Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: r2otnIlSOVpcDcemX/byZL/W7wFtOa1QnmnAMKbSwDg=
Subject key identifier: FC:99:4B:40:F1:B6:A4:D4:9B:30:03:9D:70:61:94:37:F4:06:7C:E5
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 0196BC6E6C1147F1EFC7AA560B4D49309151
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 49
Signing time: Sat 10 May 2025 23:01:15 +0000
Manifest this update: Sat 10 May 2025 23:01:15 +0000
Manifest next update: Sun 11 May 2025 23:01:15 +0000
Files and hashes: 1: GdRMKH6WdmmVubPmURRtVnS8GV8.roa (hash: gQYTKVfews/6lfRAQlloM0LgEpj91iqOXwXozcwIpNc=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: MRi4o3KpAEcSv1ksxBMuoRe4a3iiIyrMI3xLNhy7Cbs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:6e:6c:11:47:f1:ef:c7:aa:56:0b:4d:49:30:91:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: May 10 23:01:15 2025 GMT
Not After : May 11 23:01:15 2025 GMT
Subject: CN=fc994b40f1b6a4d49b30039d70619437f4067ce5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:65:b4:2a:15:d9:05:97:65:51:4b:7e:7a:de:
c2:1e:c5:28:0f:06:43:5c:4c:31:4e:44:78:66:2c:
98:03:36:b5:9f:6a:5e:9f:9f:6f:17:4a:46:8b:ed:
f3:d4:a4:df:f7:3e:e8:09:52:e3:b3:28:3f:69:75:
77:18:b9:5e:0f:8d:3b:f7:3a:8e:4f:85:75:f1:f2:
24:5f:f2:2a:b0:ad:ea:a8:98:c6:e5:7a:62:d4:90:
b0:c6:27:8c:ab:b8:b4:64:dd:50:61:52:79:df:c6:
3f:64:1f:a5:e6:06:26:1f:ed:3e:3a:cc:32:21:0d:
35:1f:e2:67:0c:f8:26:e8:20:55:89:2d:84:14:11:
68:6e:d4:e8:bc:3e:e8:1a:fd:51:59:81:9f:44:27:
37:1b:4d:2e:33:a0:23:59:f3:55:65:5c:b0:42:c2:
4e:23:13:92:cb:50:67:d0:00:af:ac:48:01:f4:98:
6f:b8:6e:0b:4a:13:00:dc:cb:2f:57:6b:14:a6:2a:
0d:1e:02:56:99:b5:16:61:57:7a:92:63:37:34:84:
9d:0b:97:ae:ab:e5:e2:7c:c8:6c:88:c7:1d:0b:10:
3c:8f:5f:33:08:4d:45:ce:3d:c4:01:ae:c0:a6:6d:
5e:14:5e:20:45:a2:68:e3:c5:79:57:33:e2:6c:10:
ec:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:99:4B:40:F1:B6:A4:D4:9B:30:03:9D:70:61:94:37:F4:06:7C:E5
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:df:69:26:de:16:44:d4:2d:89:46:ef:9d:9c:11:b9:ad:40:
71:7d:6f:98:da:27:63:71:f4:e8:f8:a8:03:ff:17:45:05:b2:
0e:fc:29:1e:f9:79:97:cc:63:fa:31:fe:c6:66:b7:64:a6:61:
e8:e4:5c:47:3a:9d:41:72:6e:70:a7:41:b6:62:9a:c1:aa:eb:
dc:d5:95:4c:73:42:55:ea:c5:eb:bd:ef:67:ad:95:f0:63:3f:
05:56:12:79:c1:6a:bc:cd:e6:12:d8:4f:f9:04:e4:8a:e1:b7:
fb:fd:93:0c:c7:5a:a2:32:40:ee:04:6a:73:11:d2:7c:c8:5c:
7a:da:e1:22:77:55:6b:ca:e0:71:7d:d7:e6:5c:25:28:d1:d0:
a7:32:d8:04:55:27:0f:29:0d:7c:c7:c8:51:b7:e2:64:1d:c7:
d0:92:df:47:88:f7:28:4b:6f:76:a0:21:44:3a:32:48:e9:97:
13:64:44:0f:d3:6f:b1:f3:87:de:b6:67:5b:68:23:09:f5:a1:
6a:77:97:9d:72:b4:88:c9:cd:6f:41:f0:67:18:14:bb:16:8e:
5d:7e:fc:47:79:a5:98:98:38:d8:90:8c:90:b4:61:0a:54:f0:
e1:ab:1b:8a:de:f4:7d:76:03:70:97:ce:d0:b0:11:6c:fd:c5:
35:5e:66:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:45:59 2025 by rpki-client