Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft
File: pOd3fHr7fUObRvaBxMe_aoJS4xU.mft (raw, json)
Hash identifier: LOwvK4Xb2gAA0R+C0WPdZ9WCo6cQQC1LdWIDl8NELnQ=
Subject key identifier: D5:B9:62:CC:24:0B:78:FF:43:B0:32:E3:94:75:DE:19:BF:DB:4A:8C
Authority key identifier: A4:E7:77:7C:7A:FB:7D:43:9B:46:F6:81:C4:C7:BF:6A:82:52:E3:15
Certificate issuer: /CN=a4e7777c7afb7d439b46f681c4c7bf6a8252e315
Certificate serial: 01969E9AA54342E95550E6A7C6D2403829AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOd3fHr7fUObRvaBxMe_aoJS4xU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft
Manifest number: 0C0F
Signing time: Mon 05 May 2025 04:00:56 +0000
Manifest this update: Mon 05 May 2025 04:00:56 +0000
Manifest next update: Tue 06 May 2025 04:00:56 +0000
Files and hashes: 1: pOd3fHr7fUObRvaBxMe_aoJS4xU.crl (hash: D9aR+q/paNqW9ruyqKbtyiAg5ahNCVxwhJYkfTNmddE=)
2: z4rUk_E4AGcR7M7P_EXqaAGwIrE.roa (hash: vdPESCF/t7U31UD2O57fuph7iNy0Hlzj8MYZvwZ4bj4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft
rsync://rpki.ripe.net/repository/DEFAULT/pOd3fHr7fUObRvaBxMe_aoJS4xU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:9a:a5:43:42:e9:55:50:e6:a7:c6:d2:40:38:29:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7777c7afb7d439b46f681c4c7bf6a8252e315
Validity
Not Before: May 5 04:00:56 2025 GMT
Not After : May 6 04:00:56 2025 GMT
Subject: CN=d5b962cc240b78ff43b032e39475de19bfdb4a8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f2:e0:fb:56:f5:1e:b1:2d:48:a2:ad:8f:33:
67:cf:b4:ee:f6:35:fd:f2:02:2a:f5:74:bd:27:5f:
53:24:94:b5:aa:c8:78:a6:78:36:0a:15:15:a5:3e:
d8:2d:8a:83:a8:ae:5b:38:83:b3:cf:b3:70:7a:de:
df:7a:92:2a:8d:b3:4f:e2:01:77:58:c6:09:49:f5:
2d:57:f9:ee:a4:c1:9e:04:a6:3a:f5:05:c4:75:33:
ee:76:2c:d4:fd:c0:fa:99:60:fd:d0:5c:c8:04:4c:
4e:7c:0a:40:d9:cf:07:7b:45:f1:d8:22:61:7a:6d:
c4:c0:39:05:2f:ee:b0:be:dc:51:84:71:33:0e:6f:
33:23:f9:fc:45:c8:fb:ed:74:f2:68:e5:b3:31:c1:
aa:5a:c5:ab:60:ac:f5:63:11:69:f1:45:6e:7b:65:
57:4b:37:3f:8f:16:a4:d0:f5:67:2a:bc:ff:03:49:
72:8c:b3:ec:8d:a9:57:ff:42:de:eb:75:39:ba:e0:
e2:41:3f:59:6f:95:14:3a:56:4f:de:d5:04:61:ca:
ab:41:68:ce:0a:29:19:07:33:0b:a5:d8:a0:88:9d:
7d:1b:0f:5d:b0:5f:6a:88:86:86:26:15:80:31:c9:
6b:b2:f2:cf:11:b5:d9:3b:f4:da:8c:be:30:1a:62:
cd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B9:62:CC:24:0B:78:FF:43:B0:32:E3:94:75:DE:19:BF:DB:4A:8C
X509v3 Authority Key Identifier:
keyid:A4:E7:77:7C:7A:FB:7D:43:9B:46:F6:81:C4:C7:BF:6A:82:52:E3:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOd3fHr7fUObRvaBxMe_aoJS4xU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/45ad5b-3ce1-48f1-bef7-641cfb6e3d9b/1/pOd3fHr7fUObRvaBxMe_aoJS4xU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:1b:10:12:8d:14:d8:e3:e5:cf:05:a3:8d:37:48:75:87:b1:
96:7a:3c:43:c6:02:c5:86:0d:c3:56:64:8f:70:03:b7:4c:fe:
cb:a0:3b:8f:73:af:06:aa:93:9b:a1:78:2b:7d:fe:52:1c:f8:
78:df:23:20:41:41:cd:2d:a7:fb:12:c4:a6:89:96:cb:d0:cd:
cd:6e:12:98:ad:c4:af:6c:20:61:08:ee:90:53:46:af:0a:a4:
98:d0:b0:bc:d3:dc:b0:c4:22:19:de:35:cf:e1:8b:5a:29:f6:
a6:5b:88:17:21:37:ce:b7:02:ec:13:07:54:17:fb:d7:c6:77:
43:8d:59:a9:e7:31:44:26:8e:83:05:8e:29:6e:a4:a3:db:8e:
a5:a7:c6:c4:fd:f2:7b:a0:40:46:06:91:c1:f1:fe:29:9b:8f:
ba:23:24:a1:c8:e2:2d:20:a9:f6:e9:47:9c:5b:83:89:13:54:
c8:df:ec:ab:51:57:d8:c6:5c:db:b4:f6:cb:03:f4:6e:c4:d8:
38:57:c5:f5:d0:f2:34:88:88:f7:8b:dc:80:aa:d6:99:04:3f:
d9:9d:36:a3:52:59:47:67:31:42:76:37:27:e3:6f:56:f6:6f:
20:26:c0:79:17:39:62:8b:22:90:74:ad:18:4b:df:a5:2e:14:
d6:06:84:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 08:30:14 2025 by rpki-client