Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
File: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft (raw, json)
Hash identifier: fofsni8uZAGvnw690/6OlmvoAXhxEhAngyT0Bv8kKgw=
Subject key identifier: 75:0D:B0:DC:1A:81:5E:F7:FE:7B:64:33:B6:80:30:80:03:0E:30:DC
Authority key identifier: D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
Certificate issuer: /CN=d217978586bff3a6777d55a9a9635841516d43b4
Certificate serial: 0196C0817F6FFE9CBED66E1C7BD0871F6FEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
Manifest number: 0AC9
Signing time: Sun 11 May 2025 18:00:34 +0000
Manifest this update: Sun 11 May 2025 18:00:34 +0000
Manifest next update: Mon 12 May 2025 18:00:34 +0000
Files and hashes: 1: 0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl (hash: zDvp4OIQOq9/UQwXV0hflXC93+q59LqYyvFB7avfIaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:81:7f:6f:fe:9c:be:d6:6e:1c:7b:d0:87:1f:6f:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217978586bff3a6777d55a9a9635841516d43b4
Validity
Not Before: May 11 18:00:34 2025 GMT
Not After : May 12 18:00:34 2025 GMT
Subject: CN=750db0dc1a815ef7fe7b6433b6803080030e30dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:11:7e:65:cf:4d:d5:31:4a:12:b3:a0:89:67:
c8:ef:38:e8:ad:8b:73:98:29:3a:7d:b5:5b:04:8b:
f1:02:65:63:2f:9f:6a:1b:2a:a5:7d:4d:6f:7b:fc:
14:64:24:35:9b:da:9a:c0:ef:2b:0a:7f:23:df:af:
4d:27:49:11:9e:7d:d2:79:70:26:af:4c:b8:63:21:
b2:e4:fd:fc:3c:d9:19:8e:33:74:4a:70:71:4c:56:
c8:ab:29:17:62:b4:69:e7:a4:02:c0:97:ab:7d:5c:
13:68:99:52:0f:4d:67:47:e3:56:9e:fb:1d:0e:38:
2c:78:0f:40:c3:eb:10:f6:85:40:3e:7c:08:f9:76:
6b:6c:89:b6:d5:49:c8:55:37:6e:53:49:60:34:c5:
d4:7a:a8:2d:e1:59:af:4c:e9:0f:ec:40:1e:93:ae:
ce:e0:3a:1d:e3:1b:b5:bb:84:2a:41:7f:6c:d3:ba:
1a:ed:03:d4:8f:b3:cf:a1:45:ab:e5:9a:22:80:f3:
33:97:08:24:c9:ac:56:0a:fc:06:eb:eb:33:bf:63:
4f:bb:6c:60:f1:6d:45:14:9d:2f:9d:0b:7d:0c:02:
50:5b:e2:54:27:f2:ed:fb:75:76:ea:0a:17:2d:50:
e7:c3:40:5e:65:11:e2:8e:73:4f:90:7a:19:5c:d7:
a4:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0D:B0:DC:1A:81:5E:F7:FE:7B:64:33:B6:80:30:80:03:0E:30:DC
X509v3 Authority Key Identifier:
keyid:D2:17:97:85:86:BF:F3:A6:77:7D:55:A9:A9:63:58:41:51:6D:43:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/790a78-4a2d-4f16-880a-4ce4d3b197d8/1/0heXhYa_86Z3fVWpqWNYQVFtQ7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:ce:ef:de:e7:49:fc:75:1a:fe:9c:27:22:64:e9:49:d2:88:
9c:db:3f:5b:c9:da:a1:5f:df:e7:ef:80:9b:cf:e0:28:11:31:
92:72:bf:66:3f:7b:58:50:ad:fe:a4:7b:16:16:09:db:09:b0:
a1:ad:4c:b1:ba:88:3f:01:7e:f5:ce:af:a9:26:4a:e9:04:45:
18:98:c8:90:11:9c:7d:be:00:ac:92:86:9e:9d:ca:56:ea:a7:
95:2a:b5:f1:54:0f:e5:6c:0a:60:5b:48:96:45:ac:70:88:32:
fb:1f:b3:7c:60:50:27:d4:6c:43:6f:ef:39:3a:d3:9c:4f:82:
6f:cb:d7:bc:a8:0c:db:56:d1:c0:43:c6:80:11:2e:3a:85:db:
cc:76:59:c8:ba:fb:e5:c2:58:b4:18:f9:70:ba:b9:44:45:03:
82:70:75:c5:1b:f1:7d:f6:94:fa:2a:69:e1:ee:b6:f6:d8:5c:
51:28:ae:de:01:f4:65:c0:db:c2:22:2d:b9:0c:98:dd:f1:70:
05:bc:3e:d2:f8:e5:f0:b4:58:5b:60:04:2b:52:ed:ae:f1:d1:
36:27:2b:01:6b:97:12:91:06:2a:37:3e:2c:e6:0e:32:e9:e9:
1e:b5:79:a2:d8:0e:45:e0:c7:49:bd:b4:75:bd:6a:34:17:f7:
06:00:2e:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 19:59:32 2025 by rpki-client