Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
File: md6y4fhaF9okDPyBbZcsheQR5iQ.mft (raw, json)
Hash identifier: zyuDnJhNZb47mItIDvO0QWUkzBWKG/wUOQ2lZCBwD7Q=
Subject key identifier: EB:A7:CE:72:C5:5A:CF:CF:AE:C6:04:67:3E:EC:C1:55:5C:E7:04:AC
Authority key identifier: 99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
Certificate issuer: /CN=99deb2e1f85a17da240cfc816d972c85e411e624
Certificate serial: 0196AB0CAAE1CD5FE706F21644FF0F6A00CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
Manifest number: 152C
Signing time: Wed 07 May 2025 14:00:56 +0000
Manifest this update: Wed 07 May 2025 14:00:56 +0000
Manifest next update: Thu 08 May 2025 14:00:56 +0000
Files and hashes: 1: G9mF37Fb91r0jC33-YcK9r4IAmk.roa (hash: MaEVR8Nlqavgaakwb2T4C4sUXoGT+mVODKAXw14Vucs=)
2: md6y4fhaF9okDPyBbZcsheQR5iQ.crl (hash: XDz8cepk1jlVhhD8kkruG9RVViJbkRw/cXT4X7b4tz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 13:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ab:0c:aa:e1:cd:5f:e7:06:f2:16:44:ff:0f:6a:00:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99deb2e1f85a17da240cfc816d972c85e411e624
Validity
Not Before: May 7 14:00:56 2025 GMT
Not After : May 8 14:00:56 2025 GMT
Subject: CN=eba7ce72c55acfcfaec604673eecc1555ce704ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e7:13:cd:e1:49:0b:f2:14:b9:b1:59:4e:25:
9b:d1:09:31:61:08:d3:18:5d:f3:4e:9d:30:49:f0:
9c:8f:63:38:47:2d:d3:30:cf:0c:9f:29:ad:1f:8f:
72:89:d5:8a:63:f3:4d:5f:a1:78:fa:0a:cd:b0:d4:
18:fb:1d:9c:fd:e2:6c:15:24:5e:a1:ed:19:e5:4f:
78:30:ac:ff:8c:cf:fc:a7:04:77:fa:8b:8a:c1:10:
3c:fc:3b:59:19:6a:52:fc:b7:be:14:b6:48:02:6f:
cc:6f:22:ba:75:85:12:51:2e:99:b0:33:2b:f0:23:
17:d2:3b:36:ee:b5:01:9e:e8:c6:30:ec:3c:f6:c8:
fe:b4:07:b5:3c:62:6a:cb:a8:f1:bc:35:d2:34:29:
32:f8:fb:70:32:0f:29:a7:2f:51:62:34:8c:ea:10:
af:c2:59:fb:67:93:c9:77:5e:7d:c1:51:51:89:55:
60:7e:46:43:cf:23:91:78:5c:4f:fd:ef:e3:e0:c6:
14:67:28:a2:34:32:69:11:a2:a9:f3:c9:04:ef:04:
7d:23:71:77:19:b3:fe:88:2a:61:1d:d4:0a:b2:d0:
9a:eb:32:88:ed:16:aa:40:fe:aa:83:1a:b7:8f:98:
92:03:5f:43:ae:cf:84:22:64:5e:cd:37:90:0b:ad:
ef:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:A7:CE:72:C5:5A:CF:CF:AE:C6:04:67:3E:EC:C1:55:5C:E7:04:AC
X509v3 Authority Key Identifier:
keyid:99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:a4:07:ed:54:64:b8:3c:28:d2:51:97:cb:ab:31:43:9e:0d:
0f:95:07:f1:cb:69:a7:58:a2:1d:2a:1f:a9:bc:63:95:b2:07:
5c:bc:86:e5:b9:bf:58:46:a3:55:0e:5b:9b:e8:85:54:04:fc:
5d:fd:ac:95:4d:d9:c1:e5:e0:04:5f:fc:82:80:49:7e:c8:02:
b8:a2:61:85:a9:c3:5b:5d:31:bf:8c:6f:81:86:a4:63:e0:ac:
f3:11:80:b4:f1:cd:05:55:66:18:87:98:7f:fc:7c:e8:b8:69:
ae:42:5f:be:3f:60:92:3c:7e:09:12:b7:b7:55:f9:75:b1:60:
50:d5:9d:c5:2c:b8:7e:82:d8:30:ef:b4:c7:c0:64:eb:77:93:
d3:9a:77:d8:f2:76:50:2d:98:fe:2c:f8:9c:17:d5:15:63:28:
3b:f3:0f:de:57:49:4e:18:01:a2:fb:c6:e6:d6:26:9f:5c:44:
54:78:7e:44:51:e6:3e:42:2e:a6:d8:9d:63:c9:6b:77:e1:5c:
60:d4:25:dd:ce:6d:f2:8a:91:e5:3b:fa:7d:d4:62:dc:f5:9f:
5a:31:af:d4:11:a8:74:db:60:d4:f4:ac:7c:8f:a4:09:fd:45:
0d:96:5a:49:85:4a:bf:e7:85:e7:54:2b:94:a3:42:1a:7c:76:
3a:26:88:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 22:46:47 2025 by rpki-client