Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json)
Hash identifier: WJDLiINKjzzMx9yO7T8vXuyxlgj3H5BkMft2+6fyP1U=
Subject key identifier: 3C:7E:F6:F0:91:89:6C:87:BA:03:08:91:A9:47:51:B6:F8:84:7B:5C
Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Certificate serial: 0196B5C6E53BC64C9397000D74A20115FEA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
Manifest number: 137D
Signing time: Fri 09 May 2025 16:00:32 +0000
Manifest this update: Fri 09 May 2025 16:00:32 +0000
Manifest next update: Sat 10 May 2025 16:00:32 +0000
Files and hashes: 1: hDoqXFR8UibPRuqFY2xn-m_-15I.roa (hash: qknu8HOpVZZ1hKraF3WMV/fgLgKt1U80KJN/d09ixdI=)
2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: 5MO7i/bkfaKFbpVeWvnOyDb/eVSrZjUsmJHlDRXwEgs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 16:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:c6:e5:3b:c6:4c:93:97:00:0d:74:a2:01:15:fe:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Validity
Not Before: May 9 16:00:32 2025 GMT
Not After : May 10 16:00:32 2025 GMT
Subject: CN=3c7ef6f091896c87ba030891a94751b6f8847b5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:fd:4f:ab:b3:2d:51:35:42:09:74:ec:3f:3a:
b7:e9:38:f9:f5:92:f7:62:21:02:5d:b5:25:ca:eb:
41:34:f4:d1:80:3d:ba:3a:83:5d:24:e3:95:64:fe:
c9:95:ef:47:d3:22:d9:67:16:cc:a6:9d:9c:dd:cf:
59:02:61:bf:07:17:2e:09:e3:9b:27:05:90:c7:0c:
d1:82:b5:7f:93:30:10:ea:bd:2d:49:81:65:53:8b:
8c:89:98:68:c3:2d:37:46:e5:8a:d5:45:17:15:9c:
22:ec:29:7d:77:7d:3a:3b:aa:44:59:a8:1d:1d:8a:
e0:08:12:ad:3f:35:8b:1b:6b:07:cb:18:25:b3:8f:
fb:d5:d2:3d:a2:06:2c:49:55:e4:36:85:de:c1:78:
51:67:e2:c9:3e:81:77:7f:5e:0d:1a:92:bd:95:5f:
da:08:de:e2:f1:f2:83:5b:fa:8f:bc:f9:8d:97:07:
c8:a6:a6:77:f0:f1:e5:40:ab:82:2c:80:c2:46:70:
fe:6f:5b:70:ad:96:46:d6:60:2d:e8:23:d3:aa:54:
8f:b7:6f:4f:ab:9e:59:09:bc:e3:1d:66:a3:d5:86:
4c:6c:06:14:24:3b:65:30:27:13:f5:91:97:43:dc:
e9:8d:27:45:9c:c0:15:ec:ef:52:31:33:69:c9:a7:
53:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:7E:F6:F0:91:89:6C:87:BA:03:08:91:A9:47:51:B6:F8:84:7B:5C
X509v3 Authority Key Identifier:
keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:2b:41:5c:0f:7a:eb:81:e0:82:f8:7f:9c:26:66:c5:ab:45:
9a:78:31:32:33:00:31:bc:17:4c:e6:17:32:88:b5:5f:8a:2a:
3c:71:d8:a5:17:cb:31:9a:86:40:03:de:6e:6c:78:a0:d4:f1:
53:e1:6d:66:0e:39:0b:83:9d:25:c9:7e:df:21:1f:6f:3f:fa:
7f:15:3e:f7:19:9b:ac:75:f3:c4:b2:43:b3:cf:aa:23:91:3f:
51:92:af:ab:d6:ec:63:0c:ae:38:1f:09:15:a4:cd:7d:33:9c:
22:fb:df:a4:60:03:69:50:ad:59:f2:cf:a4:d3:7f:0e:a9:25:
6b:57:ef:bd:17:2f:a4:42:0e:b4:ac:00:63:e0:fb:42:08:90:
c9:ee:84:18:c7:3c:c5:e2:55:0c:05:40:ea:ec:8e:39:4f:7e:
c8:6f:e6:e5:d1:33:0c:1c:85:26:f7:b5:32:53:ca:ad:fd:67:
83:eb:07:fd:52:8c:ce:0a:bf:5e:70:0b:79:51:5b:6b:d5:08:
63:b3:41:04:86:ec:bc:7f:c0:b8:5d:e6:87:1b:b5:5d:d9:41:
6b:56:09:0c:5c:26:28:2f:1f:88:a2:71:25:61:94:d9:0c:d8:
70:99:57:79:94:b9:25:27:ef:08:4f:f8:a0:28:56:df:28:af:
fd:d2:62:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 21:59:55 2025 by rpki-client