Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
File: DZ40sUlHfVXvC1lipeXgDN-1hIk.mft (raw, json)
Hash identifier: XWyzdKg0mL76jH5ISGRa65AaWibwklCezRzSeyfoCm4=
Subject key identifier: 2F:FB:77:07:6E:8D:02:58:69:1E:23:EE:AE:DC:1D:0C:49:27:84:27
Authority key identifier: 0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89
Certificate issuer: /CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489
Certificate serial: 0196BF37FEE985852AA3A77FE297B60B0214
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
Manifest number: 1271
Signing time: Sun 11 May 2025 12:00:40 +0000
Manifest this update: Sun 11 May 2025 12:00:40 +0000
Manifest next update: Mon 12 May 2025 12:00:40 +0000
Files and hashes: 1: DZ40sUlHfVXvC1lipeXgDN-1hIk.crl (hash: KPboHVf+B/hmScHV3cPkaJpjrVlH3SpxDLRodJE0F0Q=)
2: WGiFR-bGPm6J5ZNuq_i5kJB6Nzw.roa (hash: 74v2TFsnggZrqZFnVMwJ7ZEDqgCLlK+dkXL3Ua1EXV4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:37:fe:e9:85:85:2a:a3:a7:7f:e2:97:b6:0b:02:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489
Validity
Not Before: May 11 12:00:40 2025 GMT
Not After : May 12 12:00:40 2025 GMT
Subject: CN=2ffb77076e8d0258691e23eeaedc1d0c49278427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:06:06:74:4f:60:e3:12:25:98:4a:43:9f:d6:
f8:9c:0d:c7:46:ed:9e:89:29:23:4f:ba:6b:b8:fe:
5f:e7:fc:b9:53:0f:f1:3c:e4:aa:a1:d2:1d:96:4b:
f6:2a:8b:55:b6:0b:87:19:ff:de:ef:d2:38:e1:8e:
9b:aa:8c:b4:74:cc:a9:d8:d1:5d:ea:5d:65:39:b8:
8b:9d:ee:25:f6:06:23:20:06:de:ca:55:06:4e:0f:
84:6b:dc:c6:b3:f2:8c:19:cf:ff:27:be:c1:8f:b6:
71:30:4b:f7:10:83:28:ff:7e:72:34:96:b9:31:a0:
4b:9e:1b:e7:c4:5f:51:08:a4:0b:3e:22:59:2a:ec:
59:bc:9d:47:e3:73:bd:16:1e:5a:5f:0e:04:71:19:
d8:ae:83:52:5e:be:b9:74:72:d2:a1:99:e8:2e:61:
43:64:e4:38:a6:33:5b:bf:5c:cf:9d:bd:78:b2:9e:
36:25:af:77:3a:9f:ec:b6:b4:49:27:ff:7a:46:b7:
b9:32:db:6e:e4:f1:fb:42:5d:f2:92:93:4c:81:9f:
b4:08:51:b2:e7:6b:8b:b0:80:7b:eb:05:37:06:3b:
57:6f:15:b6:17:9d:5f:4c:d9:e8:74:1e:95:16:e5:
ee:98:5a:23:14:60:ec:9f:d0:c8:ba:14:bf:ee:e6:
21:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:FB:77:07:6E:8D:02:58:69:1E:23:EE:AE:DC:1D:0C:49:27:84:27
X509v3 Authority Key Identifier:
keyid:0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:b0:da:f1:8e:d4:98:ac:81:c8:38:21:14:d0:39:3c:f8:b6:
d0:0f:dd:0d:44:f2:19:e8:52:b7:31:de:91:b5:be:f9:3b:81:
81:44:6a:cf:7a:11:6c:13:e4:04:d9:53:91:ef:0d:94:6a:c7:
ff:28:1f:c9:48:a1:95:ad:a4:d0:78:72:29:9f:82:77:0c:d4:
f5:b5:4d:d0:30:1c:81:d1:d1:89:ef:4d:05:1e:cf:c0:32:15:
74:ca:d2:b8:fc:5e:de:10:dd:99:80:30:31:26:0f:67:d8:0d:
48:e8:2e:43:49:01:22:79:a4:c5:ac:7c:a8:de:6c:d7:ef:71:
a4:81:96:e2:2d:14:5d:69:bd:87:10:01:6b:87:30:bc:9e:4a:
51:d6:40:05:39:7e:4e:65:ed:3e:3c:7c:e9:e7:c3:f6:ed:7b:
d6:49:c3:92:49:23:e2:5f:03:b6:22:a3:98:9c:8a:1c:49:7b:
62:12:16:99:08:be:32:26:21:ac:76:25:71:ee:8f:55:63:f9:
e6:c3:56:f8:a0:89:ca:f4:4b:6d:f4:00:8e:8d:fb:49:bf:6a:
b5:f7:1a:16:24:05:ec:46:84:cf:61:3f:e3:0b:76:75:0c:1e:
98:fe:fe:8d:35:0b:1e:a0:6b:17:15:fe:52:30:15:df:36:4a:
fe:f1:0c:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:17:28 2025 by rpki-client