Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
File: 37H24AFTpJGGEbFLawP2gS7YikM.mft (raw, json)
Hash identifier: Q7/dCoDGMaHzTi91S19lXLmYWz+gPAqKL78my201g4w=
Subject key identifier: BA:BF:C7:80:3B:51:A9:2E:1B:4E:BA:23:FE:CE:3C:42:A5:08:35:70
Authority key identifier: DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
Certificate issuer: /CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Certificate serial: 0196BA7FB0096A18407B494BDAF8DA327034
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
Manifest number: 0E3D
Signing time: Sat 10 May 2025 14:00:52 +0000
Manifest this update: Sat 10 May 2025 14:00:52 +0000
Manifest next update: Sun 11 May 2025 14:00:52 +0000
Files and hashes: 1: 37H24AFTpJGGEbFLawP2gS7YikM.crl (hash: bfp4uOz+DcIcKjyT6wRxrCOZ+bOhEpkdtpDMEVG2anY=)
2: BTmp1b2H10lDEyqaD6QbLg-QUfA.roa (hash: N5JJaG9nV6D42/n2t32zZB6XXWBTeaXuJO0OLEH8EXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:7f:b0:09:6a:18:40:7b:49:4b:da:f8:da:32:70:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Validity
Not Before: May 10 14:00:52 2025 GMT
Not After : May 11 14:00:52 2025 GMT
Subject: CN=babfc7803b51a92e1b4eba23fece3c42a5083570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d5:7b:cd:3d:b3:84:6e:b3:96:4c:94:81:ac:
df:83:8a:7c:2e:e9:85:79:e8:d9:3b:c5:7d:99:0c:
fb:1e:95:22:51:c8:a3:87:86:d5:9e:ac:72:c7:41:
da:ae:2e:24:f2:54:51:a9:61:f0:c9:f8:46:9d:aa:
fc:cb:c6:76:da:fc:de:a0:93:ac:cc:dc:3b:0b:55:
b0:bd:ef:c0:c9:3f:1d:45:69:fb:54:7b:f5:7b:25:
b9:e7:fd:1a:27:69:62:3a:ac:f7:75:d8:27:4c:77:
bf:36:97:c4:0e:33:31:2d:19:fd:f8:9e:6f:ac:94:
c4:ca:65:63:72:54:fe:41:16:71:16:3b:52:86:7a:
62:4f:6f:8d:df:c7:ed:fe:36:ae:78:31:16:75:78:
af:e0:7c:45:8a:c6:3e:c2:28:33:7a:ca:fc:68:7a:
93:fe:93:a3:75:51:f5:f0:8c:b2:58:ba:85:23:08:
63:df:c1:8b:1d:c4:ec:ca:75:94:c5:9e:6d:51:e0:
7b:b8:92:f5:cd:f5:c3:55:a3:90:71:f8:3b:72:1a:
0b:75:dc:6e:e1:51:5d:4b:a3:14:42:5e:48:fc:87:
2e:d2:9b:e8:cf:e6:66:2e:5b:45:ff:26:20:c2:71:
a9:51:e6:b5:61:17:ca:76:56:78:e6:ca:3a:59:af:
34:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:BF:C7:80:3B:51:A9:2E:1B:4E:BA:23:FE:CE:3C:42:A5:08:35:70
X509v3 Authority Key Identifier:
keyid:DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:ae:4e:c5:9e:bb:d6:01:32:9a:d7:f4:eb:4f:74:e1:75:f0:
93:76:31:07:11:be:29:f6:cd:7a:cf:3f:be:29:22:c1:4f:2e:
74:cf:57:d5:84:27:a3:4d:9d:fd:f1:f1:63:7f:71:6a:3b:d5:
b7:1c:02:ef:8d:19:a2:cd:75:2d:fb:77:3e:f2:0b:77:93:2c:
3f:7c:0e:7b:51:bf:99:67:7c:9c:ec:d1:8c:bd:4a:00:fe:14:
82:37:24:74:63:0f:41:2c:37:41:eb:b9:24:35:63:6e:0b:06:
59:58:da:62:7d:83:a6:fa:fb:07:d5:45:53:c4:9c:ad:df:85:
58:00:8d:f7:35:c7:b5:f0:54:b5:87:9f:6c:bc:04:b7:0d:f6:
ea:28:5c:1e:1c:81:0f:cd:ab:6a:f2:bc:bf:69:63:96:d7:b0:
cc:d7:31:27:0e:df:ae:1f:ff:4c:df:15:bf:82:86:4c:9a:7f:
f4:59:c5:1d:86:9a:e5:5c:5a:78:cd:a3:b5:98:68:11:d0:99:
cd:b8:6d:e3:22:f1:08:b4:0b:f2:1c:60:b7:2c:ce:1e:3f:ab:
72:c7:d0:a8:cc:9d:b3:09:da:ee:70:78:70:f7:2b:82:2a:4a:
0b:4f:6f:38:26:ea:08:72:d4:b1:75:d4:b3:6e:57:7e:01:d3:
b8:87:cb:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 16:39:25 2025 by rpki-client