Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft
File: m2JkjpE6NkDwMbY6a9krDijhOfs.mft (raw, json)
Hash identifier: pikeTJZQvGgVwadcrm6N7Xoxu8gIXAicCrZET0wWx50=
Subject key identifier: 0D:79:08:D0:F0:56:35:B7:54:57:9E:6E:73:CF:72:D4:0B:4C:F3:4B
Authority key identifier: 9B:62:64:8E:91:3A:36:40:F0:31:B6:3A:6B:D9:2B:0E:28:E1:39:FB
Certificate issuer: /CN=9b62648e913a3640f031b63a6bd92b0e28e139fb
Certificate serial: 0196545C59EA53394B0C25915E9CF164DD2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2JkjpE6NkDwMbY6a9krDijhOfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft
Manifest number: 96
Signing time: Sun 20 Apr 2025 18:01:00 +0000
Manifest this update: Sun 20 Apr 2025 18:01:00 +0000
Manifest next update: Mon 21 Apr 2025 18:01:00 +0000
Files and hashes: 1: GFs318vhhs43UeJYStMCcJcloVE.roa (hash: W8/O6hKTgxLPwLzEgTm/PKRsS6eSZm8+16PIQciHYr8=)
2: m2JkjpE6NkDwMbY6a9krDijhOfs.crl (hash: d8aUYHUUBxVMO2dt1GNP3mcBLPD5ZRnUU6/SPHeC8NY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/m2JkjpE6NkDwMbY6a9krDijhOfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:5c:59:ea:53:39:4b:0c:25:91:5e:9c:f1:64:dd:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b62648e913a3640f031b63a6bd92b0e28e139fb
Validity
Not Before: Apr 20 18:01:00 2025 GMT
Not After : Apr 21 18:01:00 2025 GMT
Subject: CN=0d7908d0f05635b754579e6e73cf72d40b4cf34b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b9:b9:de:f7:6a:48:d6:76:64:4b:7a:3e:36:
21:38:12:ce:a5:30:b4:ee:2a:36:23:94:ee:39:6c:
86:48:56:18:6c:14:b1:a9:72:6a:b5:22:27:66:b4:
7c:81:89:e5:90:e7:df:ea:e4:59:0d:3c:41:42:dd:
34:b3:79:80:e6:90:13:fb:be:49:4e:3c:32:3d:72:
ec:ef:6b:7d:8f:08:8e:fa:dc:69:c8:a8:44:5e:69:
76:2a:2e:21:d7:43:cd:88:3c:93:24:01:19:5d:32:
0d:03:bd:e6:f4:3b:f0:98:14:8d:c1:dd:a0:e5:41:
24:67:2c:68:1a:09:8f:d5:55:9e:74:7f:fb:6f:2a:
a7:cc:5c:bd:e2:ed:50:fe:62:b8:3a:42:48:61:7c:
2d:39:8a:77:0d:8b:f1:89:56:af:32:38:c2:37:f5:
d7:6a:3c:2c:bb:49:dc:f3:2f:d8:03:51:50:f4:bc:
b1:25:d1:b1:e1:91:37:38:85:64:b5:35:b5:5f:ba:
6a:31:c0:9b:3f:a3:da:8b:07:1f:4e:72:11:17:0f:
e7:4c:25:6b:38:fa:77:bb:34:ee:af:8f:b7:67:18:
61:bb:5b:5b:da:6b:62:29:47:51:cb:d9:e6:ed:0c:
ad:b9:af:90:dc:9a:c4:22:47:6b:b5:77:2c:0c:1c:
a4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:79:08:D0:F0:56:35:B7:54:57:9E:6E:73:CF:72:D4:0B:4C:F3:4B
X509v3 Authority Key Identifier:
keyid:9B:62:64:8E:91:3A:36:40:F0:31:B6:3A:6B:D9:2B:0E:28:E1:39:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2JkjpE6NkDwMbY6a9krDijhOfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:f2:62:28:73:ec:ab:39:2e:9d:00:6f:90:bf:9f:44:b9:88:
de:ee:af:87:76:c4:75:04:db:f9:55:d6:e4:31:74:cd:37:6b:
d2:73:72:2d:a0:dc:41:31:f6:8e:f1:7a:06:27:7a:27:a8:57:
16:83:13:b8:5d:f1:53:f9:2a:40:0c:db:ac:8e:78:4e:32:4b:
bc:e9:b0:6f:1e:8a:e5:70:94:93:ea:50:32:9d:93:22:20:c0:
df:83:58:fd:ab:32:db:e9:f6:32:2b:17:91:d1:d2:27:d3:78:
d2:bc:12:d2:94:8a:8a:7e:43:c9:41:a9:93:c4:2a:28:eb:cd:
a4:dc:83:35:ac:58:a6:6e:cc:da:e4:d4:c9:53:69:4f:a0:36:
09:b1:32:39:c9:89:74:62:33:52:de:85:e6:e7:f3:ca:c8:5a:
ba:fe:79:c2:a8:eb:d5:b9:69:e5:67:f5:ae:f6:2e:d9:eb:d0:
f8:57:12:4c:9f:48:5b:7c:77:dd:7c:8f:b1:f7:b2:af:80:dd:
55:2e:ac:75:05:0b:f3:fe:d1:b3:fa:c2:36:60:2f:48:55:1d:
30:5c:1d:5d:b4:61:53:e7:bd:dc:91:63:a2:52:6a:54:bd:44:
86:92:7d:61:5c:31:41:5b:0a:9c:d2:eb:1b:36:89:a1:33:00:
34:16:fb:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:28:05 2025 by rpki-client