Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: zziJ8ItlYpLBZx6kepNfl5BRIawZYZrbCzn9q5aMTFw=
Subject key identifier: AB:A3:17:AE:F2:EA:44:81:D1:BE:53:02:92:42:8D:82:5A:45:EF:94
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 0196C38260B1744467513181E109D358B82E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 018A
Signing time: Mon 12 May 2025 08:00:23 +0000
Manifest this update: Mon 12 May 2025 08:00:23 +0000
Manifest next update: Tue 13 May 2025 08:00:23 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: Z18LEftGWybIZl7XvZNQfNHY2KTmnTiwpYWc7gSdXe0=)
2: LL8JcAdqtBuww975zCJ3NT8wbIo.roa (hash: OazqFiciLO+01js5WnVLTxcyLBf+8JShIpJGoJGbyKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:82:60:b1:74:44:67:51:31:81:e1:09:d3:58:b8:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: May 12 08:00:23 2025 GMT
Not After : May 13 08:00:23 2025 GMT
Subject: CN=aba317aef2ea4481d1be530292428d825a45ef94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:db:00:2b:9f:b7:3c:81:12:a4:78:ad:68:e9:
d1:d7:96:3d:17:9e:a9:c0:bb:c2:ab:8d:cb:0c:fc:
2a:22:d8:c3:ab:7e:b0:12:62:ef:e1:ab:11:8b:f0:
a5:7c:d1:b0:89:84:c7:67:d9:ac:9a:5c:7d:c6:9d:
86:7d:37:d0:9b:1c:46:dc:b1:27:7a:43:0f:51:09:
04:51:4e:b7:0a:93:12:3c:f1:a3:55:b4:49:05:19:
41:4a:d8:c9:8d:5c:6d:09:2a:3f:16:8c:ba:ef:5c:
a4:5e:8f:88:cc:25:d6:38:60:2c:5a:5b:9d:6d:de:
f4:78:c2:5e:a8:87:6c:4d:f7:93:31:b8:03:64:e7:
07:b9:c7:37:ba:c0:93:02:e5:42:d3:89:55:0f:bf:
02:53:3f:e0:3f:77:05:b0:c4:65:7f:dc:93:40:d5:
04:03:ae:e1:2e:72:75:ff:ee:81:c0:02:b6:2a:eb:
51:83:c7:5f:00:da:fa:cb:27:ca:42:ac:3a:c6:71:
e4:3c:29:e1:63:94:f9:49:5d:67:97:44:78:ff:61:
50:87:aa:a4:fc:3e:b6:04:15:20:09:97:5f:8b:df:
03:c6:e6:5e:d8:41:0c:7c:c5:7f:38:a1:4f:a4:50:
7c:0a:82:3e:01:77:4f:18:cc:32:26:cf:12:b6:04:
41:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A3:17:AE:F2:EA:44:81:D1:BE:53:02:92:42:8D:82:5A:45:EF:94
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:1e:95:8d:d7:83:d4:b2:76:50:e5:c1:d4:c4:48:0d:87:63:
8f:4b:9d:39:ab:7c:38:d7:16:d8:a8:32:33:51:c3:a4:27:63:
1d:f3:96:ee:58:87:b3:69:e6:e6:fc:b0:60:c1:bf:ce:ff:fb:
92:ee:42:9f:f6:65:ff:2a:3e:c3:d0:2e:37:b1:d4:59:4d:e2:
02:66:3e:96:e4:eb:17:75:a6:a3:fe:22:3a:7a:aa:61:1d:a9:
ed:f9:63:8a:b0:68:2b:16:84:35:8a:b8:8f:12:21:79:1f:c6:
db:8d:b6:e7:8c:08:2d:c6:71:62:c2:11:c6:15:16:ba:b8:88:
75:68:3f:1d:d6:cf:ae:e2:12:8b:be:b1:1d:64:92:a5:3a:d8:
e7:ca:c7:53:19:a8:72:36:ad:7b:43:08:b8:b1:59:18:af:bd:
f6:ab:e1:79:65:f1:4e:cf:83:fd:c0:0b:9c:20:60:7a:9a:ab:
e1:ca:02:e8:c8:3f:d8:a7:69:bf:f4:1e:90:78:69:81:05:d9:
6b:92:d5:1d:52:07:9c:a7:ed:6b:4a:b8:1f:1c:88:cd:6e:69:
93:63:2e:92:c4:bb:13:34:01:06:31:04:bc:a5:7e:1b:f8:ea:
11:25:36:c5:7f:2b:c3:8c:d0:b5:7f:ff:fa:2e:76:27:2e:46:
de:ca:c5:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:37:35 2025 by rpki-client