Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
File: G2uUO5o9_2loAVFr6EcbxFiFZug.mft (raw, json)
Hash identifier: 1B6zrbxpiYoSoybNivZNdQfac0npVaTXy11lYArb8Ls=
Subject key identifier: B5:5A:9B:B8:41:47:5A:5D:A3:DC:9B:F3:39:16:F7:D2:0A:08:52:78
Authority key identifier: 1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8
Certificate issuer: /CN=1b6b943b9a3dff696801516be8471bc4588566e8
Certificate serial: 0196BC36BA70B0D0103A513AAE0388C4DE46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
Manifest number: 11D8
Signing time: Sat 10 May 2025 22:00:25 +0000
Manifest this update: Sat 10 May 2025 22:00:25 +0000
Manifest next update: Sun 11 May 2025 22:00:25 +0000
Files and hashes: 1: 1ISrUMvXtY8idtkbmSmcNCBmXOs.roa (hash: JdzcjRC1qPASLJAyKXCJZ2jvTuTxM21yeidKZ9A5IsQ=)
2: G2uUO5o9_2loAVFr6EcbxFiFZug.crl (hash: LMtzGzfhQpzyFVCDAmrWdbdOE+ocr1Z2EaYS7cZ2Nwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:36:ba:70:b0:d0:10:3a:51:3a:ae:03:88:c4:de:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b6b943b9a3dff696801516be8471bc4588566e8
Validity
Not Before: May 10 22:00:25 2025 GMT
Not After : May 11 22:00:25 2025 GMT
Subject: CN=b55a9bb841475a5da3dc9bf33916f7d20a085278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:4a:d9:7b:26:28:db:61:7c:69:5a:26:06:67:
48:66:7a:d0:b1:da:cf:f4:cb:40:70:95:90:94:15:
3c:2b:d8:41:c2:51:1c:e9:b5:68:5a:a9:ff:16:46:
a5:65:43:b2:dc:ba:d9:0e:b3:1a:33:17:55:14:19:
de:66:b4:ab:01:b3:da:f9:1d:0c:d8:17:31:43:08:
31:2f:d8:47:60:64:2d:38:55:09:f5:01:f2:f0:8f:
f1:a7:28:c4:eb:42:35:9a:dc:02:7f:26:ec:cc:8e:
85:0b:0b:70:f8:f0:ea:90:c6:b2:48:aa:78:07:79:
a0:4a:45:79:59:42:8f:26:ee:8b:5a:41:dc:2b:45:
93:a5:ab:d1:e7:4f:c0:34:e4:c5:f4:5d:62:9c:da:
cd:79:99:47:02:0e:36:5e:4a:9c:7c:18:53:d0:7f:
fd:6d:8b:74:03:c1:4c:8d:d3:af:67:b0:47:f1:1b:
d7:25:d2:78:14:bf:0b:ba:7b:6b:cb:9e:c1:66:5c:
fb:d5:c6:32:5b:a9:8f:8a:f9:33:0a:72:7e:f9:7f:
63:68:2c:a6:7f:08:98:1b:a4:6e:46:84:6c:d9:13:
b2:1a:d5:8d:fd:a8:df:9a:d1:c8:af:0a:18:ed:53:
49:9e:22:1c:28:18:43:d9:46:db:78:45:3f:c0:b0:
6f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:5A:9B:B8:41:47:5A:5D:A3:DC:9B:F3:39:16:F7:D2:0A:08:52:78
X509v3 Authority Key Identifier:
keyid:1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:9b:b8:fd:e4:b9:d7:1c:23:2e:8a:e3:7b:ef:fb:62:ba:46:
85:3a:59:6c:fd:17:40:62:d5:d6:09:05:2b:e1:9d:6d:8a:aa:
be:5b:54:22:d7:1f:e7:17:62:91:49:c0:6e:b0:f6:64:de:50:
a0:94:fd:bc:82:f2:dd:a1:f8:67:42:e1:69:3a:2c:91:1e:2c:
7f:db:cd:09:60:fb:37:85:a4:41:c5:70:2d:8d:83:bc:ff:ca:
1b:b7:49:95:6c:35:f8:1e:26:b2:49:6c:c3:0b:0c:44:e4:28:
4d:62:e3:4f:d5:5f:bd:84:2b:3c:27:65:a7:0f:a3:f8:55:94:
ae:1e:04:9e:b6:82:8d:e6:a6:73:a6:00:ef:d2:8d:91:12:1f:
0d:39:cd:9a:73:7d:e0:1c:e7:3a:e4:7c:11:4f:e5:25:0f:0c:
6a:7d:e3:a4:ab:96:31:be:8b:06:6a:33:7f:3b:fc:c0:58:ff:
0b:9a:28:61:65:f5:68:eb:ce:35:d8:e1:24:bc:40:be:b4:dc:
b9:78:ff:d0:e3:15:09:50:51:13:a2:9b:97:32:08:d5:13:33:
71:7d:41:e0:be:5c:a6:ab:93:7a:dc:13:39:91:f3:6e:de:ee:
49:44:d8:2e:72:29:f4:21:77:a0:ab:e8:6c:1a:6f:d2:37:fa:
f3:ee:75:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 01:48:44 2025 by rpki-client