Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
File: oN9_W2YYvaI8g77RG0QgQfH7RW0.mft (raw, json)
Hash identifier: O3e+1yP/aUdbs/sttPdq+sf/oG9b7t9aJqMepcpAM+4=
Subject key identifier: 79:F0:81:C4:D8:B8:64:4B:CA:28:F6:92:3A:B1:8D:B1:B4:BC:57:8C
Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Certificate serial: 01960CB1804A14A6BD8B9046DFD69907597F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
Manifest number: 0D9A
Signing time: Sun 06 Apr 2025 20:01:21 +0000
Manifest this update: Sun 06 Apr 2025 20:01:21 +0000
Manifest next update: Mon 07 Apr 2025 20:01:21 +0000
Files and hashes: 1: M6-0ilcboil8V3qdXWtXp8FSrwU.roa (hash: WRf8o79b0NMGHVx92f3msPfTUcZhCgsvW5xiza5z8ZI=)
2: alnV74vFSam3rQx6Dmd1DNDuigc.roa (hash: MKKETCkbJ8gLUuVxMB/kJlGwLoMwUcWOoOci82/CtNA=)
3: dMb0PjxW_FKRnnqCOxhUGiKYQfU.roa (hash: SEn9C8PYQsCWBmkbIckjpQRAnohpBTNoR7109sqhxa8=)
4: l5fucFsRI8YqdsxQQ1gM3icDFgY.roa (hash: F8cwyE/KovnNrO6uesrwG6iPrTntm+Jn5JO1juTZFLQ=)
5: oN9_W2YYvaI8g77RG0QgQfH7RW0.crl (hash: gaOKLcDUHEEbzrYv5+sznnm50s+Z6MvQ9hbFaJ7Gtd8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 20:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0c:b1:80:4a:14:a6:bd:8b:90:46:df:d6:99:07:59:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Validity
Not Before: Apr 6 20:01:21 2025 GMT
Not After : Apr 7 20:01:21 2025 GMT
Subject: CN=79f081c4d8b8644bca28f6923ab18db1b4bc578c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:57:d9:9a:7a:a6:e4:5f:97:3e:10:97:b8:75:
5c:4a:ef:9d:9f:bb:07:49:ec:c3:7b:ff:19:09:b0:
d1:d3:38:af:72:3e:37:fc:ab:aa:40:ef:57:df:58:
9f:56:91:58:69:4a:42:de:a7:17:ba:89:cc:0d:ed:
e3:29:09:d9:6b:d4:6a:a2:04:38:90:6b:94:86:3b:
0f:94:c7:54:cf:ec:08:65:4c:4d:f7:10:56:e0:6e:
e8:4d:f9:76:54:3c:05:d3:7e:52:f1:83:36:bc:76:
4b:69:ad:13:a0:62:ba:62:d8:d2:73:fc:a7:03:2f:
32:fb:71:2f:07:45:a4:a8:86:94:1c:f2:75:39:e5:
b1:25:08:33:c5:43:cc:86:35:ae:0d:15:2b:3d:34:
2d:78:66:f0:f3:f6:0d:dd:ec:da:d1:fc:5c:de:da:
cb:0a:21:95:8b:2d:e2:7f:22:57:bc:3d:0a:74:ec:
a4:a3:f1:b0:db:c4:72:81:7d:89:56:d6:41:c5:7c:
ab:6a:49:40:eb:12:bb:71:5f:fa:07:34:68:64:60:
4a:d1:92:90:ca:df:71:8f:8b:0e:02:52:76:67:73:
a5:7e:ff:fc:55:2b:82:9a:6c:2e:3a:b2:f0:06:56:
d9:ef:d0:7e:75:42:00:59:9b:52:2f:9b:d3:34:4e:
81:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F0:81:C4:D8:B8:64:4B:CA:28:F6:92:3A:B1:8D:B1:B4:BC:57:8C
X509v3 Authority Key Identifier:
keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:0c:df:72:0e:b9:49:54:ec:c1:02:b3:88:3f:3f:27:90:c6:
42:b3:fd:39:fe:60:bb:ff:39:ac:58:12:19:fa:29:86:8c:81:
dc:fb:d5:93:fa:b1:26:5c:3d:a4:3f:50:b3:9a:e7:d9:82:a1:
d9:c1:cb:bc:6a:00:7e:20:58:89:70:f9:46:5c:16:a8:be:3c:
14:82:30:9b:dd:0b:6c:90:ba:de:16:cd:a3:c4:b3:c2:e9:2c:
36:c0:ac:bd:cf:95:03:fc:05:9e:13:db:c4:07:27:ff:fa:ee:
85:92:19:1c:49:df:15:78:2e:ed:2f:25:d0:71:25:3a:d4:48:
2f:34:f1:46:96:9e:38:14:27:ce:ff:ba:9a:f6:25:75:26:d3:
7b:31:bd:e4:56:3b:1f:3f:e2:80:50:88:b7:19:a4:e6:96:8d:
39:51:ac:be:7f:9a:d5:52:8f:3a:7c:c2:a7:30:32:68:c6:b4:
dc:27:8e:ad:66:26:0e:c3:2f:18:5a:94:17:d9:6f:93:f7:82:
0f:4d:82:ef:bd:07:ac:24:57:82:76:62:c9:c6:1a:e4:d7:bd:
e8:08:49:05:32:d7:5b:3b:e1:4f:7a:14:16:af:8b:c2:1c:56:
e4:7f:d7:7c:6f:f8:80:e3:a3:3a:a0:7f:f5:39:97:cb:d2:0a:
96:f0:31:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:11:04 2025 by rpki-client