Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
File: t1ELZRv73wnISGqBNiAABb77SX0.mft (raw, json)
Hash identifier: YBgOx2hVXpt9waGGrbEW5WGfyJjTtbnyxAEnSi/5oCk=
Subject key identifier: 9F:9E:B7:2B:99:EB:14:E7:C4:3B:C7:8F:C2:63:62:9D:0D:B7:9B:D9
Authority key identifier: B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
Certificate issuer: /CN=b7510b651bfbdf09c8486a8136200005befb497d
Certificate serial: 0195786B3C9D24D69AFB80CDE1186405F210
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
Manifest number: 0B0B
Signing time: Sun 09 Mar 2025 01:00:48 +0000
Manifest this update: Sun 09 Mar 2025 01:00:48 +0000
Manifest next update: Mon 10 Mar 2025 01:00:48 +0000
Files and hashes: 1: Jiow1t-Pk1ZOtI6Aqeh1RaSW3p4.roa (hash: DYR6jlP51Fl43ZL0B6qnJrGHJROyqbTA9KSRORts0Uo=)
2: t1ELZRv73wnISGqBNiAABb77SX0.crl (hash: D9ynZoXNfawK3qqaXNlumG9BuBikiEX8W7BSUEiWm60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 01:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:78:6b:3c:9d:24:d6:9a:fb:80:cd:e1:18:64:05:f2:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7510b651bfbdf09c8486a8136200005befb497d
Validity
Not Before: Mar 9 01:00:48 2025 GMT
Not After : Mar 10 01:00:48 2025 GMT
Subject: CN=9f9eb72b99eb14e7c43bc78fc263629d0db79bd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9f:51:24:fc:93:39:73:2e:e8:11:9e:73:d9:
af:01:64:5a:4b:b1:23:13:44:d9:02:88:2c:aa:a6:
fa:f7:7c:2f:3c:6f:0a:c5:12:6a:cc:7b:50:c9:1a:
d0:6f:4a:4d:af:19:a2:0d:81:55:8f:a8:f4:d8:1f:
e9:cc:69:66:90:4a:53:77:71:b5:00:97:04:51:fe:
1e:28:27:b6:00:e7:ac:4c:d9:7a:5a:c6:4b:5b:98:
8e:b4:72:4a:b3:b1:88:03:ea:d5:aa:57:af:cc:f1:
ca:7f:ae:a2:ed:64:ad:2a:2b:87:28:ab:87:5d:58:
2d:03:8d:bc:c5:a3:79:19:5d:d3:20:da:26:76:91:
6d:44:37:4d:5d:7b:0a:5a:17:6f:43:9f:46:60:79:
43:2a:d6:a2:c3:b6:ac:ca:59:b9:80:3b:a9:e5:21:
37:49:17:4b:fb:b0:19:f6:db:d1:90:2c:56:96:e7:
1c:88:ee:1d:07:2e:28:61:18:47:c5:92:50:16:9b:
22:5d:09:27:45:93:f8:82:df:c7:38:69:eb:e7:66:
bf:7d:5b:c9:90:83:b3:e9:65:c3:1e:dc:08:01:f0:
3c:aa:ee:3f:cd:e5:98:07:4f:9a:74:2b:88:6e:76:
89:b3:e8:b0:20:7f:cb:d7:7b:c1:c7:3b:0b:91:65:
8d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:9E:B7:2B:99:EB:14:E7:C4:3B:C7:8F:C2:63:62:9D:0D:B7:9B:D9
X509v3 Authority Key Identifier:
keyid:B7:51:0B:65:1B:FB:DF:09:C8:48:6A:81:36:20:00:05:BE:FB:49:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1ELZRv73wnISGqBNiAABb77SX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/bff1c3-0084-42bb-bcf7-2cb8877fd970/1/t1ELZRv73wnISGqBNiAABb77SX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:2e:03:7b:c3:df:bc:a9:85:53:64:50:52:40:5e:91:63:77:
2c:36:14:29:56:05:7f:63:2c:02:ac:cd:ef:58:00:c0:88:f0:
e6:c4:78:8e:a1:00:20:91:39:44:29:f3:1f:a8:39:ce:9c:56:
1c:94:d3:94:e8:62:1c:d2:b0:a6:c9:16:b3:28:73:7f:31:7e:
8c:5b:37:aa:f2:6e:8f:4d:9c:72:0b:79:67:e8:1d:a7:14:72:
d9:fd:ad:f3:ae:ed:07:f0:59:60:3a:fa:a6:4e:ec:8b:41:40:
5b:02:50:5e:8a:5b:bb:82:c5:ca:a7:32:38:db:b5:59:82:44:
2c:5c:b3:90:32:1c:0f:54:34:bd:68:a4:63:f4:40:fc:31:60:
6f:9a:a8:bb:3e:74:8d:01:c2:21:2c:34:37:46:61:81:60:5a:
1f:27:60:d7:7c:6b:49:87:7a:c9:ad:c5:4d:f0:5d:b2:8f:d8:
8c:d6:5c:33:0f:4c:28:b3:e4:05:3d:c4:6f:73:44:71:c5:96:
87:9e:a1:ee:1e:a4:af:ab:45:96:35:a3:7f:81:fa:3d:73:e1:
99:3d:00:44:b8:8b:88:0d:b8:c7:5b:64:30:c1:cc:08:dc:5b:
61:7e:05:aa:7d:33:8b:e2:65:a9:73:60:fb:c2:6a:1b:ca:23:
5d:c4:ba:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 11:33:56 2025 by rpki-client