Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
File: p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft (raw, json)
Hash identifier: lTb1ECCeQt3stBBAJBU0VJ88BCfphuVGtJcOyiRj9OA=
Subject key identifier: CB:C8:30:BB:12:75:78:77:F1:92:BB:92:4A:3B:D3:09:0B:CF:15:99
Authority key identifier: A7:73:25:E4:95:CB:01:50:20:3B:79:F2:46:F4:CD:4C:0F:EC:24:FF
Certificate issuer: /CN=a77325e495cb0150203b79f246f4cd4c0fec24ff
Certificate serial: 019659B9E42A032AB16AD79BBDF27D4C3ACF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
Manifest number: 0BB8
Signing time: Mon 21 Apr 2025 19:01:16 +0000
Manifest this update: Mon 21 Apr 2025 19:01:16 +0000
Manifest next update: Tue 22 Apr 2025 19:01:16 +0000
Files and hashes: 1: Z94Es0pJzdNNFG_pvtxbCrg0w94.roa (hash: uXR+OJPAQJAMUd3RxLmxlHyff75ZTmhyAoVDvTJyktM=)
2: p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl (hash: 1yawkuJHh+iaF0SDkwSCH3UTHDdZrw2gNo34vgA5ttE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:b9:e4:2a:03:2a:b1:6a:d7:9b:bd:f2:7d:4c:3a:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a77325e495cb0150203b79f246f4cd4c0fec24ff
Validity
Not Before: Apr 21 19:01:16 2025 GMT
Not After : Apr 22 19:01:16 2025 GMT
Subject: CN=cbc830bb12757877f192bb924a3bd3090bcf1599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ef:10:56:9d:5c:14:c0:9a:cf:1d:f8:c2:b4:
cd:56:13:51:cb:db:09:6e:db:d6:71:eb:a0:9e:6c:
cc:89:d9:0e:41:76:7d:0d:f4:ee:2c:b9:da:ff:fa:
40:13:bd:86:95:11:dc:46:0d:fa:bf:ce:08:65:f2:
3f:f2:92:3b:c8:23:4d:17:b1:6e:60:c6:24:8c:8d:
b9:e8:d1:aa:72:cc:a0:91:3f:1a:55:4d:1d:1a:88:
96:64:23:eb:17:16:91:fe:d0:b4:49:10:5c:69:70:
c9:21:b1:24:29:8c:9d:46:6e:6c:66:ef:88:e5:da:
53:bd:43:42:c2:b7:17:e1:0d:f1:97:3e:25:54:ed:
48:89:ef:cd:4b:88:8c:52:41:ac:23:dd:be:89:d8:
eb:4a:26:68:55:07:85:71:a7:dd:02:4b:bf:7d:9a:
50:69:ca:ac:61:a0:21:23:27:3b:7b:d0:ab:45:4e:
98:11:05:81:fb:f8:dd:78:66:ce:d9:8a:08:bb:96:
36:58:40:67:1b:58:28:b3:55:a6:8d:d1:37:a1:fb:
c2:92:84:d0:e0:32:a4:d1:7a:1b:5d:f5:65:84:25:
2d:ec:8b:6a:5a:df:cf:ca:a8:30:fd:bc:61:23:22:
d9:50:72:f5:3b:71:3b:6d:be:75:4c:97:88:72:3e:
a5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C8:30:BB:12:75:78:77:F1:92:BB:92:4A:3B:D3:09:0B:CF:15:99
X509v3 Authority Key Identifier:
keyid:A7:73:25:E4:95:CB:01:50:20:3B:79:F2:46:F4:CD:4C:0F:EC:24:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/bf8411-6960-4cef-91f9-13b6a6d71a41/1/p3Ml5JXLAVAgO3nyRvTNTA_sJP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:9d:fd:38:22:3a:8e:03:5d:95:f9:de:70:46:b4:bc:7e:32:
b2:5d:d3:a5:42:20:d4:66:69:47:1f:88:cd:04:f7:d8:cb:69:
c7:56:7d:df:ad:76:0a:55:05:a8:59:64:f3:9a:cc:97:5f:fd:
4a:ba:5f:56:e4:2c:e5:9a:f4:3e:2d:ea:1a:02:33:3f:54:d8:
a0:0b:22:d4:c3:ef:b2:f9:d7:f7:e0:2e:88:81:8a:19:29:c5:
0e:0f:db:03:be:cd:ee:d1:17:62:5c:45:8b:de:4c:2c:20:64:
d0:dc:15:8b:3c:3a:f9:d5:c1:c7:34:c1:a6:d6:79:47:f8:ae:
36:1e:37:9e:2f:82:8a:ef:13:ab:49:c0:24:1b:3b:33:8e:8a:
c0:f6:e0:49:a7:7a:af:95:5d:fa:ae:1c:8c:a6:69:8c:bd:b4:
c7:21:b6:41:24:77:f0:95:ce:4b:5a:7a:6f:75:1f:1c:2e:2e:
9b:94:b9:49:87:57:ce:f8:a6:77:24:13:5c:4a:bb:94:19:37:
48:e5:b5:9d:13:1d:b2:6a:52:c3:1c:a7:f6:e2:19:fa:10:4b:
6d:dd:bf:ad:f0:85:3a:9a:8a:4c:c4:fa:5f:ac:ce:9e:a2:ff:
1d:68:01:3c:8b:9d:fe:20:0e:54:25:39:50:6e:3f:6b:c1:1d:
a2:dd:2d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:23:51 2025 by rpki-client