Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
File: DA96BN1ySaXRS33gVCpBlzgABsw.mft (raw, json)
Hash identifier: QEGi7pjNQlqeA7Tc9fx3vqXU04oDytp48lT8Zewm8pM=
Subject key identifier: C4:B0:15:CE:92:4A:1B:F2:6D:25:41:F7:8B:B1:4B:9B:43:E8:A4:EE
Authority key identifier: 0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
Certificate issuer: /CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Certificate serial: 01958C60AA18A1F9A81B32F6D876A8C0B6FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
Manifest number: 1033
Signing time: Wed 12 Mar 2025 22:01:39 +0000
Manifest this update: Wed 12 Mar 2025 22:01:39 +0000
Manifest next update: Thu 13 Mar 2025 22:01:39 +0000
Files and hashes: 1: BuP0RbRAUkAkRvDTTrdTCB9lYnI.roa (hash: +MQInPw7P8gOa/G8zOkWun0X16HZKeTjeBeYKbATzLs=)
2: DA96BN1ySaXRS33gVCpBlzgABsw.crl (hash: cyC3Ye9R5wUXLNdJhEZUs0X67bAPEyqnW3Azlw17VW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:60:aa:18:a1:f9:a8:1b:32:f6:d8:76:a8:c0:b6:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c0f7a04dd7249a5d14b7de0542a4197380006cc
Validity
Not Before: Mar 12 22:01:39 2025 GMT
Not After : Mar 13 22:01:39 2025 GMT
Subject: CN=c4b015ce924a1bf26d2541f78bb14b9b43e8a4ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ea:31:c3:e3:b1:1e:b8:cf:06:79:3c:b5:78:
be:49:72:e2:17:d2:64:eb:12:87:02:de:5e:6a:b4:
d9:27:cb:4c:83:93:22:79:63:94:cf:e1:78:e1:ff:
77:8f:26:fe:a7:6b:e3:8d:bb:23:63:11:ce:30:5a:
8c:0a:4a:86:6d:e1:27:8b:23:07:9e:76:ca:30:2c:
32:0c:7e:52:cc:ec:32:e8:01:a4:38:f9:8b:af:3f:
71:dd:84:f4:0c:49:cc:ca:cc:c2:7a:06:c4:ea:cf:
44:4b:2e:df:ae:fb:61:72:99:7e:9f:ca:c3:bb:60:
16:cf:72:cd:a3:cd:11:52:75:25:12:7c:42:c0:5a:
3e:b9:7e:c9:a4:27:4b:27:a4:43:0f:01:0d:0b:a3:
84:51:42:cf:4a:41:b3:1a:f6:16:50:a4:91:94:2b:
a6:50:1a:04:70:84:93:5e:bc:4f:24:f0:d1:2d:d0:
b7:30:71:22:43:e3:1a:91:09:f4:f4:ef:58:b2:2b:
ee:11:4e:27:ae:b2:41:b4:6d:f9:ce:2a:af:0f:b1:
0c:ec:ec:f2:7c:98:c7:ff:0b:bd:49:2e:84:d3:76:
0f:64:92:f8:57:75:0c:a9:2b:29:eb:20:4b:dc:9a:
4e:c6:cd:5a:73:af:3b:51:12:a0:1a:bd:4e:b7:3d:
c3:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:B0:15:CE:92:4A:1B:F2:6D:25:41:F7:8B:B1:4B:9B:43:E8:A4:EE
X509v3 Authority Key Identifier:
keyid:0C:0F:7A:04:DD:72:49:A5:D1:4B:7D:E0:54:2A:41:97:38:00:06:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DA96BN1ySaXRS33gVCpBlzgABsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/11db14-e845-4e4f-a692-a3cbefff7777/1/DA96BN1ySaXRS33gVCpBlzgABsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:59:10:65:41:d5:61:42:d9:c9:ce:43:8e:73:2d:3b:c8:84:
2b:30:42:b3:22:48:a8:ef:51:1e:48:0c:12:68:1f:3a:a7:67:
a5:0f:10:7b:ee:92:48:9b:a5:81:8c:32:6b:98:14:2f:d4:4e:
29:e4:ab:5f:14:8e:cc:47:5e:b6:66:da:c0:78:53:3a:a1:62:
56:ee:3c:52:ec:f5:95:c7:ea:3e:4c:ec:72:ef:b0:7c:cf:bd:
ae:9a:73:50:0f:62:ad:1c:44:f7:2e:63:9f:29:d7:08:34:57:
ee:c9:0f:f0:d2:ef:ec:69:53:39:a7:d3:98:24:5d:83:ec:da:
f2:e2:cd:dc:64:e1:6e:3c:35:e5:ee:f7:ee:d8:fc:f6:da:fd:
3f:17:88:c6:ae:c2:e8:99:40:4c:20:d9:37:70:cb:7b:9d:fb:
88:82:eb:aa:d2:8b:57:df:5b:09:43:60:3c:6d:4a:d1:2d:b2:
87:40:6e:29:57:b0:4b:8e:2c:74:69:a6:13:fc:d3:06:ac:01:
e1:18:20:13:40:44:bf:49:63:c3:47:3f:15:6b:89:d7:f5:db:
c6:2a:3f:88:95:b2:7a:df:db:ca:a8:b9:0c:b9:c6:0e:c7:b6:
25:68:2b:7f:19:be:dc:26:dd:dd:9a:0c:de:ba:85:9a:95:b2:
cd:42:8c:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:32 2025 by rpki-client