Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
File: 4OkqeIpBBX0ndk8W87HSo-9jRdY.mft (raw, json)
Hash identifier: qm4PIkMEj33WPBlYclOLV6TGESxOtEsXi2W6vs1Ha7k=
Subject key identifier: 36:61:D0:ED:72:00:4B:FA:DF:AD:D4:3B:93:80:AE:40:53:0C:0A:5A
Authority key identifier: E0:E9:2A:78:8A:41:05:7D:27:76:4F:16:F3:B1:D2:A3:EF:63:45:D6
Certificate issuer: /CN=e0e92a788a41057d27764f16f3b1d2a3ef6345d6
Certificate serial: 0196D13EB26DE12563D933F4FB4FF1B28407
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
Manifest number: 153E
Signing time: Thu 15 May 2025 00:01:09 +0000
Manifest this update: Thu 15 May 2025 00:01:09 +0000
Manifest next update: Fri 16 May 2025 00:01:09 +0000
Files and hashes: 1: 4OkqeIpBBX0ndk8W87HSo-9jRdY.crl (hash: WyRjP8tf4TTpZTsHW9PJKQK8XTYpuk5lqDbnqc65Uz0=)
2: BL-NDYgvhNS3ykN2bZ3XYSmCEZI.roa (hash: fBvbXWPI6WfZJHj+SHtFQme53z0G5Q3tNcbJRdIO7rA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d1:3e:b2:6d:e1:25:63:d9:33:f4:fb:4f:f1:b2:84:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0e92a788a41057d27764f16f3b1d2a3ef6345d6
Validity
Not Before: May 15 00:01:09 2025 GMT
Not After : May 16 00:01:09 2025 GMT
Subject: CN=3661d0ed72004bfadfadd43b9380ae40530c0a5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d7:8e:c9:77:84:dd:d5:69:e5:70:14:a0:86:
3d:73:b5:07:02:2c:6a:b1:84:af:26:ed:b8:15:48:
a3:99:a6:8b:30:34:53:86:97:9d:61:a5:22:18:54:
05:bf:ea:ae:2e:eb:ae:34:4c:08:61:20:24:4d:56:
67:dd:ad:9c:c5:44:1d:33:a9:4b:e3:29:3b:39:68:
5b:d4:15:7e:0f:ec:45:a8:02:07:59:ed:73:57:89:
08:1b:76:33:89:e1:e5:71:1c:f6:05:32:c6:84:6d:
81:18:78:30:73:83:a3:e7:da:76:f1:eb:61:88:04:
05:5b:e3:9b:f1:6c:88:02:59:b0:46:9a:2d:b5:2a:
96:cd:9d:ef:61:d1:84:32:34:9d:61:ab:68:13:62:
3e:e8:5a:e6:98:0a:21:bc:cb:84:07:40:52:90:64:
83:6a:e1:1f:87:c7:db:6a:55:51:62:24:91:8f:2f:
2a:ae:ad:1b:e5:2d:32:fc:a2:bb:c8:cb:2f:9a:dc:
b1:e6:f5:46:8f:5c:7e:19:92:0f:d3:61:51:67:c3:
8a:cf:22:22:a5:08:b4:d6:a8:37:fe:90:66:ae:e9:
1a:4c:bd:cb:d1:ae:33:5d:0b:23:8f:9f:ca:26:20:
b9:90:ba:e2:eb:da:3c:85:39:b3:97:94:4a:df:d3:
25:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:61:D0:ED:72:00:4B:FA:DF:AD:D4:3B:93:80:AE:40:53:0C:0A:5A
X509v3 Authority Key Identifier:
keyid:E0:E9:2A:78:8A:41:05:7D:27:76:4F:16:F3:B1:D2:A3:EF:63:45:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4OkqeIpBBX0ndk8W87HSo-9jRdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/d46487-43ff-45ee-8228-ba59fb2c4610/1/4OkqeIpBBX0ndk8W87HSo-9jRdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:06:3c:0d:a5:38:6b:a0:6d:f0:39:ed:56:a8:90:b3:65:f1:
7e:85:95:3e:02:2e:2e:21:26:23:c5:bb:fc:b3:7e:a2:06:ce:
08:18:0a:41:df:d7:4b:16:36:36:24:d2:91:43:1d:d7:65:e2:
43:b4:dd:06:e5:99:77:3b:f4:66:26:87:b0:b8:72:17:ab:11:
14:e5:3e:db:5a:fc:16:55:b1:0d:3b:3f:14:41:0e:ce:95:4c:
b3:fc:f6:19:23:db:7f:9c:6e:b3:f2:8f:90:e2:b2:bc:c5:64:
79:23:58:a1:ed:d4:c3:a4:26:27:bb:ba:18:a0:3c:b7:90:ac:
7b:e4:cc:b2:ac:f9:da:fe:9e:d6:00:f0:c3:85:bd:61:6d:ef:
c6:8c:f5:48:bc:3d:10:1e:e7:76:34:31:c3:de:30:84:69:fc:
b4:d7:d9:d9:43:72:88:61:5f:17:cb:7a:12:ed:9a:d2:7b:24:
29:f0:f1:64:93:8d:1e:97:8a:1f:aa:cb:71:b6:d1:6b:00:3d:
9e:22:50:32:f1:4e:7b:ca:5d:d3:96:93:7e:e1:3b:3d:c4:50:
2d:3c:68:1e:af:ab:0b:59:4f:1f:24:79:58:b8:d5:9f:08:b8:
18:f5:4d:31:a1:7a:bf:53:0c:38:5a:b0:e9:42:cd:74:de:b0:
c9:a8:5e:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 08:47:32 2025 by rpki-client