Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
File: u0OX5un46iWRVggDysuzI5Ytn64.mft (raw, json)
Hash identifier: vty+R89phQWhz+xSqW08ujLr2eDbRC9UAS4m0IWnRGE=
Subject key identifier: 8F:FD:FB:6A:C8:40:A8:C1:F0:14:C1:78:3A:CB:38:BA:25:CC:D5:F5
Authority key identifier: BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
Certificate issuer: /CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Certificate serial: 0196D0D11BA69DFBA210BA049FF6135D42CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
Manifest number: 0F7E
Signing time: Wed 14 May 2025 22:01:27 +0000
Manifest this update: Wed 14 May 2025 22:01:27 +0000
Manifest next update: Thu 15 May 2025 22:01:27 +0000
Files and hashes: 1: u0OX5un46iWRVggDysuzI5Ytn64.crl (hash: D40o0MImyYPD55G6Yz0fhRP1HXearWuWj/YgOjhwuxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 17:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d0:d1:1b:a6:9d:fb:a2:10:ba:04:9f:f6:13:5d:42:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Validity
Not Before: May 14 22:01:27 2025 GMT
Not After : May 15 22:01:27 2025 GMT
Subject: CN=8ffdfb6ac840a8c1f014c1783acb38ba25ccd5f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:08:2c:f2:9a:a0:e2:3c:92:81:3e:a6:54:61:
e1:a0:a4:37:36:a6:6e:78:a4:43:9d:25:c5:53:24:
41:1e:88:a8:81:67:de:3c:8c:6b:2a:6d:11:2d:31:
8a:a4:75:2e:e0:22:75:fe:13:aa:bb:a1:9c:31:5c:
11:83:16:e9:f2:44:f4:da:7c:d9:fb:8b:15:c5:47:
a0:22:8b:72:cf:26:2d:fc:0d:09:ad:ba:65:ff:97:
3b:22:29:c2:5e:f3:d9:c9:73:2e:95:6c:ec:e2:35:
f2:a1:04:3e:84:44:ac:d8:82:65:3b:d1:ea:19:a8:
9f:b7:ac:a0:42:9d:22:e2:97:5a:08:ee:47:5d:79:
2b:f2:b1:52:1e:84:72:f2:75:95:fb:bc:ea:fb:96:
c1:bb:64:89:cb:e9:4e:9f:08:d7:f2:28:e3:0f:74:
78:63:ad:bc:69:e1:29:1f:58:fa:55:58:af:e9:d7:
a1:8c:e2:ef:be:12:f5:64:9e:2d:1b:a3:da:48:ae:
8d:ee:43:4b:c4:af:3f:8c:84:e0:78:07:dc:21:4d:
f1:a5:ec:ec:0f:f5:2e:9b:ec:a8:ce:64:ae:f8:26:
7b:dc:e7:90:64:ed:55:f5:4d:1b:1b:f5:b9:99:ef:
0c:aa:97:f1:ee:26:af:03:54:f4:a0:3d:76:ec:09:
c7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:FD:FB:6A:C8:40:A8:C1:F0:14:C1:78:3A:CB:38:BA:25:CC:D5:F5
X509v3 Authority Key Identifier:
keyid:BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:47:dc:56:69:1d:2d:b9:86:9d:13:4f:a5:d0:21:88:6f:b5:
82:3e:63:57:fd:9f:03:9d:0a:cd:4f:0c:c4:54:27:23:c2:78:
26:06:fe:7e:b3:19:15:97:2d:c0:f4:81:59:49:0f:65:52:06:
61:75:cd:7d:9d:02:c3:2b:ea:24:3f:7b:f2:5a:bf:92:cf:57:
94:75:89:43:85:ab:d5:8d:6b:fa:64:27:77:bf:24:7e:1a:11:
cc:b3:72:b2:2d:ee:9d:66:9f:61:96:9c:ee:04:0e:0c:b4:ef:
ee:fc:54:c0:a6:11:ff:6f:f5:a5:13:e9:32:0c:e1:46:32:4a:
9b:68:82:50:24:d7:8d:5c:9b:43:9c:ca:77:33:bf:94:dd:5a:
df:b9:b3:0c:c7:cd:9a:7b:63:b3:c4:6f:6a:eb:87:8e:a5:84:
1d:8d:a4:d2:2a:54:36:7b:60:a5:67:a7:15:0f:f1:7e:09:70:
1f:d1:48:5a:57:19:fb:4c:b5:ef:37:69:27:68:ae:f6:18:9b:
ca:ba:cf:b1:15:6d:7e:ee:19:35:ec:ee:3f:1b:98:f5:ff:53:
88:0f:d6:5b:eb:e0:91:46:58:ee:27:2c:73:6f:ea:69:a0:f9:
ac:31:8a:44:27:04:8c:16:4d:e4:39:e1:ad:e5:cd:9a:cd:6b:
fc:a3:0d:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 01:12:21 2025 by rpki-client