Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
File: 9H0DN3zBCPRAkSa5oMIBYyQhxko.mft (raw, json)
Hash identifier: ztFEvqQkQ36DZ6xP4RgHPRBqcAZpGothiA69hCMWaew=
Subject key identifier: 70:B8:EC:5D:42:1C:C7:8B:44:48:6B:E6:A2:E1:86:D3:5B:59:67:20
Authority key identifier: F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A
Certificate issuer: /CN=f47d03377cc108f4409126b9a0c201632421c64a
Certificate serial: 0196AFFC4688AE5E9D0E800D79FF1E85F3C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
Manifest number: 1528
Signing time: Thu 08 May 2025 13:01:08 +0000
Manifest this update: Thu 08 May 2025 13:01:08 +0000
Manifest next update: Fri 09 May 2025 13:01:08 +0000
Files and hashes: 1: 9H0DN3zBCPRAkSa5oMIBYyQhxko.crl (hash: C44zB4OtWeEsbRBev7j4JqmBJaEQTDG4EZiEiKH/HYo=)
2: yhhMqOayivlP0HqWgBqkxI1f14U.roa (hash: w/NNRo63VlTAmPeepIG4fNxKMWjZVte8F0Xs65Wc7u4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 13:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:fc:46:88:ae:5e:9d:0e:80:0d:79:ff:1e:85:f3:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f47d03377cc108f4409126b9a0c201632421c64a
Validity
Not Before: May 8 13:01:08 2025 GMT
Not After : May 9 13:01:08 2025 GMT
Subject: CN=70b8ec5d421cc78b44486be6a2e186d35b596720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ef:d2:49:c6:15:09:6a:7b:87:9c:b3:6a:34:
5e:51:06:7e:95:35:cc:c2:04:4b:0e:fc:34:70:c1:
dd:ee:76:d7:dd:f8:1a:0e:23:e3:13:b3:9f:cd:78:
c3:b9:41:59:b6:2f:0a:bb:3c:14:c4:37:a3:26:b8:
d2:ad:a9:21:e6:45:7e:1c:53:1d:0b:30:8c:9d:29:
d0:8f:06:09:7d:de:11:4b:bd:65:14:cb:25:86:dd:
65:a1:9d:ba:d0:86:28:31:5d:8e:20:eb:52:77:7c:
71:19:db:13:d8:56:35:2f:a9:64:3c:ca:93:fb:0e:
da:28:12:88:ca:24:48:b0:3e:70:8b:49:e5:b7:3d:
7e:69:f3:a2:08:e6:d4:8a:33:3f:35:fa:8e:56:a1:
f5:4d:82:f9:bd:ac:92:50:d5:c4:3b:f3:34:d9:2e:
3f:80:0f:04:17:70:6b:4f:63:2d:c5:40:bd:2c:6d:
c9:96:b5:a9:87:c6:7c:70:75:84:1b:d7:fd:73:85:
e0:ec:3e:42:b5:38:b8:49:46:0f:e0:15:1c:0e:32:
e2:a1:8e:df:72:80:80:51:5f:ae:3b:a4:46:04:45:
9b:89:2f:f6:2d:11:db:ad:aa:17:ee:66:89:09:f7:
86:04:56:dc:68:1a:c8:f4:02:ea:31:1c:ac:83:cd:
7f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B8:EC:5D:42:1C:C7:8B:44:48:6B:E6:A2:E1:86:D3:5B:59:67:20
X509v3 Authority Key Identifier:
keyid:F4:7D:03:37:7C:C1:08:F4:40:91:26:B9:A0:C2:01:63:24:21:C6:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9H0DN3zBCPRAkSa5oMIBYyQhxko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8bc469-f7e3-40c4-afc8-e1d0fdd5bff5/1/9H0DN3zBCPRAkSa5oMIBYyQhxko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:2a:d6:d1:99:6a:ad:ef:cd:3e:75:94:1c:ce:ac:7d:e2:e9:
c0:8d:4e:e3:69:67:70:e8:ae:e3:34:e8:b3:4b:dd:e7:c0:a0:
a1:3a:d1:28:30:0b:04:60:90:2e:b0:08:5a:c7:c2:fb:90:2d:
a3:2c:9c:9a:52:9c:39:f1:92:29:f8:90:e7:f5:ec:86:10:e8:
74:0a:be:8c:9d:63:cb:cb:f8:10:c9:ef:07:87:9b:a9:4e:65:
81:86:31:68:79:2b:78:1d:98:0b:cb:95:cb:4c:a5:36:21:69:
28:48:f2:c5:c6:92:b1:f3:4d:89:a1:f4:33:03:7e:a3:fc:fe:
fe:fa:b8:6a:d2:99:c3:2b:35:5f:31:81:6d:1e:80:06:f1:3d:
68:83:c8:52:3c:03:74:98:bd:fe:d4:ca:8f:27:96:51:d4:45:
b6:af:fe:9a:94:bf:c1:cb:49:23:d0:fb:c3:18:7e:8a:45:07:
ee:b1:2d:78:f1:03:d2:ee:c6:bf:0c:72:f1:a7:d8:57:ab:9c:
51:82:02:10:08:bb:6c:85:c5:01:c3:36:71:a8:fa:14:4b:77:
64:07:74:28:08:ba:93:59:dc:fc:f3:a6:2a:a9:42:e2:dc:88:
ea:7d:f8:8e:f7:dc:71:ba:6d:c2:6a:51:3b:9e:30:3f:2c:39:
44:b9:76:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 19:02:04 2025 by rpki-client