Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
File: 0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft (raw, json)
Hash identifier: 4tjtMCV3Mmhkmt3WQxLsHme3PbGCQxNTGEeJzwQsujU=
Subject key identifier: 60:A9:27:89:9A:C3:CD:B7:09:F7:36:C9:F1:5C:4D:63:0B:0A:53:6E
Authority key identifier: D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8
Certificate issuer: /CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8
Certificate serial: 0196501149FB19C4C58FB88A4C0719564E3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
Manifest number: 0180
Signing time: Sat 19 Apr 2025 22:00:32 +0000
Manifest this update: Sat 19 Apr 2025 22:00:32 +0000
Manifest next update: Sun 20 Apr 2025 22:00:32 +0000
Files and hashes: 1: 0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl (hash: 8Wd4+3k2abdlFck2saATP1L+QtdYeg3B3Kubu+JCZF8=)
2: vwZ3qyY8j7AihfGsWYtA6mwINxQ.roa (hash: VBbCuPYUO8ASQ+6MrnY57WOdr+3+R3PhClJszE/T/CI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:11:49:fb:19:c4:c5:8f:b8:8a:4c:07:19:56:4e:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04850f8069df62dc5155c02ed1e62bf51cedbc8
Validity
Not Before: Apr 19 22:00:32 2025 GMT
Not After : Apr 20 22:00:32 2025 GMT
Subject: CN=60a927899ac3cdb709f736c9f15c4d630b0a536e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:be:87:05:2c:f9:61:83:17:46:33:62:44:de:
b1:80:24:75:93:4a:88:8c:7b:ef:ff:24:2f:08:ff:
bd:17:e1:f8:cd:6d:74:af:c3:46:13:94:72:e5:d7:
71:03:b3:c0:25:27:22:e5:d0:dc:01:8f:3f:14:3a:
c6:52:df:f9:46:56:6c:8d:ca:cb:90:10:dd:04:39:
c1:9f:eb:81:9e:45:41:55:48:d5:d4:f4:7c:b9:33:
c6:05:aa:86:cc:64:d0:f1:a6:3c:06:57:3e:e8:81:
bb:cd:83:e4:b0:fe:d2:4f:97:81:8a:b4:fe:d2:5e:
27:e1:f0:cb:1f:fd:93:21:d0:17:8f:47:93:27:58:
b3:8f:fb:30:f3:ec:23:af:a1:3c:72:51:f6:7f:bb:
fb:76:03:db:4d:90:86:1c:64:b1:ee:31:6e:4b:12:
1a:ad:48:31:30:b9:c4:6a:77:97:66:4e:46:af:40:
5a:7a:f4:42:6e:af:21:69:45:1f:20:ef:85:1c:9d:
bf:d1:5c:5e:84:73:0c:de:cf:28:30:98:c4:9b:6b:
e7:51:3a:6b:31:22:b0:80:c1:fc:8e:93:c3:1f:75:
87:87:0f:81:f1:d3:45:15:cf:da:46:fb:58:2c:f1:
99:27:7a:82:36:9c:d1:e9:00:0e:f3:75:5d:2a:13:
bb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A9:27:89:9A:C3:CD:B7:09:F7:36:C9:F1:5C:4D:63:0B:0A:53:6E
X509v3 Authority Key Identifier:
keyid:D0:48:50:F8:06:9D:F6:2D:C5:15:5C:02:ED:1E:62:BF:51:CE:DB:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EhQ-Aad9i3FFVwC7R5iv1HO28g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d097d3-d4ba-4130-8e96-ad95ebfaaae2/1/0EhQ-Aad9i3FFVwC7R5iv1HO28g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:b0:38:98:e9:b1:f2:c1:20:b3:5f:c8:bb:89:39:e6:4d:29:
66:e8:70:66:88:31:97:be:55:bd:47:97:57:1f:fa:6a:4b:a7:
5b:ae:2c:0d:f2:12:72:19:af:cc:5d:8a:eb:e6:fe:e2:85:bf:
28:b8:f0:d0:1f:19:2b:98:82:ac:22:94:e2:56:1d:67:21:d4:
a1:7a:bb:90:8e:c5:9c:90:cd:86:df:d6:3b:21:40:51:bb:9b:
2d:8d:01:6a:5e:49:01:2f:b9:df:5a:d1:cd:c9:dd:3b:b5:56:
34:a1:b3:1f:3c:99:33:0f:48:64:8e:6d:17:e1:4f:68:5f:c6:
67:93:57:d7:0b:8a:04:4b:35:0e:32:14:01:1e:a6:1a:62:99:
2a:0c:d0:bf:ee:4c:45:0b:c0:34:d1:e0:46:56:53:f2:58:fe:
7e:3f:22:1a:1c:e4:53:d3:fd:8b:79:db:cd:35:b9:3d:d5:4d:
42:97:67:92:c7:8e:3b:dd:55:15:62:bf:4c:4c:55:3b:16:16:
54:c3:d2:22:62:5e:0c:5b:48:f7:14:be:39:b6:89:6b:5d:97:
81:16:75:8b:bf:b1:ea:7d:9e:25:9d:c5:8b:53:b1:38:ac:0c:
54:23:7a:19:b6:b6:66:9e:9e:4b:62:cd:fd:de:db:fa:7e:4b:
e3:e0:9d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:08:41 2025 by rpki-client