Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
File: Cani7ovOptW5GcSjPSbZu_mCqEM.mft (raw, json)
Hash identifier: zoqaDSKcmW3UPHuLHz1BfhRTRN3bok/vx3utAZGLFxc=
Subject key identifier: B2:AF:1D:2D:D9:37:C1:39:CE:14:70:9A:D3:80:56:FF:91:7E:B0:CC
Authority key identifier: 09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43
Certificate issuer: /CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843
Certificate serial: 01964EFE8AA24CE9B387FE6B70E3FE556C94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
Manifest number: 0979
Signing time: Sat 19 Apr 2025 17:00:26 +0000
Manifest this update: Sat 19 Apr 2025 17:00:26 +0000
Manifest next update: Sun 20 Apr 2025 17:00:26 +0000
Files and hashes: 1: Cani7ovOptW5GcSjPSbZu_mCqEM.crl (hash: 6uza7jnb5RnVSUsEZFldXWiRzDswqaT8ski7dvDNZYc=)
2: VNahP0UQveZ8aD0TsmaExJY0tZA.roa (hash: mRQeMIIWNprrsGatyNnULZeqD9q6svl4Pj1uiYVKUX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:fe:8a:a2:4c:e9:b3:87:fe:6b:70:e3:fe:55:6c:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a9e2ee8bcea6d5b919c4a33d26d9bbf982a843
Validity
Not Before: Apr 19 17:00:26 2025 GMT
Not After : Apr 20 17:00:26 2025 GMT
Subject: CN=b2af1d2dd937c139ce14709ad38056ff917eb0cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a2:43:2a:e9:e8:d9:c5:c0:3d:ef:db:f8:12:
3f:29:67:ab:05:9d:3f:32:d8:4a:0a:6f:11:3d:dd:
a7:f3:71:ac:48:92:5e:44:30:d2:02:d1:82:05:e2:
e1:16:64:78:d3:e0:fc:c9:a7:98:28:6e:7d:1d:17:
b4:9b:a5:88:05:c2:20:fc:5a:92:c6:3d:24:52:02:
17:19:35:6b:90:26:09:52:12:7c:11:9a:0b:1c:4f:
12:23:a6:81:78:23:d4:ce:1b:5d:7f:66:30:f4:53:
35:87:c3:b3:14:bd:a6:f7:2a:9d:5a:60:37:4c:be:
6d:bb:28:8e:eb:d9:fa:16:a2:e4:d0:49:1f:9d:4b:
d7:a1:93:1b:84:c3:0f:d2:05:70:c5:a6:6b:37:e5:
c6:32:49:8f:ad:3a:da:f3:24:98:65:28:0e:02:66:
91:fe:a3:29:67:a8:ee:e1:7f:14:21:67:90:f0:48:
b7:1c:fb:12:00:2f:0e:90:c8:64:99:42:8f:b5:37:
48:19:3b:37:84:78:34:0f:e5:b8:d4:69:ad:61:b5:
ed:39:50:c8:36:09:1a:f6:b9:51:1f:ec:3f:c3:e0:
55:c4:82:eb:94:66:62:41:9f:31:25:b9:ef:df:73:
bb:24:4c:a5:90:f0:6e:7a:a7:50:3f:2b:9a:2b:ba:
2b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:AF:1D:2D:D9:37:C1:39:CE:14:70:9A:D3:80:56:FF:91:7E:B0:CC
X509v3 Authority Key Identifier:
keyid:09:A9:E2:EE:8B:CE:A6:D5:B9:19:C4:A3:3D:26:D9:BB:F9:82:A8:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cani7ovOptW5GcSjPSbZu_mCqEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/58d15b-9f02-42c4-b02d-a01eea65fd33/1/Cani7ovOptW5GcSjPSbZu_mCqEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:86:fa:63:b9:1a:90:29:ce:58:a7:d1:5a:ce:32:41:71:99:
18:d3:e4:ef:53:d6:d7:21:df:5c:08:cf:25:ad:fa:91:b9:a9:
69:63:dc:78:17:47:60:3f:14:5a:48:6d:5f:79:43:11:a0:49:
e1:47:1d:15:16:4b:f3:45:54:14:7f:27:c0:6e:8d:6b:5c:c1:
1e:d3:4b:70:d5:a6:5c:0e:64:c8:eb:a4:db:0e:ff:7b:68:96:
46:f7:d9:6d:1c:03:ff:6f:7e:4b:65:fc:88:94:c4:f1:0a:6d:
b8:99:79:40:f6:7e:8e:7b:56:00:44:9a:c5:9a:8e:8f:51:89:
da:c8:e1:17:95:8a:bf:e4:be:2b:2a:58:b4:c3:1b:c7:32:c0:
bf:fd:76:1b:95:8e:5b:a2:50:21:65:45:47:20:ae:78:b2:fa:
24:74:99:6f:be:4a:69:b5:5a:b9:ca:9c:24:1b:b0:f3:d1:30:
b7:0b:33:42:d3:34:48:cb:14:28:64:98:90:f0:aa:21:45:4b:
10:d1:15:d5:4c:94:15:a1:36:c4:3c:1d:e2:85:3d:3a:f3:81:
57:30:52:d2:13:59:71:f5:7e:60:7f:e4:a8:e1:3a:42:a6:4a:
5f:38:b4:d7:51:b7:48:17:b4:df:b0:3e:16:59:74:26:9a:08:
63:1f:71:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 01:59:43 2025 by rpki-client