Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
File: d53x3kOsymHuwDTOomi0ZUzBXKw.mft (raw, json)
Hash identifier: 7QvNQg2XbnetON7HoNjDybnAlPQFlCT2OzODpJaoA1Y=
Subject key identifier: 67:03:70:76:8A:09:8C:5B:E9:19:29:E7:9C:56:81:1E:9E:1C:76:80
Authority key identifier: 77:9D:F1:DE:43:AC:CA:61:EE:C0:34:CE:A2:68:B4:65:4C:C1:5C:AC
Certificate issuer: /CN=779df1de43acca61eec034cea268b4654cc15cac
Certificate serial: 0196B1453DCE896E901F5A570138C00326B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
Manifest number: 152F
Signing time: Thu 08 May 2025 19:00:27 +0000
Manifest this update: Thu 08 May 2025 19:00:27 +0000
Manifest next update: Fri 09 May 2025 19:00:27 +0000
Files and hashes: 1: 0vZUeITqxhjYTZ09-IZPJQyJrFs.roa (hash: XWy8JIsvHPb13TWVq0G62lkPYB9FumkdweR7BRskWwI=)
2: d53x3kOsymHuwDTOomi0ZUzBXKw.crl (hash: gnb9fhD1zDi7cdpao3TMgLmM1nFSSJFRslX5CUgxOws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b1:45:3d:ce:89:6e:90:1f:5a:57:01:38:c0:03:26:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779df1de43acca61eec034cea268b4654cc15cac
Validity
Not Before: May 8 19:00:27 2025 GMT
Not After : May 9 19:00:27 2025 GMT
Subject: CN=670370768a098c5be91929e79c56811e9e1c7680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:73:e8:05:e7:b8:4e:ae:d2:e7:5b:67:36:58:
ef:a9:80:2a:21:bf:5f:3d:0a:8f:f7:0e:1b:5a:ec:
aa:af:45:a7:72:99:a4:f5:c1:bc:83:eb:31:10:29:
a6:11:2f:cd:54:b8:94:60:98:24:ac:d8:28:b4:b7:
ab:f0:76:f8:91:6a:ab:ae:59:86:ea:5a:56:ea:6a:
bc:5d:e2:b8:65:6a:50:3e:9a:b4:6e:69:2b:7f:13:
f4:05:05:45:20:73:5b:a7:3b:0d:b0:f8:fb:9f:85:
95:38:4d:7e:c0:0c:3c:a3:11:24:54:56:fe:64:b7:
9b:c8:3b:8c:05:72:f8:85:1b:81:44:50:8c:2b:3d:
7c:5c:c4:ab:3b:c6:cb:e0:73:3f:74:f4:8c:24:63:
56:fe:d2:01:5a:91:f7:99:79:59:2c:17:dd:8f:c3:
ba:ae:7f:58:3c:a1:d1:bc:34:68:2e:29:c2:9c:b0:
80:2a:50:05:c3:b7:dc:28:65:5f:c0:82:c1:44:33:
83:e9:9c:48:d7:82:36:d7:ec:cc:ea:d1:14:64:49:
f4:a2:ca:ee:fd:f8:35:af:d9:29:a3:b5:ae:61:d0:
0b:bc:3a:d8:dc:58:c5:f5:f1:77:76:65:e9:97:3a:
46:26:ad:c8:46:df:4e:82:d7:e3:21:ff:fb:92:dc:
9a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:03:70:76:8A:09:8C:5B:E9:19:29:E7:9C:56:81:1E:9E:1C:76:80
X509v3 Authority Key Identifier:
keyid:77:9D:F1:DE:43:AC:CA:61:EE:C0:34:CE:A2:68:B4:65:4C:C1:5C:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:60:83:18:5f:70:38:9c:c6:7b:9d:42:df:b9:13:72:55:10:
39:64:a0:12:d6:e4:cf:7b:22:3c:cc:e5:41:15:c2:4e:00:e2:
d4:22:f0:a7:b4:7b:be:76:38:9d:72:f2:c3:f5:12:76:39:8f:
5e:a7:b9:45:0d:9a:8e:4f:f6:cd:4e:6a:63:ad:b2:64:c9:9c:
a3:d4:ae:65:c3:d6:5a:8f:61:50:95:81:44:6b:0f:0d:4e:b2:
cb:bd:99:fe:c1:3d:7c:c7:bd:fe:c4:e3:3f:73:52:de:d4:49:
76:6c:a3:fc:c1:4c:e4:3c:59:61:13:14:00:ac:dd:fd:eb:eb:
55:cf:49:ba:17:3b:a8:77:87:8b:9f:df:3b:17:fb:b7:05:a4:
a2:0b:aa:d1:b8:86:f1:32:8c:66:0e:18:de:25:5a:a5:9b:02:
72:1f:c5:40:29:9a:4a:ff:c5:85:d2:0c:0c:1b:17:0f:52:dc:
0d:36:41:4c:3c:24:c4:1f:b3:ed:58:8f:e4:d5:0a:fa:1f:ab:
6c:49:08:35:ad:b6:2a:11:f8:33:97:5c:1f:ee:a9:04:e9:af:
45:c7:c0:15:fe:06:f9:48:6a:8a:cc:e5:02:aa:03:9b:c0:64:
28:f7:1c:a0:a5:51:c4:42:f3:47:2e:e7:79:21:56:b7:5a:51:
a8:36:bf:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 02:54:23 2025 by rpki-client