:da:81:
e1:fa:28:14:e0:e0:96:24:54:da:a7:cf:42:6e:46:
e1:e5:fd:97:d9:45:a8:b1:ec:b9:76:78:c0:7c:9d:
e9:07:f9:4d:72:9e:8d:76:67:24:8f:c4:ef:7c:9f:
aa:45:31:f6:d8:a7:b3:41:60:5c:7a:9d:76:1f:d9:
2c:da:1d:c9:f2:38:f7:3e:3f:1a:9b:92:c3:fe:3e:
99:18:2f:1f:2b:f2:a1:c1:f7:1d:60:47:22:cd:e2:
c8:54:e6:8c:09:7d:20:2d:ca:d3:90:26:8c:69:9c:
98:f4:1f:d7:c7:45:cc:c6:fd:a0:5c:5e:85:b3:9b:
6e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:E9:AE:7A:87:D2:9C:F7:76:DD:2F:F9:FF:CB:1D:4F:3F:AC:AF:E8
X509v3 Authority Key Identifier:
keyid:76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:e5:2f:54:40:4f:63:bc:b8:69:eb:45:1e:6c:b9:3b:4f:ab:
45:4a:28:07:4f:41:b1:00:76:ba:99:3a:ee:3d:d2:ed:4b:a7:
63:ea:67:56:68:30:e3:1c:8a:47:25:48:d7:6d:24:b5:b0:93:
b0:f8:4b:19:fd:46:60:28:79:07:8f:d8:a8:55:2b:1f:a9:fc:
d2:ea:92:38:b9:87:84:53:e1:31:da:7d:ba:07:75:fb:f4:44:
3a:d4:3b:28:99:4e:79:f9:89:eb:ae:45:02:dd:a4:3f:01:41:
ec:be:ef:5e:8b:63:11:8b:59:38:d3:e6:40:c0:10:71:95:6a:
03:8c:92:90:93:bd:6d:17:e2:85:50:f9:a7:13:b8:c6:9b:d1:
64:91:53:1c:1a:e6:a9:47:a4:01:86:8d:38:73:81:d1:62:9a:
23:99:a5:d2:4c:83:8b:fc:f5:4b:6d:4d:39:74:7a:c8:30:5d:
dd:e5:4b:18:a6:04:50:f5:00:f5:82:10:b0:f3:14:e9:33:74:
d8:92:cf:6c:83:35:8d:dc:b4:bb:e5:88:97:3a:3b:a8:36:3f:
50:57:7d:05:6c:c8:dc:9a:77:4a:6d:02:4c:b4:12:1f:f7:4a:
f3:82:48:83:84:53:34:6f:f2:a4:58:dd:cb:6b:ac:5c:55:8d:
54:f1:83:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:28:11 2025 by rpki-client