Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
File: l9nve9MDJN7fcLrOS72ldgwyaxo.mft (raw, json)
Hash identifier: ESfAdFSi9MonikIynyjbin55ql87HVAYhbdAzUCrros=
Subject key identifier: 9B:24:DF:BC:64:15:1E:D2:E3:FA:C1:99:9F:E5:5F:52:DA:DD:1D:15
Authority key identifier: 97:D9:EF:7B:D3:03:24:DE:DF:70:BA:CE:4B:BD:A5:76:0C:32:6B:1A
Certificate issuer: /CN=97d9ef7bd30324dedf70bace4bbda5760c326b1a
Certificate serial: 0196CE7433D8363B6A92605A682D42E2695E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l9nve9MDJN7fcLrOS72ldgwyaxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
Manifest number: 0E04
Signing time: Wed 14 May 2025 11:00:43 +0000
Manifest this update: Wed 14 May 2025 11:00:43 +0000
Manifest next update: Thu 15 May 2025 11:00:43 +0000
Files and hashes: 1: N0s8xKfa_bF09tlRJvpRIiwnl5w.roa (hash: 90x2GkpRoKN6DUPIyJuUzKhNvSMsOvRGP9u2xtqB9lE=)
2: l9nve9MDJN7fcLrOS72ldgwyaxo.crl (hash: iUNG4I0FLHj8dw3E+MAFV2/uHaOtezsyHMY6XfxKneA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/l9nve9MDJN7fcLrOS72ldgwyaxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 11:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ce:74:33:d8:36:3b:6a:92:60:5a:68:2d:42:e2:69:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97d9ef7bd30324dedf70bace4bbda5760c326b1a
Validity
Not Before: May 14 11:00:43 2025 GMT
Not After : May 15 11:00:43 2025 GMT
Subject: CN=9b24dfbc64151ed2e3fac1999fe55f52dadd1d15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:99:ef:79:92:45:be:39:92:fb:8e:c2:19:23:
d6:26:78:6d:6f:4c:d4:92:fb:d1:62:53:13:92:c9:
c3:21:8f:e3:7d:82:f7:7d:82:90:a8:7d:cd:d3:aa:
3a:22:78:17:14:b6:8f:8c:77:81:47:b9:fc:96:80:
8c:50:a4:8a:cb:64:95:26:3b:25:ad:16:a0:80:07:
80:12:67:57:e1:06:ed:43:71:e5:d9:d9:02:67:5f:
0a:fc:34:d3:9b:7d:82:cb:04:8e:1e:8d:d4:33:9e:
86:aa:07:a4:16:ab:c5:29:d5:cd:ff:c9:f4:a6:a4:
7c:32:cf:f4:b6:54:8a:20:53:3e:d3:57:4e:b3:a7:
0b:45:5e:f5:85:96:18:7c:3c:e8:a1:48:02:5a:94:
83:c6:50:35:dd:ac:03:84:76:db:73:c9:62:4b:c6:
d3:7b:40:59:4b:75:dd:c2:d1:1b:73:c0:d5:17:03:
6c:ef:bc:41:d7:9a:9d:f8:63:e3:ba:28:32:d4:93:
f2:7f:29:b6:59:e8:ea:dd:4f:f6:13:fc:11:fa:15:
ff:b8:5f:02:38:45:49:ae:03:43:fd:23:88:30:5a:
40:a0:fa:5d:90:91:5b:d4:9a:eb:22:75:4b:69:20:
84:26:d1:9e:0a:e3:c6:14:b8:fb:55:7e:4b:30:1d:
7e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:24:DF:BC:64:15:1E:D2:E3:FA:C1:99:9F:E5:5F:52:DA:DD:1D:15
X509v3 Authority Key Identifier:
keyid:97:D9:EF:7B:D3:03:24:DE:DF:70:BA:CE:4B:BD:A5:76:0C:32:6B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l9nve9MDJN7fcLrOS72ldgwyaxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/43d508-d19e-4f66-ae85-f805ab3a327e/1/l9nve9MDJN7fcLrOS72ldgwyaxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:93:18:11:92:3d:84:ac:37:64:18:91:aa:ca:0b:c2:3c:b0:
c1:47:ca:d2:20:f0:59:88:8c:04:5f:43:22:cd:4e:e1:8d:28:
41:a1:0e:5c:10:62:66:8a:89:5e:b4:44:38:61:51:6a:ad:95:
a2:a6:3d:d1:f4:dc:e3:41:ef:40:92:d3:88:52:af:3a:71:3b:
a1:55:6e:f6:be:48:b2:2c:44:c4:75:95:c9:e1:22:3b:c6:ab:
41:11:1b:df:3b:55:fe:d5:7d:19:ac:50:f1:1d:70:30:96:a6:
0f:5a:f7:2c:a1:d5:be:f2:f8:5f:16:8f:d6:20:f8:bb:13:86:
06:01:e3:38:0b:83:d1:ad:48:f4:13:cd:ba:61:b0:15:30:1d:
1c:7b:ee:57:f3:43:78:f0:0d:5e:5a:9c:3f:17:cc:e7:d8:d8:
85:e7:df:53:6e:2b:ad:12:90:51:b1:a6:5d:f0:48:49:2e:5b:
40:b0:93:04:bd:41:86:ae:3e:c5:f1:09:3a:29:24:af:96:2e:
44:71:09:8b:90:ba:49:05:9e:05:e7:e1:a3:c2:cb:9b:b1:4d:
90:51:43:2a:55:10:cf:57:72:2f:f9:1a:6f:a2:36:04:23:f0:
2f:b7:7c:39:75:6b:9b:ba:07:8e:65:4c:18:8e:b6:b7:e6:08:
d8:25:55:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 16:00:38 2025 by rpki-client