Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
File: 9aUA85diOrHVYASDVGf8zz0KOw8.mft (raw, json)
Hash identifier: 4FOcN64QQAeApqhxcICwgoU/zzp5DR1Ay52tG7o0NMg=
Subject key identifier: 8A:16:39:6F:A6:A9:98:CE:5B:07:7B:82:94:3C:08:64:F9:41:7C:65
Authority key identifier: F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
Certificate issuer: /CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Certificate serial: 0196C15D3A1B6E7E00B29FD623BE243CA010
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
Manifest number: 0BCC
Signing time: Sun 11 May 2025 22:00:34 +0000
Manifest this update: Sun 11 May 2025 22:00:34 +0000
Manifest next update: Mon 12 May 2025 22:00:34 +0000
Files and hashes: 1: 9aUA85diOrHVYASDVGf8zz0KOw8.crl (hash: X9F7nljVKh52eXFyLG+lg6KVFL2i+wQx+5iOQX/dGtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 22:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:5d:3a:1b:6e:7e:00:b2:9f:d6:23:be:24:3c:a0:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5a500f397623ab1d56004835467fccf3d0a3b0f
Validity
Not Before: May 11 22:00:34 2025 GMT
Not After : May 12 22:00:34 2025 GMT
Subject: CN=8a16396fa6a998ce5b077b82943c0864f9417c65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:06:82:b7:d2:3c:ed:dc:cb:88:ee:a6:4b:1c:
e7:b1:87:2d:48:77:5c:89:d6:e2:4a:c0:ce:bd:6c:
a5:f5:01:fd:18:ad:95:e0:b4:2f:59:5e:c6:28:62:
da:aa:ff:c7:40:dc:8f:6f:8d:85:43:21:a8:72:41:
1a:a5:92:2b:06:61:4f:4f:f8:71:4a:40:a8:19:67:
e7:9a:22:9a:d4:80:65:23:10:c8:e1:59:f3:61:0f:
15:92:aa:c1:e0:01:04:3c:32:6d:22:47:21:03:23:
a1:51:b0:e5:1e:9a:25:3a:d7:6b:7a:8a:7e:33:59:
d9:1f:1e:6d:d5:92:bd:5b:d1:9b:52:42:da:98:f1:
ea:7b:fe:3e:79:73:34:08:8f:f4:82:c8:dc:26:44:
9f:05:00:eb:31:cb:60:c8:31:0a:ee:a1:e6:a6:d6:
e3:e9:0c:68:a6:0b:13:85:dc:37:f4:38:d9:ba:23:
b2:6f:85:98:dd:7a:a9:3b:b5:3d:1d:a2:36:71:ee:
b0:46:bc:d8:d6:3b:6b:44:a3:a9:70:4a:10:b6:9d:
d6:d8:4e:de:95:12:9a:05:77:5f:29:fd:68:4c:13:
39:a2:aa:59:43:1b:40:7a:5b:f7:96:52:41:90:dd:
12:05:14:0d:b4:c0:b4:b3:fd:7c:5e:54:8e:b4:19:
5a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:16:39:6F:A6:A9:98:CE:5B:07:7B:82:94:3C:08:64:F9:41:7C:65
X509v3 Authority Key Identifier:
keyid:F5:A5:00:F3:97:62:3A:B1:D5:60:04:83:54:67:FC:CF:3D:0A:3B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9aUA85diOrHVYASDVGf8zz0KOw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a760f3-0062-4374-8290-e76fd9c9dc8c/1/9aUA85diOrHVYASDVGf8zz0KOw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:5e:9b:8c:5c:59:49:1d:39:d6:08:00:51:2e:ce:ec:90:7e:
13:ca:0b:95:31:46:70:d9:81:e4:60:57:a9:00:75:3d:16:ef:
7b:97:63:a0:15:cc:9d:7d:a0:28:da:89:a8:c2:e0:4f:01:11:
d4:a3:8e:2b:bc:73:13:2c:42:93:f7:80:e3:70:ac:ec:61:56:
8d:f2:e4:15:fb:47:40:4f:cc:85:84:c0:8b:68:81:89:c5:a9:
49:eb:8d:25:85:f5:ac:8a:f2:52:ac:72:e1:54:cd:f5:33:24:
76:92:85:3a:db:3f:a1:64:fb:74:45:26:99:92:e4:cc:d2:c9:
5a:39:be:a5:03:f2:15:26:5e:31:ef:ce:35:d8:22:de:cd:c8:
ff:2a:23:fa:db:1c:56:27:ff:7b:7c:de:25:83:c8:e0:99:e3:
ca:1a:f7:06:3c:3e:01:4e:bb:0a:19:2a:6f:6b:67:cb:39:26:
ac:1f:85:1b:6d:81:b3:5d:89:1b:44:5c:53:f2:58:06:25:09:
42:29:c2:aa:e4:11:41:7b:b2:15:89:d4:32:bd:c1:18:34:a8:
12:b4:e1:f5:7f:e6:ce:b6:fa:a2:39:d8:63:2d:ff:87:57:4c:
d1:0f:8f:9b:df:3c:f5:55:29:ab:75:a5:bb:3e:16:21:51:f9:
d7:95:03:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 03:54:20 2025 by rpki-client