Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
File: 0c0c1HQkGQk2se35qYScPjBYfzo.mft (raw, json)
Hash identifier: S4It0SfhqOECAXTVU8xKcBLiMjjDwoK+cCvXX5v7Ccw=
Subject key identifier: 39:82:2C:48:A1:52:21:63:1E:66:10:09:40:8C:28:C4:3E:20:8A:DB
Authority key identifier: D1:CD:1C:D4:74:24:19:09:36:B1:ED:F9:A9:84:9C:3E:30:58:7F:3A
Certificate issuer: /CN=d1cd1cd47424190936b1edf9a9849c3e30587f3a
Certificate serial: 01969E9AE0B6C5269155FA75D846CF086922
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
Manifest number: 0C84
Signing time: Mon 05 May 2025 04:01:12 +0000
Manifest this update: Mon 05 May 2025 04:01:12 +0000
Manifest next update: Tue 06 May 2025 04:01:12 +0000
Files and hashes: 1: 0c0c1HQkGQk2se35qYScPjBYfzo.crl (hash: PG+LsHy55GU97HGDZW+WCn+fualY6jah7Q6bEXSrAEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:9a:e0:b6:c5:26:91:55:fa:75:d8:46:cf:08:69:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1cd1cd47424190936b1edf9a9849c3e30587f3a
Validity
Not Before: May 5 04:01:12 2025 GMT
Not After : May 6 04:01:12 2025 GMT
Subject: CN=39822c48a15221631e661009408c28c43e208adb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:80:fd:68:73:27:e5:f2:f3:dc:cf:2b:2e:4f:
c8:55:3f:e6:cb:0d:57:65:42:4a:55:63:cb:a5:ed:
25:d4:15:6b:59:29:c1:0e:ce:4e:a8:3a:95:0c:2e:
a1:a4:54:61:b7:aa:6a:ae:d6:e1:0c:9f:7a:bf:60:
13:de:8d:8a:f0:84:eb:f6:b9:e5:d8:1b:25:a1:9c:
8e:71:6a:69:4b:81:f1:ff:7a:8c:b1:74:f8:e1:d8:
24:7c:99:1e:50:6e:21:5f:27:28:7a:b8:00:aa:c7:
a2:df:16:84:d6:e6:62:ed:0a:cb:3f:a5:d3:45:4a:
e7:29:c7:f7:b3:fa:e0:5e:ab:43:6d:3b:3b:90:ef:
6e:8e:1c:93:9e:76:1b:02:88:76:78:bb:f8:3d:56:
80:fc:fa:37:dc:08:d5:12:4c:56:93:6f:5f:fb:71:
08:e7:7f:f9:d6:6d:b2:ee:b4:72:32:73:2f:c3:ef:
58:c5:09:2b:98:86:42:cd:be:1b:00:81:f7:eb:67:
c0:ba:bd:ed:60:9a:fa:d9:21:09:1d:3c:3f:fc:f5:
2d:ce:8e:b3:14:2c:23:c9:dc:c3:4c:31:35:42:92:
c2:a7:dd:f6:79:f3:d2:c1:44:02:d3:51:60:cf:28:
0a:dc:10:81:1b:ab:4a:ed:61:7b:02:98:b9:33:ab:
03:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:82:2C:48:A1:52:21:63:1E:66:10:09:40:8C:28:C4:3E:20:8A:DB
X509v3 Authority Key Identifier:
keyid:D1:CD:1C:D4:74:24:19:09:36:B1:ED:F9:A9:84:9C:3E:30:58:7F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:26:d5:63:d7:3b:73:8e:38:be:58:60:6f:25:75:27:ae:13:
f9:af:1e:cd:da:75:ab:b8:b6:4c:c8:ee:2e:88:f7:7d:fb:a7:
c4:09:98:98:be:30:bb:a1:de:58:c1:88:04:2f:e1:67:83:1b:
c7:7e:86:f5:c2:4f:7c:68:28:81:48:b9:1c:aa:ef:d3:95:b6:
ae:4a:f2:cf:92:af:fa:66:d4:db:19:b1:f5:b9:7b:2b:c7:9c:
d6:39:2c:72:bd:b7:61:9a:c7:f9:7e:3b:37:49:ca:34:3c:c7:
90:2f:d4:e6:7d:f2:0f:83:ea:cc:c4:68:39:d1:43:a5:4e:86:
57:27:d0:14:17:84:76:74:04:9f:99:d7:3f:ef:06:76:22:3f:
fd:93:78:7c:77:30:86:0b:b8:d1:ce:15:46:11:97:48:3a:97:
04:97:4b:5a:73:9b:dd:62:9f:3c:63:79:3a:77:45:9e:cd:e0:
7d:85:81:87:45:66:f6:27:88:03:6b:a2:4d:42:2c:9d:d3:24:
c3:71:7c:de:c9:be:e7:5d:38:21:e1:b2:b8:c4:2e:87:3d:be:
0a:97:a7:de:3e:0b:e2:b2:20:8d:a0:e0:1a:2d:44:c5:fa:1b:
27:bf:07:ff:dd:97:2f:84:e7:ce:37:28:29:8a:01:8d:7e:86:
7c:76:6b:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 08:11:15 2025 by rpki-client