Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
File: DC-bLoowUI05GSr9WzTuVvd1l54.mft (raw, json)
Hash identifier: B6G13dKbzllzQFlh1L1kGTdoAb9OYSEPOXt5W0cufKw=
Subject key identifier: 85:14:35:A3:1E:23:DC:13:9E:81:20:6E:57:07:83:5D:5D:AB:AA:DF
Authority key identifier: 0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E
Certificate issuer: /CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e
Certificate serial: 01964EC800693A69C4040985F62B88CF80AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
Manifest number: 0CD6
Signing time: Sat 19 Apr 2025 16:00:52 +0000
Manifest this update: Sat 19 Apr 2025 16:00:52 +0000
Manifest next update: Sun 20 Apr 2025 16:00:52 +0000
Files and hashes: 1: DC-bLoowUI05GSr9WzTuVvd1l54.crl (hash: 64R3Jj5CKhR4sQ9UidGI1wR5WcoGv7+y0uQIq7YXaEs=)
2: NWAGhC2XbatfDitWodooC7bbFFI.roa (hash: FWUOW7wQ0G0TGl1V+k/KtSrSZ/FDNVfXj5gqfrNEtSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:c8:00:69:3a:69:c4:04:09:85:f6:2b:88:cf:80:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e
Validity
Not Before: Apr 19 16:00:52 2025 GMT
Not After : Apr 20 16:00:52 2025 GMT
Subject: CN=851435a31e23dc139e81206e5707835d5dabaadf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7f:8f:9d:3e:6f:18:77:27:19:a7:d0:b2:10:
87:1c:45:67:3f:7b:f7:08:1e:fc:11:83:8f:d8:30:
b7:78:0c:a8:80:c9:2b:ca:4c:e5:03:61:41:29:15:
58:a4:cd:c5:c8:01:fc:89:f6:5e:c2:3a:76:42:13:
08:e1:d5:4d:9b:eb:13:99:00:c9:f0:2d:90:66:2d:
d6:70:cf:73:9d:72:c2:61:38:35:80:94:8d:20:55:
e4:1a:16:dc:39:1b:b7:9f:b6:f8:87:4b:13:cc:13:
fd:bc:c7:ea:c6:dd:4f:ea:cc:d0:98:ad:d4:ce:11:
98:43:89:11:6a:de:5a:cd:77:8c:bf:19:19:1f:3f:
88:a8:20:7f:bd:f4:09:43:29:ef:50:e3:9c:ca:50:
51:94:cd:38:31:a4:bc:cf:1f:75:4d:3d:78:6f:0d:
26:ad:e9:f5:41:ea:44:f4:40:82:7d:b4:34:4b:0f:
f9:58:d9:24:d7:5a:ec:24:6b:97:08:3f:25:8b:3f:
e0:d9:5f:35:9d:b7:7e:c1:c4:f4:ae:74:1c:01:3b:
5d:1c:9d:2d:f8:4a:4e:a4:cc:3a:2e:29:c5:c8:a5:
50:e9:92:23:55:87:22:0a:3d:e9:a4:6a:2f:f9:83:
77:35:3a:cc:78:16:4c:76:9b:71:0e:cd:9e:43:a9:
4a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:14:35:A3:1E:23:DC:13:9E:81:20:6E:57:07:83:5D:5D:AB:AA:DF
X509v3 Authority Key Identifier:
keyid:0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:88:c6:34:a0:ad:0d:8b:7e:ba:a7:00:35:d3:8c:a2:bf:ea:
63:b8:28:d5:9c:19:6b:b8:4e:3c:52:34:63:0c:f1:8b:fa:33:
42:0b:d4:ea:7b:d9:79:8f:4c:66:0a:ed:36:5b:de:61:aa:d1:
da:ed:52:14:8e:48:10:fb:82:7b:ba:7e:39:cf:bc:b4:94:7f:
bf:ca:2b:b1:64:92:cf:6e:a8:e2:75:8c:d1:76:4e:4b:0e:7b:
7a:28:3e:44:52:09:48:17:9c:76:aa:c9:9c:20:32:fa:59:eb:
a5:9c:57:bb:98:8d:e5:ad:68:bc:a8:62:4c:80:be:c8:e8:a0:
3a:7f:a5:43:cc:4f:1c:f8:80:7d:1d:9b:c1:00:05:68:2d:2d:
29:d0:5b:07:0d:15:45:23:ba:09:49:bf:c4:b9:2c:ab:63:5c:
21:3e:2f:75:54:73:67:d0:80:0a:7b:f0:6a:4c:e2:87:c5:9d:
01:53:00:e4:f1:c1:db:0d:3e:97:83:16:34:f7:64:d7:72:0e:
14:85:07:f2:31:15:af:80:24:06:8d:0d:8a:9d:24:f3:67:1a:
0b:28:d8:4c:1d:c2:d6:44:f5:6c:09:7f:a2:0d:40:05:11:a6:
d1:9b:92:bf:67:f6:36:10:79:f7:23:49:94:a5:ac:9c:e0:13:
99:2d:e7:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 17:58:57 2025 by rpki-client