Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
File: 0gXOrys2rZ_lGQaehrlONtLsS94.mft (raw, json)
Hash identifier: 6cBqrJPmvfsH67JCe2WnjAOL1HlDPhjRqVlUCVHG1nc=
Subject key identifier: D8:CB:B7:6B:76:3B:14:C1:C8:DE:2F:6F:4D:84:66:90:B8:F1:8F:7D
Authority key identifier: D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE
Certificate issuer: /CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde
Certificate serial: 0196CB7396D3EE67E72211472C348365CDB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
Manifest number: 086B
Signing time: Tue 13 May 2025 21:01:12 +0000
Manifest this update: Tue 13 May 2025 21:01:12 +0000
Manifest next update: Wed 14 May 2025 21:01:12 +0000
Files and hashes: 1: 0gXOrys2rZ_lGQaehrlONtLsS94.crl (hash: uCZYVZ21hESztzdbfTNZsPp3xBv6EH8SUCaTQFiFCLk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 21:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:73:96:d3:ee:67:e7:22:11:47:2c:34:83:65:cd:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d205ceaf2b36ad9fe519069e86b94e36d2ec4bde
Validity
Not Before: May 13 21:01:12 2025 GMT
Not After : May 14 21:01:12 2025 GMT
Subject: CN=d8cbb76b763b14c1c8de2f6f4d846690b8f18f7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b2:70:04:ab:75:38:aa:8b:14:45:d8:20:00:
1c:9f:22:15:83:2c:68:30:1b:90:e1:ee:e3:19:7b:
5e:cf:13:06:41:1b:a1:d7:01:56:69:f8:8c:5f:d4:
15:05:33:56:8d:e2:db:76:14:41:08:bb:91:2e:72:
d6:1e:40:87:ab:2b:ae:2a:71:9f:ae:2f:25:41:d9:
88:0c:bc:83:79:e4:6f:db:80:5d:d8:54:45:0f:20:
ed:93:47:c9:7d:60:68:dd:52:a4:b5:2c:ed:bc:7f:
9f:8f:bc:5d:8e:19:d6:55:7b:a1:c8:bc:3e:ad:15:
51:3e:f1:a8:8d:15:b1:07:6f:54:15:c0:cd:6a:ed:
67:4a:2a:39:35:a8:d2:1b:3f:e1:f0:5d:57:07:14:
ec:8f:74:fb:cd:e1:be:bf:84:26:43:38:0f:82:89:
8b:57:72:73:f0:69:e9:f3:f6:2d:98:76:97:1a:6a:
c1:86:2d:85:44:8c:4e:3a:31:8c:e1:60:c3:00:d5:
8d:6c:33:d5:85:36:d9:c5:b8:24:9e:03:08:a1:aa:
b9:6f:cf:83:94:84:97:5c:71:c5:ee:4b:ba:b7:3a:
ee:ef:67:39:71:bf:2b:d0:15:4a:ee:4c:bc:2c:4b:
34:98:3c:90:8f:0a:52:6b:f2:fd:84:29:bd:8e:6d:
bd:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:CB:B7:6B:76:3B:14:C1:C8:DE:2F:6F:4D:84:66:90:B8:F1:8F:7D
X509v3 Authority Key Identifier:
keyid:D2:05:CE:AF:2B:36:AD:9F:E5:19:06:9E:86:B9:4E:36:D2:EC:4B:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0gXOrys2rZ_lGQaehrlONtLsS94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/7fa172-8e55-4711-8c75-18f8925c6665/1/0gXOrys2rZ_lGQaehrlONtLsS94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:ee:6a:03:4e:5a:df:58:c0:c3:1b:c1:e3:46:2a:4d:a5:14:
03:55:7f:74:80:c7:ab:9c:16:46:62:96:c3:90:bb:31:b8:87:
d7:79:b6:88:61:5d:3f:a0:3a:63:29:4d:e8:9b:a8:0f:0e:b0:
c8:73:c9:03:da:36:1e:14:80:42:8b:94:03:18:0d:66:4b:8e:
2a:de:b5:93:11:f2:4e:24:68:3d:0b:40:42:b2:55:db:eb:f8:
5e:f0:1b:39:a2:b6:13:7f:60:45:05:70:e7:6c:f2:7f:b8:aa:
53:2f:e4:0c:72:5e:b8:5b:d7:7f:56:85:99:b0:03:2a:60:2e:
c5:aa:d8:c4:d5:eb:bf:8a:2a:86:f9:f6:d5:7a:6f:00:6b:a3:
29:d5:25:ec:bb:4d:b6:17:64:fa:45:4d:c1:59:04:4c:03:b0:
d6:d4:a1:c9:19:c4:54:0a:dc:e5:5b:e9:37:b0:e2:6a:b8:1b:
2f:55:0c:46:8c:6d:0a:1f:d6:ad:ee:bd:6f:18:a8:9d:b2:fd:
1d:5d:a8:1c:a5:f9:94:6f:c4:f5:07:f4:2e:ca:1c:48:91:a1:
8e:ff:22:83:ff:47:21:29:0c:8c:f7:ac:6d:f2:f4:c5:bf:57:
7e:8c:37:ae:70:ad:03:26:79:e5:ca:4a:a6:f3:f1:1f:fe:fe:
cd:6a:3c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 01:28:20 2025 by rpki-client