Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.mft
File: dGMyObqiEDEGpiYN39fni4CUNVw.mft (raw, json)
Hash identifier: ARzYFp1HWmVSAP+hU9fLH29Jfh3sP6x5ohe2Qb7gG30=
Subject key identifier: F3:0E:EF:29:22:11:61:B3:93:11:D2:53:FE:07:62:37:11:D7:0C:5A
Authority key identifier: 74:63:32:39:BA:A2:10:31:06:A6:26:0D:DF:D7:E7:8B:80:94:35:5C
Certificate issuer: /CN=74633239baa2103106a6260ddfd7e78b8094355c
Certificate serial: 01964331A39CF0FDB9D010C838FC924E399F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGMyObqiEDEGpiYN39fni4CUNVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.mft
Manifest number: 0BC9
Signing time: Thu 17 Apr 2025 10:00:48 +0000
Manifest this update: Thu 17 Apr 2025 10:00:48 +0000
Manifest next update: Fri 18 Apr 2025 10:00:48 +0000
Files and hashes: 1: GndNIt9G7qZhnR5IIBXP3kbyL_4.roa (hash: SBp7dhTz+pfIJxl9syItY+Kj164I5JLZ7F2dz4iFPso=)
2: dGMyObqiEDEGpiYN39fni4CUNVw.crl (hash: 4i9BPRyXAI+Rjy1m5H3YeDYzN6P4LwFhHjWdFZp2rEg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dGMyObqiEDEGpiYN39fni4CUNVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:31:a3:9c:f0:fd:b9:d0:10:c8:38:fc:92:4e:39:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74633239baa2103106a6260ddfd7e78b8094355c
Validity
Not Before: Apr 17 10:00:48 2025 GMT
Not After : Apr 18 10:00:48 2025 GMT
Subject: CN=f30eef29221161b39311d253fe07623711d70c5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:84:20:de:cf:b3:3f:68:04:81:85:72:b0:0a:
93:01:5e:4c:f4:74:10:da:d2:9e:a1:b0:52:bb:01:
1d:99:1d:26:40:95:45:1b:3f:d0:68:28:86:26:a7:
68:30:5d:ec:d7:d2:bb:fc:28:e7:de:9e:54:af:d7:
1f:27:7b:b7:ff:a8:ad:85:1e:85:9e:5a:a4:7b:dc:
1b:ba:0e:6d:cc:53:3b:71:bf:75:f0:d5:a8:e6:34:
bd:be:4c:d0:ed:7f:c8:8c:a9:e9:43:5c:14:e1:ce:
a1:13:40:c6:24:76:e9:ff:9c:f8:3b:a9:2b:f1:2d:
5d:e8:c6:c5:6c:73:d7:0f:8a:d0:e2:57:27:32:a0:
28:8b:8b:fc:67:ce:b9:4c:ca:2f:f5:15:af:c2:96:
4d:2f:3b:06:be:88:bd:22:92:bb:ff:48:d0:a6:b8:
ae:ab:fa:b0:5f:fb:c5:ea:88:0e:14:15:fd:56:75:
40:41:fd:c9:ab:c5:c4:c0:a2:e1:29:9d:95:93:4a:
c0:a0:97:7d:6b:24:6b:42:bf:37:11:76:f4:1e:ce:
aa:88:11:98:f7:5a:99:ae:c3:3f:29:33:64:6a:12:
bc:9d:46:06:16:e0:a1:c8:8e:24:f9:4e:1c:52:3c:
13:b7:dc:b9:e1:aa:b1:30:fc:83:07:da:c6:41:d7:
23:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:0E:EF:29:22:11:61:B3:93:11:D2:53:FE:07:62:37:11:D7:0C:5A
X509v3 Authority Key Identifier:
keyid:74:63:32:39:BA:A2:10:31:06:A6:26:0D:DF:D7:E7:8B:80:94:35:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGMyObqiEDEGpiYN39fni4CUNVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8f35e8-ac2e-4e15-a0b4-b2ec6117ce9e/1/dGMyObqiEDEGpiYN39fni4CUNVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:a5:d0:8a:61:f7:d7:3d:9c:41:0e:8e:ff:1e:4d:3f:e8:93:
34:d7:9c:2f:1a:96:7e:b4:ad:94:bd:0e:bb:3a:03:82:9f:e6:
7a:a6:d6:9f:42:54:84:7f:5c:83:fe:2f:e0:3a:08:f8:c1:51:
9e:45:8d:6b:7d:63:1b:d2:7f:c3:8a:fb:45:7d:3e:62:87:c2:
25:06:49:f6:6a:d7:11:79:70:c4:cb:06:71:ff:1b:b9:13:c0:
11:76:35:39:8d:28:52:e5:01:1d:a1:7c:b0:24:f1:4d:6a:1a:
5e:d3:1c:ba:fe:0c:86:0b:6e:7e:34:6c:f4:29:84:fc:9b:6a:
43:80:1d:bd:97:b4:b6:1f:3d:16:54:55:8b:61:4c:06:78:a1:
7f:a0:c7:67:f8:3e:1c:79:50:04:43:11:a2:a3:ad:81:d7:2d:
38:43:97:7f:89:d6:52:1e:03:7f:d2:9b:00:17:a7:4c:6b:10:
16:13:da:21:b4:89:41:ac:89:e9:5a:ed:aa:64:97:4f:d8:66:
7b:0e:ec:8f:7d:68:3d:b3:1b:fb:a1:99:c4:1d:51:87:db:cf:
d5:42:c4:db:52:e9:0b:78:84:b2:a0:6a:a7:ea:44:43:dd:48:
f0:3f:46:70:6b:95:ca:95:5c:ad:39:b9:d9:24:78:be:4c:9a:
78:13:37:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:24:36 2025 by rpki-client