Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
File: dxLiD1ELIrghfN8NIRSWsbnB7bg.mft (raw, json)
Hash identifier: aeMKAjXQhLul0tQSbZ26ThIUE8eBR9XI/xjLs2vb8kU=
Subject key identifier: 4C:AA:76:C8:01:D6:F1:36:5A:68:FC:0A:D3:B4:85:37:04:46:1D:3C
Authority key identifier: 77:12:E2:0F:51:0B:22:B8:21:7C:DF:0D:21:14:96:B1:B9:C1:ED:B8
Certificate issuer: /CN=7712e20f510b22b8217cdf0d211496b1b9c1edb8
Certificate serial: 0196C94DCA6C11F8E4DDA69F176721730FB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
Manifest number: 153A
Signing time: Tue 13 May 2025 11:00:40 +0000
Manifest this update: Tue 13 May 2025 11:00:40 +0000
Manifest next update: Wed 14 May 2025 11:00:40 +0000
Files and hashes: 1: 0bjBu50yRFSQQCpaSDnz4Da59n0.roa (hash: EpIJkfUrUz0ncMqveTDKjCXPCU3oKNIvzwGQlVcXpbY=)
2: dxLiD1ELIrghfN8NIRSWsbnB7bg.crl (hash: sHBw1syIDUO0cqVgO0c4AOb2UZwogKRT8FpFPy1razA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 11:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:4d:ca:6c:11:f8:e4:dd:a6:9f:17:67:21:73:0f:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7712e20f510b22b8217cdf0d211496b1b9c1edb8
Validity
Not Before: May 13 11:00:40 2025 GMT
Not After : May 14 11:00:40 2025 GMT
Subject: CN=4caa76c801d6f1365a68fc0ad3b4853704461d3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e0:56:62:04:c3:4f:cc:1c:8f:f8:4f:d0:54:
3f:7a:3c:1f:87:78:d5:0a:e1:65:21:7d:20:87:cb:
4d:9f:eb:4c:74:f6:31:da:d2:6e:2d:e0:fc:56:54:
df:39:7f:d0:0c:3f:b5:61:32:df:2d:ce:ef:02:35:
ae:e4:c3:a9:7a:b4:54:97:7a:60:09:4c:b1:c0:0a:
a1:61:df:dc:ad:71:bd:1a:1c:96:2c:17:56:3a:51:
05:9a:47:22:74:29:a8:6b:1a:c2:2c:4c:55:05:06:
de:8b:e1:76:33:54:5e:44:c5:b3:fb:1c:b8:8a:ea:
e5:fb:fd:e1:99:ac:63:8a:53:34:bc:6d:f2:66:37:
7f:bd:d2:80:36:19:47:87:b7:d2:03:4e:88:2a:97:
eb:55:13:22:19:49:dd:78:0d:fd:d9:03:62:a6:ba:
f3:d8:6e:ae:ab:4c:10:6b:56:65:89:72:3b:13:37:
c5:c4:91:bb:cf:61:a8:54:f8:97:19:a9:d1:8c:b3:
98:80:40:e4:99:51:b4:4b:12:bd:13:6e:27:7e:c7:
7c:d5:b1:1a:13:18:5e:f4:f1:dd:f6:6b:2d:0d:d9:
50:12:86:4b:36:a5:4b:5b:41:26:66:d4:05:3a:d6:
39:34:ec:0a:a9:45:c9:79:93:6f:9d:ea:80:47:3a:
ad:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:AA:76:C8:01:D6:F1:36:5A:68:FC:0A:D3:B4:85:37:04:46:1D:3C
X509v3 Authority Key Identifier:
keyid:77:12:E2:0F:51:0B:22:B8:21:7C:DF:0D:21:14:96:B1:B9:C1:ED:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dxLiD1ELIrghfN8NIRSWsbnB7bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/6cb714-c714-4281-8ada-43ce949663d9/1/dxLiD1ELIrghfN8NIRSWsbnB7bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:3c:ae:4f:89:9d:a0:88:bc:84:4f:49:b7:66:43:0d:93:35:
01:2f:d3:0b:ab:b2:79:5f:ab:ef:7b:93:eb:05:13:79:92:9e:
51:43:ef:f2:b2:2c:ad:75:0e:4c:cb:90:43:b6:60:fa:b6:53:
ab:d4:16:c1:3b:c2:6b:4d:f9:4a:52:e3:d0:6c:72:75:15:84:
52:c6:32:32:1b:14:83:39:b7:74:be:ec:5e:db:42:67:8d:9e:
44:77:f9:d2:e7:14:1f:8f:f7:2a:1e:db:aa:0d:58:1f:60:f9:
20:bb:77:5a:08:be:e0:fc:e6:9e:5a:b9:03:f2:40:25:a1:4f:
a4:02:98:d1:dd:3c:08:41:71:03:33:ee:08:0f:94:d2:5a:78:
e9:06:16:1c:b9:cd:3f:83:6c:d1:93:78:20:ef:75:24:ef:40:
72:b0:22:c8:fc:b3:e1:b5:c8:de:64:a5:c3:65:5d:78:32:07:
5b:6b:8e:e3:0a:9a:17:a8:6e:b6:76:f7:a5:31:b8:24:fd:d7:
b5:5e:b9:2b:24:ab:6b:ad:bd:e6:c2:5b:52:e4:42:00:ea:f6:
44:a9:98:c8:b5:db:e1:aa:9f:a0:23:84:cd:ec:f8:ba:2b:99:
e4:57:07:06:64:6d:ef:55:48:14:63:59:fd:dc:f6:20:36:2c:
f9:cd:34:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 18:03:52 2025 by rpki-client