Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
File: D97nlErE2jERKV2B4p3roAwWOpY.mft (raw, json)
Hash identifier: YjL/VHnEb3N6u7avvSxQ8kYNIXfWg73Y1MsNwkx3BVQ=
Subject key identifier: F1:03:AA:B3:BF:43:2E:02:68:90:2E:C8:3F:7D:F3:5D:EE:97:B7:C5
Authority key identifier: 0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
Certificate issuer: /CN=0fdee7944ac4da3111295d81e29deba00c163a96
Certificate serial: 01963E78FFF77005EB383367423C50C3E941
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
Manifest number: 0EED
Signing time: Wed 16 Apr 2025 12:00:39 +0000
Manifest this update: Wed 16 Apr 2025 12:00:39 +0000
Manifest next update: Thu 17 Apr 2025 12:00:39 +0000
Files and hashes: 1: D97nlErE2jERKV2B4p3roAwWOpY.crl (hash: teMEDCf/UlCxP9v//G6TF/NxBvRx5REujybSBCZZwlY=)
2: Fe73gwKx3TfChZQCePRdIEAemH0.roa (hash: qBzf7ILpA60OZzhZbHEoimpJXoZWWGpm51oGlU43AdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 12:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:78:ff:f7:70:05:eb:38:33:67:42:3c:50:c3:e9:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdee7944ac4da3111295d81e29deba00c163a96
Validity
Not Before: Apr 16 12:00:39 2025 GMT
Not After : Apr 17 12:00:39 2025 GMT
Subject: CN=f103aab3bf432e0268902ec83f7df35dee97b7c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:67:84:07:de:36:e8:74:00:e9:b6:a7:61:ff:
6c:2b:ab:4d:49:b0:0f:26:25:56:2b:ef:14:fb:3c:
cb:fe:9e:cd:c0:4b:8e:1d:9a:7c:b8:f4:12:92:4d:
80:b5:fd:b7:6e:77:c9:b4:51:1a:2d:bf:7f:53:74:
7c:15:da:7e:8d:0c:15:e7:6c:4f:c5:8f:6e:99:bd:
d6:8d:ea:c5:bf:8a:f2:4d:75:f9:ea:03:fc:fd:47:
55:e3:1b:18:0e:68:37:6f:f3:e8:2c:ad:95:cb:66:
a2:a4:b7:ff:fa:b0:08:1f:86:eb:7c:ac:4d:dd:28:
cb:f4:74:1f:e0:62:c8:0b:cb:37:76:5c:a3:46:45:
8c:6b:8b:dc:14:0a:d9:78:30:c9:5c:d7:6e:0f:fa:
a5:ac:56:4e:aa:4d:11:7f:e3:d8:cb:06:16:eb:c0:
e1:6f:f6:f1:da:53:99:8f:91:2f:ff:ea:27:66:78:
aa:af:c2:94:0f:3c:97:db:8d:44:9c:4d:31:a7:be:
7f:b5:ef:c3:34:49:1d:60:19:8b:14:d7:9e:72:43:
40:3c:fa:d7:22:d1:6a:34:bb:cb:54:70:e4:6b:da:
41:62:34:11:2a:37:23:5b:d7:8d:92:e5:6f:da:9f:
27:01:45:81:62:e7:e4:91:02:a4:f1:ac:a3:c5:7d:
0c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:03:AA:B3:BF:43:2E:02:68:90:2E:C8:3F:7D:F3:5D:EE:97:B7:C5
X509v3 Authority Key Identifier:
keyid:0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:fe:24:c8:a7:1f:f0:c0:11:08:7f:ee:c3:92:6a:27:9b:18:
ed:43:a0:9c:c2:1b:b9:49:9a:f2:b8:96:e7:09:17:94:d6:78:
29:a4:11:c3:52:a1:40:7c:b5:c2:c6:9d:a1:b4:9d:b6:ae:4f:
f2:09:e2:19:e2:6e:41:f4:6c:19:a3:10:7f:3b:76:91:8f:dd:
a2:81:8d:23:5c:9f:f2:c4:e4:0c:91:15:0f:a1:05:89:33:1b:
1c:73:5a:09:ac:b4:f8:55:59:2e:70:45:f8:7b:af:0d:f7:f7:
fe:98:e2:d3:df:36:0e:9f:fb:61:7a:bb:1e:30:88:9b:ed:87:
2b:8d:59:5c:fd:9d:de:08:08:f3:7c:65:e0:5f:7a:cf:08:0e:
b6:64:76:8e:d7:5e:33:6e:57:6b:33:72:c1:df:b4:d9:33:f7:
93:64:16:b2:b0:4c:90:c0:cd:db:b3:9f:44:3a:4a:81:02:82:
ee:28:00:f8:09:10:dc:d0:ad:ab:4f:06:46:f3:ec:a0:56:7c:
02:ca:97:51:5c:c0:8c:a9:a0:7c:ee:85:51:17:74:96:a8:17:
04:cd:68:7c:aa:49:16:12:6c:72:59:2f:08:c4:f5:5b:1e:2f:
86:e8:c4:b2:84:96:45:de:74:4d:6d:d3:78:68:5f:37:e0:92:
8a:49:8c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 22:02:16 2025 by rpki-client