Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
File: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft (raw, json)
Hash identifier: /KEEZromtMPkBd0oW5S1uCYGIHNPUNFGA4QfoEO6lUo=
Subject key identifier: 72:3B:97:F5:38:96:CF:DC:A6:13:72:B1:9B:BC:71:B9:82:52:68:ED
Authority key identifier: 0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
Certificate issuer: /CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Certificate serial: 0196C0EF43016031EF780409AF71EC6306F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
Manifest number: 0C99
Signing time: Sun 11 May 2025 20:00:27 +0000
Manifest this update: Sun 11 May 2025 20:00:27 +0000
Manifest next update: Mon 12 May 2025 20:00:27 +0000
Files and hashes: 1: DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl (hash: N6Z5pkxZb+nqrqhXI/cNpJC5ZnE6gD3yJ3SA75R/NbQ=)
2: zo9Y2aPXtg0v5rw18Mi_WOQc36Y.roa (hash: v9STSvD6P0pmUA0gxCp1HPZofea00hykboqUh1BCCCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:ef:43:01:60:31:ef:78:04:09:af:71:ec:63:06:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Validity
Not Before: May 11 20:00:27 2025 GMT
Not After : May 12 20:00:27 2025 GMT
Subject: CN=723b97f53896cfdca61372b19bbc71b9825268ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:07:79:64:45:99:42:d0:1c:69:bd:03:ca:95:
70:a7:3f:90:15:ff:4f:c8:81:5d:a9:c2:e7:3d:10:
82:df:83:48:da:fe:9f:aa:52:1c:47:70:de:5e:eb:
fc:07:0e:c5:7c:8b:71:18:13:64:99:af:17:be:b9:
56:00:7a:c1:2a:62:72:cf:9b:2e:7f:c0:64:2b:4f:
38:7d:d7:cb:78:e6:b8:d9:1b:c8:ca:78:4a:2d:a5:
86:bd:5b:b0:4f:69:3a:74:35:92:36:f3:9c:50:27:
67:ce:4b:e6:38:53:6e:b9:59:85:db:c7:5b:87:0e:
2a:5c:35:a2:83:d8:64:4b:e5:d6:66:16:9f:0b:4f:
5f:e3:2d:0d:84:62:c4:17:24:b1:c1:31:7d:bf:a4:
8f:34:f9:56:17:4e:b5:b5:a6:da:fd:71:f7:b2:ae:
a2:72:5f:04:24:e8:af:7f:d0:a7:e1:3a:59:35:41:
b5:53:7a:ec:4d:17:d2:c8:0c:2b:66:21:be:22:55:
d9:97:d0:70:b9:9f:e6:09:5f:83:cb:b3:dc:7f:a8:
00:c6:bd:2e:f3:3c:f2:00:dd:44:63:c1:52:b3:61:
2c:f0:32:e9:83:61:eb:1a:ba:be:fb:89:f0:77:39:
8a:89:d5:d0:d9:31:bd:d6:b8:ca:dc:13:0b:a5:ca:
cb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:3B:97:F5:38:96:CF:DC:A6:13:72:B1:9B:BC:71:B9:82:52:68:ED
X509v3 Authority Key Identifier:
keyid:0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:cc:91:44:04:ff:9a:b4:26:ea:46:5a:fb:71:00:13:e9:d7:
93:de:89:a6:30:88:cb:10:95:c0:e7:be:40:ec:82:02:ee:62:
6e:a7:e6:b0:1c:7b:2e:d2:11:69:4e:b0:16:4b:28:af:50:3c:
e0:aa:cd:52:6f:62:9d:4c:ad:ca:e4:8c:0c:ca:81:90:b8:af:
23:58:3d:b3:5f:1a:8d:0f:f5:93:e6:8f:e8:a2:a8:d2:7a:7c:
f0:62:e9:12:8d:9b:cf:55:b1:97:1c:1b:b1:ac:f5:40:00:06:
e1:7d:38:0e:f5:25:0e:7b:9e:db:3a:4c:2b:4a:d3:64:62:5b:
da:0e:6a:ec:2a:05:44:78:16:9a:4c:33:f1:f3:aa:f1:3b:56:
48:0e:1f:07:c5:3f:58:17:ff:9c:4c:b4:b2:4a:cc:26:63:4e:
55:ba:a8:be:12:e2:96:7e:9d:e8:5f:da:03:aa:08:72:95:63:
eb:16:ae:6d:fe:ae:05:60:e5:b4:da:26:8b:8d:33:b4:e0:a0:
91:02:f7:c4:fd:0f:4b:26:b8:95:67:e2:18:c4:ab:c9:b6:c7:
3e:99:65:59:d9:0b:3e:f7:55:07:80:e3:43:fd:8c:7f:5c:0c:
8f:78:c4:80:de:6c:46:ba:01:cb:a2:fc:ce:1a:59:27:96:89:
76:7b:14:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 23:00:36 2025 by rpki-client