Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
File: jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft (raw, json)
Hash identifier: gH9uDkA9WNa8Yx9LMM9NiWTXAD/kZPGjMHn0pqD4EtU=
Subject key identifier: 93:1D:98:F8:69:D5:87:B2:2F:83:5F:16:A3:37:D0:FF:B2:51:B9:A2
Authority key identifier: 8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4
Certificate issuer: /CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4
Certificate serial: 01958F2AA04A8ACDA789EDF092FF51868089
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
Manifest number: 11B8
Signing time: Thu 13 Mar 2025 11:01:29 +0000
Manifest this update: Thu 13 Mar 2025 11:01:29 +0000
Manifest next update: Fri 14 Mar 2025 11:01:29 +0000
Files and hashes: 1: 4OlXHZjPNi_ZrlyOHLrnACz2H5w.roa (hash: WcKTWMqR73pqlk4NefweGCzhLoO2KaXXmg8w4iimJxY=)
2: jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl (hash: f9Wvjy0VnEk7cMl4MbexW+InpugfTr8X23vPVHjkyjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:2a:a0:4a:8a:cd:a7:89:ed:f0:92:ff:51:86:80:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4
Validity
Not Before: Mar 13 11:01:29 2025 GMT
Not After : Mar 14 11:01:29 2025 GMT
Subject: CN=931d98f869d587b22f835f16a337d0ffb251b9a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2e:95:d9:62:fe:37:32:32:70:64:3e:e5:77:
cc:0d:14:f2:dd:dc:3e:60:c7:32:f2:e1:99:1d:3a:
c0:71:25:b5:d0:85:62:00:07:10:eb:de:c4:1c:1e:
6d:ba:83:cb:17:c2:b6:fa:a8:79:43:f4:ec:69:53:
61:ec:20:bf:c4:8d:c8:a4:35:75:d0:33:84:05:d9:
23:d1:46:28:4f:e7:72:ac:0e:24:c3:0a:a8:24:2a:
b2:0e:d1:12:f1:2f:9a:45:99:0b:ff:4c:51:4f:5d:
51:06:a3:b9:a0:fc:14:ac:9c:98:ff:af:ff:ed:32:
b9:30:fe:95:c3:34:5d:a4:1e:4f:a0:55:a3:26:26:
96:e3:a1:3e:91:0b:92:0f:c7:56:d5:2c:4d:cc:04:
d5:89:a6:9a:eb:db:d3:b0:64:5f:a5:09:b5:eb:9d:
3b:fc:20:d4:ca:7b:35:6c:9a:79:4f:d4:0d:2c:7a:
04:26:a9:0e:bf:a7:69:c0:54:45:6e:67:51:1c:3d:
b5:bd:c0:77:03:e2:6d:6b:34:9d:c5:85:2b:1d:01:
c0:44:79:59:f4:09:72:fc:3b:dc:a7:60:9f:47:24:
c3:74:03:89:a5:29:ee:46:4d:92:ce:f7:85:64:80:
0d:dc:00:b6:3b:67:65:1b:5b:ca:97:85:b2:3d:45:
96:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:1D:98:F8:69:D5:87:B2:2F:83:5F:16:A3:37:D0:FF:B2:51:B9:A2
X509v3 Authority Key Identifier:
keyid:8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:49:24:81:d3:19:5c:c4:24:40:76:da:16:ee:ff:3f:95:23:
34:e5:8f:a2:c9:60:42:a7:f3:65:84:81:23:8c:37:7c:dd:c2:
f0:ec:4c:a9:31:31:97:54:6f:46:37:77:31:c5:63:bc:d3:29:
4c:fd:40:4e:9d:04:36:8a:0f:13:0f:1d:aa:c7:78:26:6e:4a:
fe:67:82:bf:f4:68:46:ce:59:f4:d9:4b:98:eb:3e:07:36:44:
3d:f7:1e:9e:b7:5d:86:1f:cf:2b:71:d0:73:8d:bf:b4:16:a8:
bb:8a:0f:e3:ea:00:1d:e0:7f:b0:5f:56:46:f1:68:08:f9:83:
df:09:50:21:bc:9a:e7:f1:f2:0d:b4:c2:3a:31:57:dd:c6:8a:
4f:db:ba:47:0e:64:2a:33:0d:40:3f:0e:61:d5:c9:94:04:1d:
17:53:70:78:5a:f8:d7:41:27:43:b5:99:d0:47:0d:46:16:5d:
0d:15:71:33:be:7d:b7:bb:34:88:e0:78:70:c3:96:14:7b:ec:
cd:e5:c1:f3:5b:3c:91:c4:1e:0d:15:01:6b:a3:b2:aa:ee:a9:
bd:4a:83:f2:b5:36:2a:8f:df:25:f7:72:39:03:7b:48:9d:f2:
51:74:7a:f1:18:bd:63:ae:64:50:19:95:30:e3:cb:12:af:43:
1a:e2:e6:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:29:37 2025 by rpki-client