Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
File: fQtE5JJUnht9pTLIDDSIUMWkToA.mft (raw, json)
Hash identifier: v8LydbomU9VNDnde0gM/P6GkohaEs+6zZytWKcuo31E=
Subject key identifier: BB:67:16:6B:9C:83:ED:B2:54:78:1A:69:5B:8C:FB:A9:7B:CE:2D:95
Authority key identifier: 7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
Certificate issuer: /CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Certificate serial: 019614D8DD284B103C0149E6429FFF94803A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
Manifest number: 14DE
Signing time: Tue 08 Apr 2025 10:01:18 +0000
Manifest this update: Tue 08 Apr 2025 10:01:18 +0000
Manifest next update: Wed 09 Apr 2025 10:01:18 +0000
Files and hashes: 1: Vh9zdU6UPXBw1wsGMQVn_pjjotw.roa (hash: RHQ7Mk9Ul2niP+vY1weS4xjGH8dOqLq3Efjab5Bc1HU=)
2: fQtE5JJUnht9pTLIDDSIUMWkToA.crl (hash: +9Jl75NSXBul66NQwqJbK6jnBQtY4Qf0K+pr8BANbkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 10:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:14:d8:dd:28:4b:10:3c:01:49:e6:42:9f:ff:94:80:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Validity
Not Before: Apr 8 10:01:18 2025 GMT
Not After : Apr 9 10:01:18 2025 GMT
Subject: CN=bb67166b9c83edb254781a695b8cfba97bce2d95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:65:fc:c1:df:45:15:e2:e4:2c:93:ac:be:fb:
b5:36:24:9b:f1:ea:5b:2e:5a:68:7b:89:af:bd:f2:
6b:75:67:a0:f6:93:e5:db:59:5b:f7:48:6e:c8:ea:
bd:1f:64:49:67:6a:92:27:e3:c8:e8:ef:27:62:5d:
56:f5:6f:3f:1f:f3:05:fe:15:3e:1d:4b:b7:fc:71:
a3:3b:55:f5:fe:85:b9:01:87:f0:df:c6:36:56:26:
38:38:96:d5:d5:00:95:81:bb:ed:bc:d7:fe:98:09:
95:78:ba:ec:2a:e4:d5:e5:c1:c8:d4:84:81:04:af:
eb:ab:3f:4d:15:da:aa:48:c4:2d:ba:8b:cc:1f:32:
8b:26:dd:ae:cd:e8:5d:7e:1c:ac:54:dc:55:51:88:
ce:b2:43:a4:75:b6:9d:84:78:ff:78:d4:27:d7:b4:
40:02:e0:58:59:36:c6:11:dd:da:fb:f2:18:d9:89:
9c:58:50:ec:d5:6e:23:97:48:5b:1b:7f:51:bd:98:
2c:6a:4f:1f:b1:7f:50:d0:1d:00:62:0f:e2:5e:86:
b8:f1:56:99:d6:dd:66:6b:0d:9f:4d:16:54:a0:37:
6f:20:2f:1c:cc:b0:a5:94:b7:8c:cc:9e:16:82:76:
a2:2d:8f:d6:3a:2a:1c:c5:60:57:0b:af:5a:1e:4e:
d8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:67:16:6B:9C:83:ED:B2:54:78:1A:69:5B:8C:FB:A9:7B:CE:2D:95
X509v3 Authority Key Identifier:
keyid:7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:ee:62:7f:50:61:6d:5e:3d:19:17:9d:39:f2:8e:85:95:50:
3d:91:d4:85:6c:39:63:2f:14:f4:9f:a8:ac:a7:18:38:bf:c1:
a3:6b:c6:df:12:ae:e5:8a:a9:dd:f5:6e:1e:ef:fb:f0:0b:e3:
6f:01:a5:fe:3d:27:d4:61:de:94:aa:48:80:a2:52:d2:36:4c:
ae:40:71:43:16:47:c0:fd:80:a7:bd:89:27:cd:f4:96:af:39:
ff:18:b2:de:b9:bf:6e:bf:c9:4b:e8:4a:ad:42:e3:d8:df:77:
b7:35:ae:0a:52:7d:92:cd:9e:44:4b:ca:31:db:5d:94:13:33:
7d:d8:02:d8:32:88:1f:30:58:28:15:a8:ea:2d:51:c8:1d:cb:
82:d6:55:b3:62:6f:95:55:7f:b2:50:46:e7:69:50:4b:a0:df:
cf:67:f8:77:a9:60:7a:9e:54:23:cd:07:15:09:2a:0c:79:df:
92:55:8f:f5:9c:41:f9:a3:0e:8c:63:a0:45:6e:8c:ee:d4:42:
66:95:bc:68:71:0c:41:2e:0b:30:0c:57:ee:39:7a:cc:0a:c2:
9d:0a:1a:76:cc:51:84:61:d1:c0:a6:88:2f:76:f9:93:3c:c3:
58:9b:96:4f:9f:c7:4b:61:f5:a9:7f:ca:50:2b:f5:bc:06:5a:
42:e4:fb:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 15:11:04 2025 by rpki-client