Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json)
Hash identifier: PnuNZjX6jhzVN3DQPNd778hOSnR6ycbNhRcxV4iaCPs=
Subject key identifier: 55:77:F3:01:FE:71:0F:C1:95:AF:B4:36:4A:84:93:EF:9D:DA:A2:49
Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Certificate serial: 0196C57110BB20500E8869761EC3FE22374F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
Manifest number: 153A
Signing time: Mon 12 May 2025 17:00:43 +0000
Manifest this update: Mon 12 May 2025 17:00:43 +0000
Manifest next update: Tue 13 May 2025 17:00:43 +0000
Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: B0VXiA4hcQwOQUKb9J7qnJuEFbxj2tAnlEgmDI50V6c=)
2: bRo1FpRQdGW3rrEgf9LP2ZyYMbs.roa (hash: ZwgslFPNqU25lgzTk3XOIv2Nozx6fjcmPWKTGmYvfPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:71:10:bb:20:50:0e:88:69:76:1e:c3:fe:22:37:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Validity
Not Before: May 12 17:00:43 2025 GMT
Not After : May 13 17:00:43 2025 GMT
Subject: CN=5577f301fe710fc195afb4364a8493ef9ddaa249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a9:a3:a6:fd:05:c6:ee:c2:f5:6d:16:59:e8:
32:f8:6c:cf:b4:c9:80:6f:f5:13:a5:fc:e3:50:a9:
56:3e:77:c5:93:04:94:46:24:f2:f0:0e:d0:a2:78:
61:00:d2:d9:40:b7:98:17:3a:ef:a5:a4:84:6d:53:
81:b1:f8:87:b8:5f:1e:d8:62:57:84:1a:f4:ce:10:
41:3d:eb:a5:f9:a6:5f:db:cc:62:31:4f:07:b2:29:
31:12:79:f7:f8:39:70:40:77:07:ec:c4:77:9f:ca:
e2:0b:e1:12:ca:ba:7a:3a:56:04:d7:65:2e:bc:57:
b5:85:3b:bc:f0:9c:5d:d6:e0:18:09:64:2f:1b:6b:
f3:e4:1d:4d:cb:6d:a0:81:60:70:d5:62:9b:f7:e3:
e6:41:a7:4d:e2:3e:43:1d:55:b6:b2:9e:ad:41:3b:
43:62:f8:0e:dd:b8:34:a2:3b:f5:5e:76:62:ab:ec:
f9:73:3b:e2:b3:30:81:d7:73:c4:4c:38:e0:07:a2:
e9:46:9c:4e:7a:0b:0d:59:85:e5:77:f5:a9:1c:9b:
bb:63:d5:1c:c3:80:44:05:e8:95:dd:0f:b4:8d:4c:
e4:91:f7:ce:b5:b0:9b:b5:33:4b:2a:c0:33:0d:98:
6a:6d:60:b9:98:cf:1e:e4:5a:17:3d:fd:8b:7e:26:
bd:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:77:F3:01:FE:71:0F:C1:95:AF:B4:36:4A:84:93:EF:9D:DA:A2:49
X509v3 Authority Key Identifier:
keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:a5:dc:e5:02:91:55:5e:31:b3:f2:5c:19:cf:c4:cc:f4:35:
58:16:b8:3a:83:64:18:b6:c9:da:ca:36:35:97:9e:63:6c:39:
f3:74:ea:10:e2:41:13:21:88:f6:d5:5d:5e:ef:6d:21:d1:b3:
3e:0c:0f:1e:92:d4:83:87:c3:fd:ba:26:07:0c:b1:33:ef:6b:
9a:2c:fb:b0:a2:e4:89:2e:fd:07:ef:c0:52:52:c2:cd:89:3b:
6e:6b:46:82:a4:df:00:6a:e6:eb:55:47:2c:fb:83:1e:17:27:
47:9d:e2:27:8e:d9:e8:f3:da:5b:d0:ae:aa:83:a4:70:6a:f3:
14:cb:be:b2:00:20:e0:c9:a8:5c:3f:b2:61:5f:45:46:d4:78:
b5:17:34:10:28:b6:bd:4d:3f:10:47:5b:d1:ad:cc:ad:d2:18:
ec:a3:78:94:5c:ea:59:80:e3:63:e2:27:34:0c:20:79:37:ce:
f0:0a:b5:65:4d:8b:55:7f:b3:3b:4c:02:97:d2:f7:a6:3c:e2:
9c:92:5a:28:f4:2c:f6:ee:42:34:a1:f0:97:91:98:1c:59:fe:
5d:0e:59:fa:fd:bb:9e:66:0a:d8:5a:4b:af:20:1c:36:2b:ee:
a5:e3:aa:86:d5:f2:17:b9:ad:a3:2e:df:3e:8b:cc:a1:15:70:
7f:15:13:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 18:57:28 2025 by rpki-client