Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
File: 28lQCYQ2KBzuVCoedFRlUeHlUoM.mft (raw, json)
Hash identifier: vlZp/bh3fBR9z0bz/GW946xhoAq4Q8Q1/A3euEF3eiM=
Subject key identifier: 99:90:A3:96:2F:37:4E:5A:EA:04:E1:2A:BF:74:AC:89:73:47:4D:9F
Authority key identifier: DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
Certificate issuer: /CN=dbc950098436281cee542a1e74546551e1e55283
Certificate serial: 0196C683C03BCF93AB83089F6DDD3D186BBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
Manifest number: 153B
Signing time: Mon 12 May 2025 22:00:45 +0000
Manifest this update: Mon 12 May 2025 22:00:45 +0000
Manifest next update: Tue 13 May 2025 22:00:45 +0000
Files and hashes: 1: 28lQCYQ2KBzuVCoedFRlUeHlUoM.crl (hash: s/GyCnWVJVydp4Xz5KeIxVcHnvMULbgcRNc8zvlt9kU=)
2: 5OG6iGTbUMv4yreuCzltBDVdDTU.roa (hash: B8Cg7jxvmm1JBGJPeKqbsREjncwII7bdGdlW3Ml3/PA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:83:c0:3b:cf:93:ab:83:08:9f:6d:dd:3d:18:6b:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbc950098436281cee542a1e74546551e1e55283
Validity
Not Before: May 12 22:00:45 2025 GMT
Not After : May 13 22:00:45 2025 GMT
Subject: CN=9990a3962f374e5aea04e12abf74ac8973474d9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a3:0e:7f:54:18:1e:89:bc:9c:fd:cf:05:52:
5c:9e:4d:3c:a9:f7:97:43:d3:4b:09:f9:6e:ec:d5:
61:33:96:4f:87:0e:07:36:d5:56:3a:3d:6c:d4:a2:
d8:96:23:44:3c:a8:ab:d2:39:f5:04:dc:5f:16:b8:
e4:c5:0d:ba:cd:89:36:c1:1a:7d:b8:18:e2:f9:ae:
02:36:68:45:3c:89:ed:d2:6e:8c:22:c3:23:8c:39:
e3:16:3e:dd:df:bb:ac:00:54:fb:84:47:2f:02:09:
cb:f1:26:9b:e8:68:9f:a4:cf:c6:58:0a:02:5b:18:
f3:3b:c1:f7:88:4b:3b:00:7c:69:db:22:8f:81:93:
73:08:6e:97:79:82:4b:a8:26:b2:52:3a:fd:8b:c2:
39:2c:de:4d:3b:c3:7f:36:ad:5a:5a:ea:30:cb:33:
31:d9:6c:ab:f6:9c:8e:53:02:c7:e3:13:60:8e:90:
2d:18:92:76:21:b6:75:14:bc:42:03:8f:84:34:bf:
be:87:d3:7d:24:61:cb:3c:b1:f0:41:3c:b9:d9:ca:
e5:a3:45:57:04:7b:40:7a:44:6d:c9:9e:64:3e:ab:
52:56:49:a1:5d:63:90:0d:f5:bb:67:48:b0:01:a4:
fa:41:39:e7:69:ab:00:db:d9:e9:05:88:03:00:32:
35:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:90:A3:96:2F:37:4E:5A:EA:04:E1:2A:BF:74:AC:89:73:47:4D:9F
X509v3 Authority Key Identifier:
keyid:DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:fa:a4:83:91:a3:14:30:d8:b7:34:6a:81:74:e2:2a:d0:4c:
b0:c8:cb:3b:5a:c6:0d:63:95:02:bf:72:8c:c0:ab:2a:21:40:
e8:91:22:e8:b6:c1:9c:c1:1f:01:25:36:1c:be:71:e7:e2:86:
6f:c9:f7:1d:8c:09:44:89:30:3c:eb:b5:f2:11:11:48:71:a5:
46:0d:5b:d5:79:d8:d3:a3:d2:f4:cd:35:b9:54:77:f8:f1:7c:
bc:d7:11:a1:25:1c:b0:74:8d:f4:e9:24:2e:77:69:04:09:61:
9f:09:8b:4f:2e:b7:2b:17:57:de:c7:3c:32:83:af:60:f1:c9:
41:f8:69:2b:11:b3:ac:a4:8b:93:11:9b:0c:84:9b:38:7a:60:
d1:67:eb:28:e2:3d:c9:c3:26:88:53:e2:b7:9f:8e:a5:b1:57:
7f:5d:5b:30:3a:03:6d:0f:6e:29:0d:40:b6:3a:37:fb:2d:38:
03:01:69:70:cc:88:75:c7:3b:4f:75:7b:de:cb:51:9e:31:c2:
41:9b:14:c8:2c:e5:2c:63:ba:0c:aa:2a:c5:ad:7b:44:c4:64:
9e:56:92:51:5a:6b:b2:d4:2b:46:c3:93:00:05:1e:1a:f8:44:
03:34:aa:98:75:0e:6d:64:01:8a:84:55:af:12:5c:f6:99:03:
51:d8:9c:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 00:05:51 2025 by rpki-client