Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
File: 0YHQxAlRpPkA5NndnCDkhWNQkg4.mft (raw, json)
Hash identifier: aMnw6HP/rjgUlqYooK88AHR9R3TH1P9fbd8srEsiNq0=
Subject key identifier: 64:43:13:23:51:AB:28:BE:F8:91:2A:97:27:EB:DB:F8:52:39:7E:F8
Authority key identifier: D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E
Certificate issuer: /CN=d181d0c40951a4f900e4d9dd9c20e4856350920e
Certificate serial: 01958EF39FA5FD558F825A129188D7F778AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
Manifest number: 149C
Signing time: Thu 13 Mar 2025 10:01:25 +0000
Manifest this update: Thu 13 Mar 2025 10:01:25 +0000
Manifest next update: Fri 14 Mar 2025 10:01:25 +0000
Files and hashes: 1: 0YHQxAlRpPkA5NndnCDkhWNQkg4.crl (hash: knGSadEowgStTHyWNDWmzVeU2OESDPEBewbicSQ8zZM=)
2: 2VAk9AH_jCxBcmS3UFNJkQWmjmM.roa (hash: OTJmVbnhsENHWSTSM66puZiLKu+kw6NtZbXCQeGN/YQ=)
3: 5kzmDTi0KIXTn8Ss2d36rIX1bZA.roa (hash: VgZeJy91lZpXmzMfyFbTui1JSN8xoQwBbcwBQ01/D0A=)
4: SA8oSTczcAjgQR1zXNlc0Vgrtd0.roa (hash: fw6Ud0wGZN9ltnlpcBVHmq+wSri7RZaFK71pfthgGyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:f3:9f:a5:fd:55:8f:82:5a:12:91:88:d7:f7:78:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d181d0c40951a4f900e4d9dd9c20e4856350920e
Validity
Not Before: Mar 13 10:01:25 2025 GMT
Not After : Mar 14 10:01:25 2025 GMT
Subject: CN=6443132351ab28bef8912a9727ebdbf852397ef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3c:27:10:c4:aa:96:f1:df:cf:e0:7c:cf:3b:
e3:ed:52:25:0f:8c:01:f5:23:bb:f5:4d:29:9d:6e:
5c:df:56:a5:38:20:24:49:c1:a9:8e:1e:cb:43:27:
cc:14:73:94:29:46:f4:e2:ff:e1:40:21:5c:db:07:
0d:2d:57:6a:29:d6:2c:64:d9:6b:6b:d0:09:44:1e:
df:fc:d0:76:c6:51:39:c8:e8:6f:c5:2d:85:39:2e:
2a:ac:8d:02:ee:d8:b8:9d:3c:ab:6a:cc:31:ae:a2:
a3:19:e3:57:a4:fb:ed:3c:43:d8:3b:1d:1a:e4:d6:
a1:6e:9f:bd:3e:84:95:6a:e8:35:bf:25:02:cd:ff:
37:f9:ef:88:ab:6d:2d:b4:3b:38:b5:38:45:dd:9c:
ae:97:7f:bf:69:29:9c:7e:f3:e2:cd:2d:14:24:27:
06:47:c4:32:32:92:c2:d4:ec:8d:c4:e0:a0:f4:22:
dc:3f:78:00:50:1f:ea:8e:d4:46:b6:1c:15:f9:00:
60:63:65:7d:df:da:aa:cd:69:1b:73:92:67:45:84:
86:ee:2a:52:ac:df:5a:d6:4a:0f:5a:1d:5d:b2:7f:
8d:78:34:18:16:28:77:1d:a6:50:c9:30:6b:60:9f:
a2:c4:24:bd:7b:ec:aa:e3:70:a9:c1:88:b8:11:d2:
9e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:43:13:23:51:AB:28:BE:F8:91:2A:97:27:EB:DB:F8:52:39:7E:F8
X509v3 Authority Key Identifier:
keyid:D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:9f:84:bd:ba:30:c3:07:07:d9:32:5d:5a:fb:1f:1d:09:09:
51:5a:c5:c5:c9:0a:6b:76:d4:b7:d1:58:74:f9:87:f4:47:73:
e9:e6:26:92:28:4f:fc:19:db:db:84:12:3b:ed:0d:c9:65:d9:
0f:89:20:df:bc:64:54:da:e6:80:1e:cb:68:b0:3f:7b:11:84:
41:dc:72:e0:eb:41:e1:44:d5:76:7c:81:6b:f8:60:e0:c4:d5:
b1:af:c2:a4:ae:c4:51:0a:86:e4:10:be:b2:a8:66:9b:40:f0:
57:b6:eb:e9:ca:09:28:25:0e:de:fd:e2:2b:4e:c1:f5:39:6f:
9c:0f:c2:66:b8:ed:37:06:df:53:6c:49:04:58:3f:a2:86:06:
14:df:1e:46:c2:a0:f1:f4:fe:2f:54:97:84:23:a4:17:87:be:
7e:3a:99:a2:7e:5c:64:eb:3c:07:b1:6a:88:b5:33:ba:e9:50:
ec:ca:3d:c1:91:eb:b4:d9:34:fe:67:f5:53:9a:c3:48:9a:1b:
e5:d8:84:31:e4:10:f8:c4:c8:99:02:f3:63:27:53:7e:97:06:
20:80:f9:44:31:cd:87:3a:2d:01:5f:04:a5:c6:31:58:e9:32:
c6:99:32:2e:21:f7:e5:e2:06:1d:72:8b:63:00:da:cf:73:8c:
52:c5:f4:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:53:34 2025 by rpki-client