Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8e3f7b-c78f-4663-bf1d-f5dbdf722f5d/1/r-o5b03jVdqNwHmh6IXgwzdezjI.mft
File: r-o5b03jVdqNwHmh6IXgwzdezjI.mft (raw, json)
Hash identifier: /na94oCcOyVYLiXeyB2CFwLnZawsPXGvStzW99at6QQ=
Subject key identifier: DF:3B:70:B6:40:DC:05:2B:4E:08:86:B9:2E:80:F4:7D:1E:CD:39:10
Authority key identifier: AF:EA:39:6F:4D:E3:55:DA:8D:C0:79:A1:E8:85:E0:C3:37:5E:CE:32
Certificate issuer: /CN=afea396f4de355da8dc079a1e885e0c3375ece32
Certificate serial: 0196BC37089409DF71B9AD1E5FEB0DFBE0C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r-o5b03jVdqNwHmh6IXgwzdezjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8e3f7b-c78f-4663-bf1d-f5dbdf722f5d/1/r-o5b03jVdqNwHmh6IXgwzdezjI.mft
Manifest number: 1533
Signing time: Sat 10 May 2025 22:00:45 +0000
Manifest this update: Sat 10 May 2025 22:00:45 +0000
Manifest next update: Sun 11 May 2025 22:00:45 +0000
Files and hashes: 1: acvvT5q-PVeUjsCLlPVuoTE00po.roa (hash: MQoBLU//Irn0dEBmlINyAJ8ehIRD+2s0D9hVDHRZB5A=)
2: r-o5b03jVdqNwHmh6IXgwzdezjI.crl (hash: cpQ9b2dmD1yTTgn0nQ5aNmseaa9SDtSggoMbN6+g5FY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/8e3f7b-c78f-4663-bf1d-f5dbdf722f5d/1/r-o5b03jVdqNwHmh6IXgwzdezjI.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/8e3f7b-c78f-4663-bf1d-f5dbdf722f5d/1/r-o5b03jVdqNwHmh6IXgwzdezjI.mft
rsync://rpki.ripe.net/repository/DEFAULT/r-o5b03jVdqNwHmh6IXgwzdezjI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:37:08:94:09:df:71:b9:ad:1e:5f:eb:0d:fb:e0:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afea396f4de355da8dc079a1e885e0c3375ece32
Validity
Not Before: May 10 22:00:45 2025 GMT
Not After : May 11 22:00:45 2025 GMT
Subject: CN=df3b70b640dc052b4e0886b92e80f47d1ecd3910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ff:ae:0e:8c:d4:ec:14:1b:f3:1f:12:53:d4:a0:
12:6b:49:e1:c4:a6:af:77:8f:e8:bc:ae:71:75:b4:
17:b6:0e:61:48:46:45:65:e9:bc:47:96:d7:b6:a7:
94:56:44:9d:cc:37:e7:ef:2b:3d:62:25:94:c6:be:
f7:d0:23:d5:e8:e7:7b:82:ac:8d:3e:43:6a:3d:93:
e9:36:65:84:00:5f:0e:0a:44:99:25:21:09:bb:81:
67:1a:b9:b2:68:46:d0:f4:e5:c6:86:ab:f8:55:b4:
cb:15:7e:04:8d:d5:34:7f:40:76:fd:b9:7d:6d:d6:
6e:3e:c8:13:24:bc:24:05:f7:0a:61:e5:8e:fc:6e:
86:b4:d2:d2:a7:59:48:93:a8:32:85:74:9d:b5:8f:
04:70:18:e0:ea:58:69:53:5d:56:bf:4d:17:5c:f1:
70:e9:0d:08:68:cb:c6:99:b9:e2:c9:c0:15:ba:39:
3e:95:a6:7c:82:15:65:1e:86:f0:84:9f:b1:80:59:
b2:c1:bf:bf:5e:a8:9b:3a:67:52:a8:76:e7:0f:73:
96:1a:ff:58:ca:41:28:cd:dd:c1:79:a6:f3:40:c8:
61:49:af:b3:80:03:d4:18:a8:73:42:c3:4d:8d:0a:
2e:d1:6b:6b:26:26:5b:c1:87:23:ac:01:c9:58:ad:
b3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:3B:70:B6:40:DC:05:2B:4E:08:86:B9:2E:80:F4:7D:1E:CD:39:10
X509v3 Authority Key Identifier:
keyid:AF:EA:39:6F:4D:E3:55:DA:8D:C0:79:A1:E8:85:E0:C3:37:5E:CE:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r-o5b03jVdqNwHmh6IXgwzdezjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8e3f7b-c78f-4663-bf1d-f5dbdf722f5d/1/r-o5b03jVdqNwHmh6IXgwzdezjI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8e3f7b-c78f-4663-bf1d-f5dbdf722f5d/1/r-o5b03jVdqNwHmh6IXgwzdezjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:0f:fb:99:ad:d1:d7:9f:b3:82:73:dd:8f:dc:f1:b3:73:0d:
f6:fd:31:d4:f6:b9:23:ba:a1:00:5d:d8:4b:68:09:01:81:a9:
5a:8b:ec:37:44:db:a0:50:e5:a2:98:fb:ef:1a:ba:69:f4:70:
b1:49:9f:21:c7:33:37:8f:0c:bb:6e:e8:67:47:47:2a:ea:96:
b3:c5:cf:e5:93:ed:6f:89:e3:da:3a:11:4b:d8:90:81:86:59:
eb:be:2a:45:c2:cf:0d:0d:97:4e:85:e3:ad:a6:1f:2e:d3:35:
8a:83:04:e4:a6:fd:b7:29:f9:ca:88:93:fa:a2:b9:72:6b:7d:
61:ef:af:67:a0:70:d3:4d:c1:95:16:60:25:b6:34:0e:66:50:
f2:b6:ca:af:76:84:be:91:d4:d3:dd:6b:60:99:62:be:db:7b:
a0:37:f4:1e:35:83:79:82:cc:d5:f0:45:41:5c:cb:5c:5e:4f:
d9:fd:44:0a:dc:18:0a:5c:52:05:52:f8:1d:91:25:2a:c6:51:
e5:63:9d:b5:5e:e9:74:0b:fd:f4:41:f7:c0:37:bf:3a:2a:08:
d3:fc:e2:ef:51:a1:0a:98:4c:2a:90:3a:46:79:78:38:11:aa:
9c:8d:b5:98:2b:58:9a:34:04:18:0f:2d:54:a0:cf:15:98:5e:
2e:11:b9:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 05:23:41 2025 by rpki-client