Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
File: cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft (raw, json)
Hash identifier: +QM+v7cL/AfoAhkT00sz1i8GDlXM53ZtkcSit0Pgz5c=
Subject key identifier: 6B:F0:A5:30:E5:6B:80:CB:D9:BA:D0:3B:5B:8D:69:8D:2A:44:3C:25
Authority key identifier: 72:BD:0E:36:E1:C2:02:30:4A:35:13:3B:11:66:66:25:E5:D6:E5:EF
Certificate issuer: /CN=72bd0e36e1c202304a35133b11666625e5d6e5ef
Certificate serial: 01964D7E227706A5519FB323B1288C0D0616
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cr0ONuHCAjBKNRM7EWZmJeXW5e8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
Manifest number: 089B
Signing time: Sat 19 Apr 2025 10:00:34 +0000
Manifest this update: Sat 19 Apr 2025 10:00:34 +0000
Manifest next update: Sun 20 Apr 2025 10:00:34 +0000
Files and hashes: 1: YJ__Jpr1denKLIU4A4wwpaBEGuM.roa (hash: HQMvWJSgBySt+TDaIiCe+VSZte2lW30WZtz1IJWSvxM=)
2: cr0ONuHCAjBKNRM7EWZmJeXW5e8.crl (hash: zRl5xNVrE9z6LTtotqzx3pEGlVdKlrdBhcUd6qVbOmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
rsync://rpki.ripe.net/repository/DEFAULT/cr0ONuHCAjBKNRM7EWZmJeXW5e8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:22:77:06:a5:51:9f:b3:23:b1:28:8c:0d:06:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72bd0e36e1c202304a35133b11666625e5d6e5ef
Validity
Not Before: Apr 19 10:00:34 2025 GMT
Not After : Apr 20 10:00:34 2025 GMT
Subject: CN=6bf0a530e56b80cbd9bad03b5b8d698d2a443c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ea:63:88:d7:57:f7:d8:45:4e:b4:fc:39:07:
51:bf:5c:45:b5:47:4f:dd:a9:31:1c:ba:66:bc:b6:
8e:47:cb:47:c1:1e:17:12:37:03:85:ab:8e:8f:c8:
49:79:07:7b:ef:85:6f:b0:e7:59:d2:cf:c6:94:67:
35:b6:1c:61:0a:89:2e:88:4a:23:3f:da:0d:86:26:
9f:5b:e8:4d:f2:e7:c8:cb:a6:20:42:a5:c0:00:69:
aa:f6:06:36:62:de:6d:a8:34:5c:1a:7f:2d:c5:b1:
13:d9:a0:d6:b7:d7:61:a3:75:c5:73:99:48:62:f1:
54:15:07:76:60:e4:30:28:4f:cd:06:9d:e6:ba:da:
de:26:ae:ff:3e:03:fe:f4:6c:58:35:91:49:e4:24:
b1:42:9a:55:6c:69:a6:81:f3:b1:71:94:8f:14:c5:
34:6b:9d:b6:ce:e1:64:e0:c0:70:86:dd:e8:de:05:
ed:51:f0:7b:92:a4:b2:a1:9c:7b:9f:5e:0f:22:c4:
8d:2d:ba:f2:8f:51:9b:19:eb:70:9b:0f:56:23:e4:
95:4f:8e:6d:89:37:60:ea:97:e1:79:de:eb:2e:09:
64:96:22:dd:6b:79:86:51:77:d3:68:aa:92:99:cb:
e5:cd:e6:fb:f9:31:25:03:d4:fb:5a:03:64:a8:55:
d4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F0:A5:30:E5:6B:80:CB:D9:BA:D0:3B:5B:8D:69:8D:2A:44:3C:25
X509v3 Authority Key Identifier:
keyid:72:BD:0E:36:E1:C2:02:30:4A:35:13:3B:11:66:66:25:E5:D6:E5:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cr0ONuHCAjBKNRM7EWZmJeXW5e8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/52476d-a794-47d5-8f50-aeda824678d4/1/cr0ONuHCAjBKNRM7EWZmJeXW5e8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:5a:03:fe:32:5e:8a:1c:a3:b6:07:d4:24:89:1e:fb:86:21:
c7:33:fd:68:dc:c2:52:8f:dd:5d:44:d4:cd:29:62:95:80:42:
88:b5:9c:3b:2a:79:96:b6:0d:bb:c5:65:9e:d5:03:d6:df:93:
18:2b:46:43:ca:93:30:b0:81:60:49:1e:4d:9d:a0:10:8b:17:
99:76:32:a2:3e:d3:e3:c9:1a:dc:8a:e2:88:18:54:47:dd:38:
90:43:92:b9:ae:88:8b:69:57:b4:a6:05:70:1a:40:71:76:68:
49:2b:3d:4b:85:7b:18:c6:56:15:ab:4d:d8:5b:85:71:2f:25:
bb:d4:02:00:f1:7f:eb:9e:cf:c6:78:40:63:d8:e3:e5:07:8f:
98:8b:f9:4d:32:fd:71:08:d8:c3:e9:55:db:ee:a3:46:ba:c2:
70:86:c4:c6:da:3a:10:fb:c4:67:94:bb:3a:83:92:56:65:e1:
d4:a4:69:2f:3d:69:03:a0:06:45:d1:4c:4f:10:61:18:c8:ba:
fa:85:7b:f9:7f:fb:35:31:e3:51:c9:49:2f:48:be:37:37:d9:
f0:1b:2f:fe:82:d6:ee:be:c1:ef:2e:68:51:c5:ea:3f:4d:a8:
f0:f8:72:41:08:c0:9c:32:04:22:ef:6b:08:63:fa:73:e3:91:
22:f9:19:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:21:18 2025 by rpki-client