Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
File: h94IWXXeZYjgf-0TVROqOKztt2M.mft (raw, json)
Hash identifier: DEj3BKBfSQvjysfZ4zuTrvs1IcAvol777hXQDQdBT5Q=
Subject key identifier: 27:63:51:76:6B:2D:9B:F0:F3:71:9A:A9:B4:00:96:F5:52:D9:03:F6
Authority key identifier: 87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
Certificate issuer: /CN=87de085975de6588e07fed135513aa38acedb763
Certificate serial: 0196BAB62718812FC7FEDCCF5CA744230C0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
Manifest number: 091B
Signing time: Sat 10 May 2025 15:00:21 +0000
Manifest this update: Sat 10 May 2025 15:00:21 +0000
Manifest next update: Sun 11 May 2025 15:00:21 +0000
Files and hashes: 1: 2z5OP5uOUPeCHEZvOlemyfzgiqA.roa (hash: Hk782ryuX9Xc6GFCRAe62b1gzyY4Vb/jeKK1cnQhmr8=)
2: h94IWXXeZYjgf-0TVROqOKztt2M.crl (hash: 57Ka4W1kQ5iqtjRlkEA+YaAeToXgkfHXgnhddVW3al4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 15:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:b6:27:18:81:2f:c7:fe:dc:cf:5c:a7:44:23:0c:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87de085975de6588e07fed135513aa38acedb763
Validity
Not Before: May 10 15:00:21 2025 GMT
Not After : May 11 15:00:21 2025 GMT
Subject: CN=276351766b2d9bf0f3719aa9b40096f552d903f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:48:7e:ef:c1:b1:00:67:4c:86:8a:33:79:25:
b1:79:f9:2f:64:9a:8a:9d:ef:21:90:59:a8:a2:47:
e7:ce:9a:20:cb:2e:73:88:3e:90:eb:cc:23:9e:a4:
f7:41:e7:35:29:77:df:4b:dd:01:32:9b:c5:0b:66:
71:3c:34:50:a8:52:56:0e:19:8f:e2:68:78:ef:44:
12:bc:53:2d:9f:7c:ab:70:10:dc:c4:44:1b:02:d7:
10:cc:41:d6:c1:d2:d6:e7:2c:6c:f5:7d:2a:db:89:
12:6f:89:17:fe:a5:34:1a:b5:7e:fc:ea:7e:e8:54:
92:4c:10:2b:31:bc:31:d3:f3:97:87:5f:26:b5:c0:
5c:fa:00:94:44:98:fa:2b:74:dd:77:85:3d:f6:8c:
b4:b1:f3:8d:00:3c:41:56:50:c1:b0:74:6f:d6:1a:
64:d5:80:09:09:7a:20:65:c9:f5:d2:90:fb:0b:ed:
2e:59:9d:50:8d:af:0d:ab:41:2a:b9:14:b5:85:c4:
0c:2f:87:b7:c6:49:bb:bb:cd:63:97:27:25:7e:63:
9d:99:da:d5:9d:16:10:3f:b6:e7:43:4a:e0:4c:9d:
2a:25:0e:13:7b:c1:c5:f1:04:b6:dc:1e:83:48:f5:
6b:62:c5:fb:34:9d:81:0b:a4:f6:aa:1b:8c:c4:ad:
3a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:63:51:76:6B:2D:9B:F0:F3:71:9A:A9:B4:00:96:F5:52:D9:03:F6
X509v3 Authority Key Identifier:
keyid:87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:b9:7f:4d:b8:02:6a:9a:b2:c5:4f:e6:04:2f:21:f4:e8:f5:
24:2c:bf:e8:50:44:b1:13:f9:50:e9:c3:0b:15:98:53:c7:79:
13:52:fa:6d:c8:41:f9:25:2c:fb:d6:c6:92:b3:20:f1:d5:65:
b0:be:19:82:3d:13:69:ef:2a:83:b5:cd:ff:e0:80:6f:cb:98:
af:28:dd:60:07:62:9b:f3:dd:e0:22:9d:9e:5c:18:db:a5:a9:
3f:e2:69:b8:e2:44:38:c5:c3:43:50:33:b0:cb:fb:01:8c:b9:
1d:3a:c7:a8:47:1d:6d:a3:7b:cd:d4:c5:97:0f:a0:9d:b3:7d:
df:b1:48:69:bf:1d:d5:74:94:08:54:f2:2d:1e:67:34:eb:59:
b7:ac:19:dd:0d:df:27:af:42:0a:3a:57:65:d9:71:27:ef:4a:
b1:21:75:7e:d5:82:2b:17:31:a8:7e:55:7a:81:5f:4b:15:f9:
b0:3c:b4:bb:b2:a8:17:15:53:41:a7:e6:2a:3d:a7:f7:83:e5:
5f:ac:11:29:cc:d6:52:2a:6c:1f:ca:e0:c6:eb:b2:53:d7:10:
d5:7f:dd:19:c8:0d:6a:ba:a0:3f:94:c8:ae:6a:30:e5:b4:7d:
89:27:ea:1b:c5:98:7d:44:0c:44:b8:bf:53:64:7f:98:12:b5:
1b:84:d5:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:22:07 2025 by rpki-client