Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
File: 0bS-sKan4ShKv0OFNIz0hhALn4A.mft (raw, json)
Hash identifier: J/q4wr6Q/uL7LUmG+f7bck7Fz4VgC9kU8RbmVnQDufY=
Subject key identifier: 2E:F5:58:D9:45:76:1A:B6:80:A9:23:89:C5:60:A8:AE:7D:E9:70:33
Authority key identifier: D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
Certificate issuer: /CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Certificate serial: 0196AFC5051E219F0056A78966B6E2D884AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
Manifest number: 0D2D
Signing time: Thu 08 May 2025 12:00:46 +0000
Manifest this update: Thu 08 May 2025 12:00:46 +0000
Manifest next update: Fri 09 May 2025 12:00:46 +0000
Files and hashes: 1: 0bS-sKan4ShKv0OFNIz0hhALn4A.crl (hash: CsWpBFcZIjs0EhyWKqxvyibp6a8L4sqJzGAE1yOYveU=)
2: c4vhQn8zi1dmhfuFlEzS457ekqY.roa (hash: K0d7LR2NOcizL+J6fo8ZUFPUHzj1ReR3yGovArPpqzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 12:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:c5:05:1e:21:9f:00:56:a7:89:66:b6:e2:d8:84:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Validity
Not Before: May 8 12:00:46 2025 GMT
Not After : May 9 12:00:46 2025 GMT
Subject: CN=2ef558d945761ab680a92389c560a8ae7de97033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ae:81:f6:4f:0a:ec:a1:b9:5b:d9:83:7c:0a:
8b:67:b9:6a:6a:40:a2:06:d7:49:3d:61:3a:0b:97:
9a:32:ce:d7:ac:c3:c3:be:40:78:08:c6:64:f8:2e:
29:c9:7d:9b:3e:88:14:dc:9d:13:9a:ec:b9:60:f0:
fc:9a:bc:fb:ab:5a:8c:8d:81:de:7a:89:2c:bf:65:
84:b6:bc:ba:88:a3:ba:f8:42:04:c2:6f:ff:cb:a5:
bf:a4:66:1a:1e:2a:a2:58:84:de:fd:74:16:5a:45:
f6:ed:d3:d5:8d:b6:31:ee:5c:e2:38:bc:5c:38:91:
cb:9d:4e:4c:9e:41:8a:a7:75:e2:e8:62:d3:04:74:
7a:1e:6e:88:34:ce:62:c0:5f:9f:12:f4:1c:dd:bf:
9f:48:14:65:ef:f6:63:e4:62:f9:d8:13:8e:5e:88:
d0:25:91:d6:92:42:bc:25:e7:8f:d5:ef:1c:e8:3d:
9e:ea:fb:13:52:2d:8e:40:57:a8:9f:41:90:f9:0b:
1e:90:fc:83:91:cd:fe:a5:3c:bf:b0:dc:34:82:c6:
43:0d:8d:8b:a6:5c:41:0d:19:55:66:ae:3f:33:a4:
fb:32:34:6e:2e:2f:b7:9b:d6:82:97:5c:f3:a6:6a:
1e:ae:d2:2c:88:69:18:27:39:11:9b:30:fd:1f:c5:
d7:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F5:58:D9:45:76:1A:B6:80:A9:23:89:C5:60:A8:AE:7D:E9:70:33
X509v3 Authority Key Identifier:
keyid:D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:b8:93:1b:79:69:89:e3:16:2d:e3:99:28:1d:9f:a2:9b:af:
10:c1:59:6c:cc:35:22:29:45:70:59:51:d1:18:86:7e:5e:e4:
2c:25:06:3f:9d:97:24:ee:4b:81:30:66:52:65:08:5e:f3:78:
f6:07:b8:78:af:9d:7b:1e:fd:af:06:8b:ac:43:99:d1:93:d5:
ec:17:0f:e8:cb:f1:51:8b:a7:a0:59:6e:53:69:0c:f5:95:3e:
82:15:57:da:c0:ec:80:27:7c:32:fc:4f:33:58:bb:a1:82:5f:
29:55:56:1c:56:8a:8c:ee:a8:28:e2:8d:f5:9c:4c:b1:d1:cf:
3d:24:8b:70:f5:8c:f3:2b:cd:d9:b4:00:e5:45:d2:0f:52:83:
62:a2:5a:4a:60:0d:40:90:86:89:67:9d:16:d0:9c:c3:da:43:
85:c9:64:24:97:63:96:ce:5f:b0:2e:f4:54:6e:3a:fa:7a:13:
89:dc:1d:98:50:41:5d:f8:34:a7:50:3e:e6:17:0d:2e:60:69:
8f:4f:b3:c6:3f:b7:69:f2:ff:78:bd:bb:07:fd:c2:c9:1c:ec:
fa:a4:35:75:11:39:73:20:de:3f:48:78:ca:e4:bd:1a:b3:c9:
2e:b1:74:c6:bf:cf:7a:84:66:80:c0:10:bd:c2:12:a7:4c:9e:
9f:84:ea:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 20:13:19 2025 by rpki-client