Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft
File: D4nIaX93ksqvWZZk6JrOZSRPiug.mft (raw, json)
Hash identifier: cEYLSEj1TTyc9hYm4+KIuQcLZ3hLN+/C+jpBQ13ekkI=
Subject key identifier: D8:DC:51:29:61:61:87:C9:00:6B:97:9E:A4:17:66:7B:60:7D:D4:C5
Authority key identifier: 0F:89:C8:69:7F:77:92:CA:AF:59:96:64:E8:9A:CE:65:24:4F:8A:E8
Certificate issuer: /CN=0f89c8697f7792caaf599664e89ace65244f8ae8
Certificate serial: 01964D7E702A6FD961DD1A0BFEE859A51850
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D4nIaX93ksqvWZZk6JrOZSRPiug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft
Manifest number: 14F8
Signing time: Sat 19 Apr 2025 10:00:53 +0000
Manifest this update: Sat 19 Apr 2025 10:00:53 +0000
Manifest next update: Sun 20 Apr 2025 10:00:53 +0000
Files and hashes: 1: D4nIaX93ksqvWZZk6JrOZSRPiug.crl (hash: hOJ8JBwvW9uLZRSEqG5lgAhHgyMgYrSVglhgqviufng=)
2: M1fWkBIHAuVSUFxtDGIthqqmrJE.roa (hash: +6gCxjSejI/as6boiaKhDkfwSxB7S4u8Oz//yZsKkyM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft
rsync://rpki.ripe.net/repository/DEFAULT/D4nIaX93ksqvWZZk6JrOZSRPiug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:70:2a:6f:d9:61:dd:1a:0b:fe:e8:59:a5:18:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f89c8697f7792caaf599664e89ace65244f8ae8
Validity
Not Before: Apr 19 10:00:53 2025 GMT
Not After : Apr 20 10:00:53 2025 GMT
Subject: CN=d8dc5129616187c9006b979ea417667b607dd4c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8f:fe:33:04:99:82:5b:81:74:32:c5:ef:a0:
11:dd:61:ab:8d:64:3f:ea:ee:c6:3b:2f:d0:69:16:
c0:59:5f:02:03:e2:76:f2:51:11:a5:63:25:65:b9:
6c:9a:7b:6e:13:6e:b0:11:f2:95:2a:86:f9:e5:22:
8c:e3:91:27:59:e1:0f:8a:ac:72:3b:49:5f:fe:73:
cf:25:98:22:4c:bd:c8:c2:03:9e:dd:ac:7e:42:88:
68:88:12:6d:cc:e9:49:1d:3c:0b:b7:25:e8:6f:8c:
20:15:62:b0:40:24:c9:79:f7:81:f6:88:35:2a:79:
65:bc:ad:00:8e:a5:fa:0f:27:3d:fa:2c:d8:97:1e:
93:d5:be:fc:c6:db:32:3c:d1:60:cd:42:81:2f:16:
f0:6c:f4:cf:92:b9:ee:d6:f9:0f:b4:ce:a7:5d:5e:
80:98:b2:24:e3:c1:0a:eb:73:3b:bb:22:28:a4:7d:
3f:f3:24:7f:2e:9e:e8:a5:ce:75:af:74:73:a2:26:
35:29:96:9d:06:af:30:c3:86:80:a6:7a:03:38:b2:
92:b7:63:bc:53:75:0f:6c:1a:6a:11:0c:18:eb:66:
1e:1c:9a:71:0d:e7:70:d3:52:c6:d8:c6:a2:90:3c:
db:78:98:05:07:1e:73:3d:47:f9:06:a1:fe:9d:06:
80:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:DC:51:29:61:61:87:C9:00:6B:97:9E:A4:17:66:7B:60:7D:D4:C5
X509v3 Authority Key Identifier:
keyid:0F:89:C8:69:7F:77:92:CA:AF:59:96:64:E8:9A:CE:65:24:4F:8A:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D4nIaX93ksqvWZZk6JrOZSRPiug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5f3187-3beb-4c4b-9a44-d6bd55a9e36d/1/D4nIaX93ksqvWZZk6JrOZSRPiug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:1c:e0:2f:34:8e:05:88:99:eb:0a:c2:63:6d:cc:de:c0:c3:
7f:3b:45:ad:e3:18:88:07:b9:fd:15:cc:d2:32:a0:90:5d:8d:
44:7f:8d:95:87:02:6a:fd:ab:da:3b:4e:63:aa:26:77:c3:c2:
b4:6e:4f:af:37:4b:05:dd:6f:9b:78:0f:7b:9d:6e:0f:ef:eb:
3c:f7:c6:53:d0:49:49:8d:96:50:1f:84:37:1b:e3:d7:b2:2e:
41:3f:a2:27:05:8b:e9:82:c5:6c:bd:a2:09:60:83:bd:a2:d6:
db:e0:80:4e:7d:fe:fd:81:ab:c6:71:64:7c:59:90:53:c0:8a:
c2:c3:e6:c0:f5:a4:8d:8c:d0:73:85:c6:8b:8d:1c:f9:6f:15:
85:cb:5b:76:40:c2:39:3b:c9:68:90:0d:29:39:c0:ae:6f:16:
f7:5b:62:4b:d0:65:b2:d6:f5:57:8d:69:2c:f6:5f:37:87:8c:
95:a6:58:6e:36:8c:51:64:01:8e:0d:e2:5a:ec:e9:66:85:ad:
39:1c:00:05:23:ab:91:50:30:10:1a:ee:af:c5:ab:c8:b5:59:
9d:5e:3f:35:6b:f4:0a:23:53:fc:53:d2:7a:a5:82:7d:45:34:
d7:fb:0c:9d:de:58:55:c4:2f:cd:ac:e1:e2:a3:ce:5f:45:70:
ce:4b:5c:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:22:22 2025 by rpki-client