Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
File: 0d2oMnacMWgfglaFFHNorzoR9vg.mft (raw, json)
Hash identifier: RAfsbmS+rb8HNaWfd5m+q2WPoFHMQIwkd5+YBddLbYg=
Subject key identifier: 04:91:FB:B3:36:1D:60:95:6B:1E:D7:DB:DD:9D:4A:0B:6A:27:AD:6F
Authority key identifier: D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
Certificate issuer: /CN=d1dda832769c31681f825685147368af3a11f6f8
Certificate serial: 0196BFA5B89B1A6DBC8AC4E8A2224F5FB979
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
Manifest number: 1536
Signing time: Sun 11 May 2025 14:00:30 +0000
Manifest this update: Sun 11 May 2025 14:00:30 +0000
Manifest next update: Mon 12 May 2025 14:00:30 +0000
Files and hashes: 1: 0d2oMnacMWgfglaFFHNorzoR9vg.crl (hash: WO83qC/KvjvDurTOL3soTAy34pvWQKbnQ4BWNRVSweA=)
2: b7sNWlzHmaj36hpl7542OiFeLhk.roa (hash: r2LdfaqH2ThvketoRQBfUQ9ZRTad2+2P2sxQXJTCIiQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 14:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:a5:b8:9b:1a:6d:bc:8a:c4:e8:a2:22:4f:5f:b9:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1dda832769c31681f825685147368af3a11f6f8
Validity
Not Before: May 11 14:00:30 2025 GMT
Not After : May 12 14:00:30 2025 GMT
Subject: CN=0491fbb3361d60956b1ed7dbdd9d4a0b6a27ad6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fd:8e:58:18:1c:85:a4:09:cf:55:53:8e:31:
2b:11:f4:4e:52:51:9f:93:76:1c:27:7d:44:f8:92:
7a:2e:82:6d:d4:3c:21:ff:86:06:f1:97:02:fe:79:
6f:50:f5:52:68:45:79:62:5c:b1:65:f9:c2:be:48:
73:96:dc:46:93:40:77:e6:a4:3e:84:a3:46:ae:e9:
f2:75:dd:97:d4:12:98:ec:f4:c5:27:2f:b9:de:ff:
64:28:5d:05:ee:6d:21:15:3b:93:3d:78:38:fb:d8:
d3:ad:83:79:b1:1b:01:f8:12:a1:17:6a:42:0b:60:
c0:ea:38:97:ac:cd:fc:58:78:48:5d:1a:4f:ce:ea:
3a:cf:c3:15:15:5c:a0:67:48:1d:84:5e:82:e9:5c:
09:28:e7:40:19:ed:d1:0b:47:d2:41:cc:2b:c9:ec:
86:c6:28:a9:4e:81:41:ac:cb:ec:2b:73:36:34:be:
d0:0e:d5:49:e4:75:f3:25:29:df:85:d1:05:e0:41:
44:05:7b:9b:a6:51:5f:f9:3a:e0:3f:dc:c8:f8:01:
91:e0:52:f5:42:6a:18:18:4a:b3:f7:8a:64:fb:c3:
7d:92:dc:1b:5c:2b:6a:62:e0:30:fd:60:db:d8:fd:
9d:84:1a:a1:ce:75:c3:2d:11:fd:36:28:d5:1c:10:
60:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:91:FB:B3:36:1D:60:95:6B:1E:D7:DB:DD:9D:4A:0B:6A:27:AD:6F
X509v3 Authority Key Identifier:
keyid:D1:DD:A8:32:76:9C:31:68:1F:82:56:85:14:73:68:AF:3A:11:F6:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d2oMnacMWgfglaFFHNorzoR9vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a6d3c-17da-44d3-a402-86236bac1308/1/0d2oMnacMWgfglaFFHNorzoR9vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:b0:9b:1e:d9:35:07:02:e7:ac:ed:fb:10:5c:7c:1a:89:36:
24:ca:4d:c1:9a:0e:a1:80:25:5e:b9:11:bb:14:16:99:ef:50:
17:53:13:e2:cd:55:bd:3f:39:70:77:bf:a4:cc:53:ce:d4:6c:
e1:f7:e2:66:e4:b1:1b:83:5b:b8:c8:6b:87:d5:60:aa:41:48:
b1:b7:bf:26:28:ea:4f:f5:02:84:bf:b8:86:a7:c5:dc:84:00:
cb:1e:d6:a6:4a:ce:27:ed:82:82:cb:08:6c:f2:90:2b:15:70:
3f:9f:f3:21:39:20:2a:0e:36:bf:b3:19:2e:5c:6b:05:e5:82:
ec:ac:82:88:da:f1:b8:02:75:ee:cd:9f:e5:9d:1d:f7:bc:f5:
60:ad:42:84:c1:03:bb:59:88:32:c4:58:66:c0:2c:72:9b:44:
17:dc:c7:b2:90:10:7e:5b:af:c2:ce:56:f4:33:9a:e7:ed:b0:
8e:3c:36:e1:19:78:65:68:d5:6d:0b:06:51:97:70:1d:e8:16:
84:c6:ee:92:6e:15:a1:6d:70:3d:f3:a2:33:0f:b8:78:5f:57:
90:c2:05:2a:95:75:09:68:1b:73:6d:35:02:4f:d4:f5:9f:ab:
40:e1:df:b0:d8:15:28:73:35:95:21:08:81:ff:c4:eb:80:41:
33:25:a2:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 21:56:40 2025 by rpki-client