Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
File: 0luQuJgbWR11p-k14TBKdAdWAv0.mft (raw, json)
Hash identifier: qcfWB2tbWs30un14YNqgd3woDSWLPObOsu6/J0ZeZls=
Subject key identifier: B8:5D:3E:7D:1A:96:E6:6C:C0:14:18:3B:B6:3A:83:85:33:FB:95:F9
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 01965048049414A217112799444645C20905
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
Manifest number: 13D5
Signing time: Sat 19 Apr 2025 23:00:18 +0000
Manifest this update: Sat 19 Apr 2025 23:00:18 +0000
Manifest next update: Sun 20 Apr 2025 23:00:18 +0000
Files and hashes: 1: 0luQuJgbWR11p-k14TBKdAdWAv0.crl (hash: NgLwBbpYPgqEDBrHzcyazq6KfjnrpNWkatJzm1DlV8I=)
2: n6mO0jwfMCGtBTJz4z0BBFhaaaw.roa (hash: depvn6FAlXY00NO5eAYz1KXbUInLhBp+Jz+PGCqafeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:04:94:14:a2:17:11:27:99:44:46:45:c2:09:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: Apr 19 23:00:18 2025 GMT
Not After : Apr 20 23:00:18 2025 GMT
Subject: CN=b85d3e7d1a96e66cc014183bb63a838533fb95f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:86:76:8f:e1:01:07:d7:a6:4a:c7:b8:ec:8a:
3f:f8:b1:c0:bc:37:10:ee:04:9a:c7:42:05:8e:b7:
8d:1b:5f:64:2a:e5:4e:60:e6:57:89:97:85:a1:63:
87:a4:6b:18:4d:13:ba:12:24:da:07:0d:a7:80:06:
bb:da:90:b1:b6:2a:03:16:da:14:df:7f:45:1a:21:
9e:45:a3:79:77:0e:57:be:da:f4:ae:ca:38:11:44:
13:9b:b7:b1:83:88:d1:32:70:4c:e2:85:79:b3:2a:
82:be:05:d6:63:8a:a1:d0:8a:13:88:d2:62:54:19:
96:03:99:0b:1e:cd:3f:cd:a6:2b:fa:0d:c3:4e:06:
8f:89:0b:be:4d:a9:fb:6a:29:a5:21:0f:06:aa:9c:
54:20:5a:ca:2f:b7:a6:da:c3:b7:bc:07:46:ca:2a:
95:d5:c9:73:b1:35:f1:9e:68:57:56:3a:28:b1:75:
07:74:24:6a:26:e5:1b:1a:65:86:20:ea:16:94:34:
ae:bb:3f:17:62:3a:0e:56:59:ae:eb:20:00:d9:75:
7e:06:0a:47:ca:5d:74:a1:3a:8f:e8:6e:87:8b:38:
a6:a9:0c:a3:32:14:87:90:41:1c:a4:67:4a:38:31:
a3:29:5a:3a:7d:95:ab:ef:8a:63:f3:ce:32:8a:1a:
78:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:5D:3E:7D:1A:96:E6:6C:C0:14:18:3B:B6:3A:83:85:33:FB:95:F9
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:25:98:5d:00:d5:73:c5:b3:ed:de:21:3a:4a:ce:28:54:3a:
ac:76:5d:f4:c9:3d:25:94:cb:ac:01:cc:91:cc:03:08:73:7e:
0f:a0:0c:66:48:80:17:ab:7d:2b:40:51:eb:44:8a:d5:a8:65:
54:28:e0:d1:ff:df:d2:7b:94:cd:79:1f:45:8a:d6:f1:5a:5f:
d9:b5:2b:26:6b:83:cd:c3:b7:c6:7f:5e:a1:c0:c7:b3:72:15:
8f:26:e7:3c:62:dc:61:65:6a:98:d3:37:a0:a1:7f:04:3f:9c:
ef:f2:9a:71:8e:5c:f1:7c:df:e0:aa:df:58:7c:62:ef:bd:0b:
75:d9:cb:f4:b6:eb:f8:6a:23:e8:5d:f9:f5:d0:84:0b:45:c5:
64:fe:12:4e:85:cb:47:15:b0:e6:c9:46:2d:93:e1:03:f5:2d:
db:ec:76:eb:af:63:35:5a:9b:4f:69:ca:cc:16:d8:43:99:7f:
64:d1:2c:a9:1e:04:3b:f3:0b:b5:5f:87:74:b8:ca:aa:ec:8f:
98:f0:d9:48:b0:9a:09:70:55:c5:38:8f:17:5a:a9:cd:eb:a5:
43:9e:b8:f0:9f:a6:29:4d:70:f8:c5:85:76:96:d1:29:22:3d:
0a:45:53:68:94:c8:f7:6f:e8:0e:1a:77:ed:c8:66:4a:ba:1b:
b0:54:9e:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:07:12 2025 by rpki-client