Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
File: CFeH5l60_NZuM0C2Kt5HygCRnc4.mft (raw, json)
Hash identifier: MwyhkAzHCXMEInZmXIj+1kwtahb9wkcjne8g48QBy7w=
Subject key identifier: D9:6F:12:6B:B3:97:C8:0C:A2:9C:E9:AC:E0:87:26:5A:A0:B8:F5:AD
Authority key identifier: 08:57:87:E6:5E:B4:FC:D6:6E:33:40:B6:2A:DE:47:CA:00:91:9D:CE
Certificate issuer: /CN=085787e65eb4fcd66e3340b62ade47ca00919dce
Certificate serial: 0196BD8115A31BF43F0A416A70133823E604
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
Manifest number: 04A4
Signing time: Sun 11 May 2025 04:01:15 +0000
Manifest this update: Sun 11 May 2025 04:01:15 +0000
Manifest next update: Mon 12 May 2025 04:01:15 +0000
Files and hashes: 1: CFeH5l60_NZuM0C2Kt5HygCRnc4.crl (hash: xPQXG5cl3ZsLcgVa5IMt8a3mvfLyobAspTLDbnOYkLI=)
2: IZ-nCDCZ_WFPQrV4b51Gvn4a1GU.roa (hash: 1zcxhGAttFQP5ld0bDKnJ/ztckFUeO0GInmPR3RRBiI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 04:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:81:15:a3:1b:f4:3f:0a:41:6a:70:13:38:23:e6:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=085787e65eb4fcd66e3340b62ade47ca00919dce
Validity
Not Before: May 11 04:01:15 2025 GMT
Not After : May 12 04:01:15 2025 GMT
Subject: CN=d96f126bb397c80ca29ce9ace087265aa0b8f5ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:27:05:c2:98:7e:f8:9c:30:7b:55:56:eb:36:
dc:51:3c:5c:de:b3:4e:ba:d3:7a:0b:c8:cc:b2:7a:
a6:9b:33:c6:e4:d6:db:54:b5:fd:10:d8:fc:95:72:
2b:d4:59:bd:84:7a:f0:8a:70:32:fb:97:dc:62:0a:
80:0e:54:ed:6a:db:5e:04:a3:3d:36:15:6d:ad:da:
2e:43:0d:1c:d7:08:a8:1d:a6:71:f1:f8:3c:38:ef:
3b:91:44:3c:5d:5d:96:81:56:9d:88:da:ed:d3:92:
e9:ed:d1:6a:e2:f9:68:d7:de:b6:a3:9b:ad:dd:15:
1d:84:8c:c0:99:94:90:ae:e2:72:1d:5a:3e:f9:ce:
4f:bd:17:ad:a3:06:4e:82:e9:19:4b:64:b2:d8:b0:
48:94:12:fe:e2:35:8b:dd:3f:06:14:b0:df:13:b0:
77:5f:6a:99:6b:be:16:c9:8c:c6:d5:54:87:b2:3b:
fe:16:e1:d8:18:c3:fc:0c:ad:aa:97:09:e0:95:8f:
e0:a8:cb:ad:89:4e:4d:9d:a1:2f:37:5f:2d:f9:1d:
18:a2:45:ba:c5:a8:2d:f3:80:10:81:a5:16:6c:6b:
eb:47:7e:e3:4e:ea:5e:38:48:24:56:52:6c:5f:a8:
d5:70:70:51:00:cd:5b:45:18:c3:eb:83:44:2a:f5:
f6:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6F:12:6B:B3:97:C8:0C:A2:9C:E9:AC:E0:87:26:5A:A0:B8:F5:AD
X509v3 Authority Key Identifier:
keyid:08:57:87:E6:5E:B4:FC:D6:6E:33:40:B6:2A:DE:47:CA:00:91:9D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CFeH5l60_NZuM0C2Kt5HygCRnc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/d2bbf6-3b69-442e-b490-7e54c32abed8/1/CFeH5l60_NZuM0C2Kt5HygCRnc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:23:ff:ca:32:38:71:cd:16:7b:9b:8b:fe:e5:38:ad:8e:73:
d6:ee:b5:81:6f:9d:fe:0a:5c:f0:ad:12:72:a8:9d:0a:f7:7a:
7f:33:01:18:de:64:44:66:ea:8c:01:6e:9e:05:b6:6f:08:cc:
0f:1e:e8:6f:f8:9f:83:3e:81:67:42:b4:4c:71:58:b9:33:1a:
7a:eb:80:40:2a:93:af:c6:63:bf:86:1a:1f:0c:b1:94:7d:20:
e2:25:2f:7b:21:57:2e:81:48:46:4c:73:48:b3:85:30:4c:1a:
73:ba:17:60:6c:09:32:48:88:d4:7e:2c:81:e6:f8:37:8d:82:
06:71:be:15:1c:c9:3f:ba:c5:6c:ed:20:a8:26:60:a6:db:ac:
8c:b1:98:7b:7e:33:ee:aa:6c:e0:86:f6:29:31:47:5b:26:03:
b6:12:70:dc:13:12:60:5a:1b:38:cf:d1:9e:60:94:4d:11:8e:
cf:33:e0:d0:fd:6c:b8:5f:87:fc:a6:cd:a9:b3:ab:97:ff:06:
b3:da:3b:29:a7:df:61:7b:ca:cc:2c:ea:3a:07:11:69:83:39:
0e:3f:c2:78:be:36:6a:c0:62:73:a3:26:12:75:60:2a:57:60:
22:f1:05:ad:61:1c:e7:2f:d5:94:80:a8:c4:c0:3b:46:58:c0:
8b:6a:1f:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 14:11:27 2025 by rpki-client