Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
File: byDBquA8J08ClCjuoKRCQgjU8-0.mft (raw, json)
Hash identifier: 2POFqwWSjYoDqJaBCn6G+R3NaUP/upWYskaNI2e25u8=
Subject key identifier: A1:49:5D:20:BC:01:78:89:76:30:DC:E2:F6:08:A8:24:7A:80:A8:3C
Authority key identifier: 6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED
Certificate issuer: /CN=6f20c1aae03c274f029428eea0a4424208d4f3ed
Certificate serial: 0196CA971E866802A8BC03FB6828D5DD50B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
Manifest number: 153C
Signing time: Tue 13 May 2025 17:00:23 +0000
Manifest this update: Tue 13 May 2025 17:00:23 +0000
Manifest next update: Wed 14 May 2025 17:00:23 +0000
Files and hashes: 1: QR-XfIkw00mD51XnwCvsG-9T89w.roa (hash: a0XDBbD/tQURYMLpVooHaNMf9NXfcD/rGt0gapo+gwA=)
2: byDBquA8J08ClCjuoKRCQgjU8-0.crl (hash: aZ5oJhTqC7mewBEb5c4e7kCPwQnaouMK+79jg9G8uDA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 17:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ca:97:1e:86:68:02:a8:bc:03:fb:68:28:d5:dd:50:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f20c1aae03c274f029428eea0a4424208d4f3ed
Validity
Not Before: May 13 17:00:23 2025 GMT
Not After : May 14 17:00:23 2025 GMT
Subject: CN=a1495d20bc0178897630dce2f608a8247a80a83c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6a:8f:98:ee:9e:5d:88:fa:37:60:58:1c:52:
8e:56:56:1f:31:ff:37:d5:58:f7:a1:e8:88:2f:5a:
6b:c0:4c:82:27:7c:20:4d:91:35:e5:52:2c:43:a5:
1b:bd:eb:ec:b5:e0:7d:8d:6b:53:1f:0e:9b:2c:e7:
eb:8f:61:b5:6e:27:85:5b:e7:c8:4c:9f:0b:f1:56:
de:a2:e1:05:67:b5:c8:c6:7b:b1:6e:fd:7d:94:7d:
0c:bc:a3:c9:a6:4e:38:a6:8d:f6:45:a1:aa:6f:90:
78:0b:e1:19:98:9e:ce:ed:de:3b:00:96:86:2f:71:
12:fc:21:ee:62:20:1a:40:fe:fd:56:d9:37:dc:a4:
78:f4:2b:6e:4f:68:b9:9c:88:4a:08:b9:01:a3:89:
23:9c:fa:57:98:1d:1a:b4:f1:ff:9c:3c:bf:0b:2a:
38:25:f2:63:3e:59:1a:4e:02:1c:bb:b9:2d:fd:67:
61:e0:a4:d4:9b:73:0e:8f:ff:32:e9:c4:3c:45:51:
5d:ce:0e:ce:a2:b0:d2:ed:b0:c0:f3:50:ad:4b:df:
b3:08:c3:2a:d8:15:25:06:ca:f1:84:31:d2:20:58:
0a:4d:fc:cc:34:3d:c1:19:13:a2:bc:93:6e:20:70:
3f:dd:b2:3e:af:92:7d:13:34:d2:22:a6:c0:97:50:
06:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:49:5D:20:BC:01:78:89:76:30:DC:E2:F6:08:A8:24:7A:80:A8:3C
X509v3 Authority Key Identifier:
keyid:6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:bb:e5:be:46:65:65:e9:93:e5:99:2d:d6:68:0e:a3:a9:ee:
1e:8a:d0:99:81:1a:d8:7a:cc:79:e7:1a:7e:99:2d:90:8d:c4:
f1:3f:31:f7:9f:5a:41:4e:f1:0c:15:34:22:ce:67:16:cd:fa:
f8:c4:6c:9d:ad:98:c0:6d:73:e7:ee:09:d3:45:7f:6e:3f:30:
fc:58:40:9a:f2:da:87:88:c5:ce:dc:d0:14:83:d6:79:f7:7d:
e2:c9:84:85:ae:04:da:c8:3a:c4:40:c2:55:b9:17:37:36:da:
86:a8:27:6e:3f:31:ab:cb:f6:af:17:75:04:5a:5f:ba:da:a3:
4e:49:0b:c3:ba:76:48:6b:90:cc:a6:af:0f:ae:b3:87:72:eb:
5d:74:c8:cd:1b:ef:08:a6:3e:4e:45:f3:6d:da:e1:05:dc:01:
50:88:8f:2b:38:36:5d:e4:b4:43:f0:7f:cf:b3:46:42:96:1d:
e1:7f:63:a0:a3:59:c7:d7:43:aa:ae:22:4e:e0:90:92:18:c1:
81:5c:1d:62:30:99:6f:b3:a6:fd:50:6d:a8:32:16:5d:6a:c5:
d6:57:9b:c9:b2:4a:d5:17:7a:b6:0c:d5:3f:0f:4e:64:bd:9e:
d9:d5:e7:da:88:7f:b1:bb:9d:61:ee:5d:6c:fb:89:ad:3c:ee:
41:94:c0:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 02:41:24 2025 by rpki-client