Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier: XVtl3lJBP3BH14RZFPNAotH6yg7V3FO38GMqBlMhHKY=
Subject key identifier: 83:45:B3:47:53:7E:30:39:B8:5C:4B:AA:0B:55:79:79:C5:42:7E:A3
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 0196B5C6A7FAEB0DCE381CE1E67C4E940DAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number: 0FEE
Signing time: Fri 09 May 2025 16:00:17 +0000
Manifest this update: Fri 09 May 2025 16:00:17 +0000
Manifest next update: Sat 10 May 2025 16:00:17 +0000
Files and hashes: 1: 0CceuujOUN7fI6SJWiU4I3JvZeo.roa (hash: ReNIag9nA9bjr82rfcj5JjzPGdjpj3RK7GRwiAamY6Q=)
2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: VF14sN4mMahG3DE+uUkyZHDh34EE4F3rZ5zvW+YCfHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:c6:a7:fa:eb:0d:ce:38:1c:e1:e6:7c:4e:94:0d:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: May 9 16:00:17 2025 GMT
Not After : May 10 16:00:17 2025 GMT
Subject: CN=8345b347537e3039b85c4baa0b557979c5427ea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a9:55:94:9d:66:63:d2:57:d4:37:e5:95:30:
54:46:f5:26:eb:d4:16:a6:ef:3c:67:65:1d:61:53:
0a:1f:c9:ae:d0:32:aa:bf:0b:fa:dc:ef:b5:d2:f2:
1a:e2:3b:8b:d1:c7:12:63:a8:43:54:cb:1c:5c:1b:
a0:3f:e8:fa:2f:3d:d4:d5:33:8e:cf:b0:0a:b6:58:
6e:a3:ff:cc:1e:3d:fe:b4:17:40:31:09:b0:d1:fa:
3f:61:b7:af:bc:fd:a7:d5:18:db:f6:2d:1f:c9:74:
33:67:0c:77:5e:e0:f5:99:6c:55:49:1d:40:f6:a6:
11:ae:4a:45:96:47:3f:f4:d4:a0:ac:15:b0:3b:a7:
68:c0:15:d2:b4:c3:4e:0e:79:35:8c:10:f5:e0:90:
bd:52:64:98:7f:de:e4:12:78:b2:7f:97:57:bc:73:
77:b6:b4:e6:38:ad:26:be:a2:c7:47:d2:e5:58:5b:
ed:fd:7f:21:c4:3d:28:da:0b:a7:7d:9d:c4:b1:0a:
62:1e:c6:1f:f9:45:f8:90:6d:20:15:a9:8f:1b:f5:
8a:41:60:9c:fc:99:62:92:d6:53:ad:8a:fd:01:fb:
6f:63:49:f7:d2:8a:ab:08:fd:b1:98:4c:aa:ee:15:
be:95:af:12:24:14:87:db:90:ea:fd:80:ac:1c:30:
8e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:45:B3:47:53:7E:30:39:B8:5C:4B:AA:0B:55:79:79:C5:42:7E:A3
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:67:f9:33:2c:d8:8f:8f:c9:e2:bb:e3:ad:26:89:fe:f2:c2:
ef:c0:aa:ee:08:3b:ad:4e:5e:29:3b:a9:f7:80:8e:96:d9:7b:
59:06:ee:9b:7a:70:27:79:b8:f3:c3:55:48:f6:0f:54:f0:8d:
bb:13:13:7a:a7:77:c6:a0:eb:f6:40:a2:bd:32:29:55:47:6e:
38:00:be:04:17:19:b8:cc:ca:1b:97:a4:6a:d2:2b:32:05:b0:
5e:97:4a:6f:f9:68:44:72:be:d3:3c:3c:d4:9c:5a:1c:e0:6a:
45:f2:cd:55:6d:c0:fc:06:90:e6:12:20:5d:35:ab:fa:95:d4:
84:b7:6e:6d:75:2b:d8:8b:bd:18:37:3b:c6:9d:32:c0:6a:d3:
df:93:71:26:24:2c:eb:87:72:11:b9:80:1a:40:81:6c:2d:77:
a2:d5:27:1c:b5:75:7a:cf:1e:f5:36:f0:9f:c9:2e:d4:fa:6e:
7b:45:23:ee:77:9c:5b:f3:d3:e9:e3:29:67:b1:6d:2f:55:bf:
9e:fc:87:e1:67:f3:ba:98:37:84:40:dc:bb:98:93:e8:ed:cc:
e0:26:3a:9b:b0:4a:fc:41:92:8e:8e:44:bd:69:6e:1b:8b:83:
55:4b:b4:70:61:33:25:e3:7e:c1:da:27:38:c0:86:0e:be:e9:
6e:c0:f0:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 23:18:56 2025 by rpki-client