Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
File: rKbwaDzHS63SOoFAw4XxyBziTfc.mft (raw, json)
Hash identifier: 8ZPblpuNMkwhkFA1X3H6V5kKtFSShH12TpXNY3GAs6M=
Subject key identifier: 5C:B6:63:5D:37:99:36:ED:E8:A9:FA:35:EF:B7:2D:49:32:CD:E0:F4
Authority key identifier: AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
Certificate issuer: /CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Certificate serial: 0196BFDC7D402EAE5E7D8A73D5D7192D04BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
Manifest number: 0BDE
Signing time: Sun 11 May 2025 15:00:20 +0000
Manifest this update: Sun 11 May 2025 15:00:20 +0000
Manifest next update: Mon 12 May 2025 15:00:20 +0000
Files and hashes: 1: 0vFnPnyD0rk0NBq-vHcuUjmsih4.roa (hash: 8C+9WOepMdgxD+Xcj7Wjy9LCISmYrp2hucRDb6Vj6WM=)
2: rKbwaDzHS63SOoFAw4XxyBziTfc.crl (hash: 6hjoWRbZ6YKKO51PFw66ynBskuP/66UFy/L2AAAXCFk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 15:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:dc:7d:40:2e:ae:5e:7d:8a:73:d5:d7:19:2d:04:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Validity
Not Before: May 11 15:00:20 2025 GMT
Not After : May 12 15:00:20 2025 GMT
Subject: CN=5cb6635d379936ede8a9fa35efb72d4932cde0f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:75:65:4a:40:6c:62:88:39:dd:2b:4d:37:03:
0b:95:00:26:75:93:60:a7:78:fb:22:d0:e8:b3:1e:
56:45:58:88:c0:cb:4f:99:c4:81:a7:43:ce:1f:80:
d9:aa:95:cd:17:35:4d:1c:da:d3:e6:5f:5d:f9:a2:
3d:72:38:60:ce:c7:84:5b:6d:ed:05:aa:63:6e:90:
c4:5b:b7:79:cd:20:82:0e:5a:4d:21:c1:72:ec:cb:
f1:7b:d7:5d:8c:df:67:1f:51:bd:de:ef:a1:f7:43:
bd:53:9b:0d:34:98:2d:92:de:45:4f:9c:f3:a3:8c:
33:c4:22:36:f7:8e:bd:fb:7b:25:d1:2b:2b:fc:63:
b3:29:46:30:4d:9e:c6:16:f8:78:b9:f4:2d:3a:b0:
25:8b:be:72:6d:84:b4:a0:06:98:d1:32:02:4b:81:
9c:ad:1f:ca:cd:c4:80:55:76:b6:50:e4:e3:6a:5a:
08:92:a1:19:c7:cc:2b:6f:66:1b:6f:de:5c:dc:33:
26:59:99:0f:cc:e5:f2:ec:13:9f:64:90:c1:51:37:
f8:16:b6:3c:fe:60:1b:e8:16:cb:3c:a8:78:0e:fc:
59:9a:25:ff:f1:51:f0:1b:d2:aa:89:66:28:70:5a:
29:67:df:cd:ed:30:b2:42:e6:51:9a:b4:da:e1:d3:
b1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:B6:63:5D:37:99:36:ED:E8:A9:FA:35:EF:B7:2D:49:32:CD:E0:F4
X509v3 Authority Key Identifier:
keyid:AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:87:30:ed:a4:ab:1d:a1:93:ce:bb:65:3a:e2:d5:50:8d:86:
46:ea:ba:86:6e:df:2c:94:58:ed:28:a0:bd:3b:07:42:51:96:
ed:0e:35:7a:21:ec:84:af:60:2e:b2:61:a5:3b:e5:c8:8c:79:
1b:94:76:83:fe:14:06:9e:f2:a7:cc:d9:8a:b2:e3:9f:8b:85:
b2:c3:81:db:47:08:1d:09:95:df:7c:6f:17:88:3f:ad:47:38:
1c:a8:b2:c9:00:c1:44:9e:22:66:0b:d2:85:c8:5d:4d:c0:6e:
c3:8b:50:cc:1d:a4:69:09:c8:b5:a6:11:62:86:e8:1e:75:ad:
42:a3:10:a9:c4:80:bc:d6:72:e8:ae:84:3a:df:0b:12:ca:22:
f9:64:76:09:a7:21:d9:9e:b9:b5:5f:35:14:d9:77:17:83:35:
ab:f6:4f:fa:3a:58:4e:70:2b:2e:c1:19:f1:72:9f:3f:ae:ab:
8b:7d:57:b9:e4:20:b2:d4:94:de:1b:80:2f:62:4f:81:51:2a:
0e:09:69:22:47:45:b1:52:3b:69:c7:6a:b5:92:59:6b:ba:17:
1d:0e:00:c4:d7:af:70:5c:aa:f9:96:b8:ec:fc:21:aa:b3:34:
d3:ed:6a:70:99:ad:6b:c3:17:8d:66:76:9f:ea:71:63:fd:d3:
15:dc:2c:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 21:27:32 2025 by rpki-client