Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
File: cM9eaXxglK22vJcVazXgBf1M8uI.mft (raw, json)
Hash identifier: WsBda0gMXD1BQVUQxdrXcsnZxq2xpf9tcvMszP7Sngo=
Subject key identifier: 86:71:B1:63:1D:A4:E4:EC:7F:F0:16:BF:E8:96:99:F4:07:EA:E7:0B
Authority key identifier: 70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2
Certificate issuer: /CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2
Certificate serial: 0196108E7C1D92771EE162CFA9490F77BF4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
Manifest number: 14DA
Signing time: Mon 07 Apr 2025 14:01:35 +0000
Manifest this update: Mon 07 Apr 2025 14:01:35 +0000
Manifest next update: Tue 08 Apr 2025 14:01:35 +0000
Files and hashes: 1: ZMvF8N06VsuZ5tNxMMczzsSTe5w.roa (hash: D7vN+YdR9s6oznh1bq9p5ngAxVIRYXDWMiWld/VomNA=)
2: cM9eaXxglK22vJcVazXgBf1M8uI.crl (hash: GdZy++z14T8HalCP8dEUjC322Nij9QDQwIzuBrF3vuE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:8e:7c:1d:92:77:1e:e1:62:cf:a9:49:0f:77:bf:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2
Validity
Not Before: Apr 7 14:01:35 2025 GMT
Not After : Apr 8 14:01:35 2025 GMT
Subject: CN=8671b1631da4e4ec7ff016bfe89699f407eae70b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5b:43:0c:cf:6e:e9:5f:71:41:9b:b9:94:69:
9e:f8:a2:0f:67:c6:7e:ae:49:c6:6d:ec:13:7d:68:
07:0c:4b:2e:03:7e:89:2f:48:f9:83:30:7a:a7:b1:
21:28:a8:71:cf:31:a1:f8:e6:c0:a8:ac:15:da:f6:
57:29:b6:47:80:28:35:16:1f:65:e6:26:bf:fe:d1:
a2:8e:b5:06:69:65:06:78:7a:66:9e:cc:56:8f:66:
c0:b5:15:18:47:86:d7:30:bd:8e:2e:2e:7c:36:af:
00:fb:aa:54:9b:24:a8:40:f5:62:aa:79:a9:54:3d:
4a:53:f2:20:fc:ee:e0:ea:4e:a0:21:b4:32:59:4e:
a4:72:e3:b2:07:a7:a9:f9:b8:9a:99:d7:f3:4e:f5:
9f:8d:14:8f:70:d7:32:43:b6:dd:f1:fb:38:2a:63:
f2:66:a8:14:12:f4:4d:43:75:66:40:40:b8:1a:db:
b3:20:1f:58:db:22:99:13:62:cf:c2:72:dc:61:9b:
fc:66:9d:8c:6b:0b:fb:92:f7:14:75:9f:5a:ca:95:
ca:86:3d:72:f2:a1:c4:8f:96:17:c7:42:62:a5:f5:
3c:1f:fd:d6:75:bd:d0:8f:ca:a0:62:53:64:48:d4:
ca:22:b4:6b:89:40:81:e7:e5:9a:f6:ba:4e:a1:85:
a6:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:71:B1:63:1D:A4:E4:EC:7F:F0:16:BF:E8:96:99:F4:07:EA:E7:0B
X509v3 Authority Key Identifier:
keyid:70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:f1:60:d1:37:42:f2:77:f7:a3:6c:22:86:f6:60:67:c0:32:
2a:af:49:17:98:84:cc:f9:1f:10:0c:45:c2:5f:c7:4e:3a:e8:
21:27:68:f1:8f:e7:88:e3:f1:99:30:2a:73:32:ce:e3:f0:2d:
2b:c9:a4:69:d9:fb:b2:d5:b0:3b:62:ae:f9:76:b0:21:77:6f:
8a:87:6b:55:e0:a2:93:a1:10:d9:d1:23:e5:36:2e:0f:72:62:
21:8f:a3:cb:2e:23:cd:73:63:a2:60:db:74:e4:d5:6c:81:cb:
e6:01:3b:d9:12:ce:cf:5a:84:54:1b:57:ba:71:d1:87:d8:1e:
8c:92:a0:af:e3:8d:f1:9d:64:c6:3c:cb:8b:f4:a2:c1:40:b8:
28:1e:e2:79:c6:3c:a8:20:c8:fc:f6:d2:23:8b:58:35:a2:f3:
6e:94:76:96:55:ca:47:b9:9b:82:9b:22:e7:6e:aa:57:2d:0f:
82:3e:60:2b:08:e6:90:5d:5a:de:92:11:d7:33:16:8a:d9:ba:
fc:2f:e9:97:44:be:19:9b:32:d1:a6:fa:38:11:21:5c:13:c1:
79:f7:46:e6:78:0c:3e:eb:ef:b7:1a:7f:cc:fa:ef:f2:fc:60:
7d:da:1b:52:51:a3:c8:90:04:ab:87:44:b1:da:c8:3d:31:1e:
d5:36:a1:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:05:56 2025 by rpki-client