Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
File: 0Q44sLejPvOhbhVDNAKYfW1njaE.mft (raw, json)
Hash identifier: 5EasOcnnw1DxAQM/IcrRT+XQmobNjgtsZSEqMgeBWFc=
Subject key identifier: 2B:1F:30:08:1B:AA:81:B1:B6:F4:7C:49:16:52:51:B9:F7:86:50:D2
Authority key identifier: D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
Certificate issuer: /CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Certificate serial: 0196D3D10D504532485342B0B9C587DBB9DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
Manifest number: 11EA
Signing time: Thu 15 May 2025 12:00:14 +0000
Manifest this update: Thu 15 May 2025 12:00:14 +0000
Manifest next update: Fri 16 May 2025 12:00:14 +0000
Files and hashes: 1: 0Q44sLejPvOhbhVDNAKYfW1njaE.crl (hash: NQKR+yEOH9Lgy8srRQcmRcGnC6n2mWsZIHUgpMY9dSo=)
2: pTXcU1-027t2C2Vu9gFY335XMJc.roa (hash: VazQFR0+HiS2IaElmJ/i9QSFb0To3uFvpZ1ELlNt0rw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 12:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d3:d1:0d:50:45:32:48:53:42:b0:b9:c5:87:db:b9:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d10e38b0b7a33ef3a16e15433402987d6d678da1
Validity
Not Before: May 15 12:00:14 2025 GMT
Not After : May 16 12:00:14 2025 GMT
Subject: CN=2b1f30081baa81b1b6f47c49165251b9f78650d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3b:b0:86:c3:ff:57:7e:19:f6:0d:b0:b5:c3:
50:50:d0:11:10:66:6a:9c:78:06:19:ba:b0:62:48:
99:11:8f:26:d2:92:51:62:b1:ca:c1:95:7e:73:85:
ca:5c:c7:96:4f:cd:49:98:db:cf:19:b6:a7:1e:5a:
10:35:be:32:4b:9d:76:f4:b3:02:0e:7b:8d:8a:76:
b9:99:e9:f0:6d:57:a5:27:35:8d:52:f0:3a:c9:b1:
be:6e:8c:b3:33:a8:a3:d0:e1:7e:30:6c:71:da:b4:
88:3e:09:2d:6c:00:a3:74:46:ac:d3:16:1b:9b:fa:
de:2d:db:ee:17:d5:f1:75:72:02:e1:34:c3:3c:09:
e3:ca:df:44:db:ed:b0:1b:6d:a4:b8:a8:ed:ac:fe:
55:7a:a2:9d:21:1b:27:24:d4:d6:57:79:67:c5:70:
09:66:5c:a4:3c:54:4c:10:83:c4:72:a8:83:40:01:
73:6a:65:13:5a:3c:a0:4e:1f:b4:ff:af:d6:c3:26:
3b:b6:18:3a:2e:fd:24:b0:3e:64:e1:15:47:41:30:
be:7e:39:ed:3b:c2:61:8e:03:b0:e0:36:40:a4:84:
67:d2:4e:36:e2:44:b6:c3:9d:02:95:77:2f:00:87:
4a:00:b0:da:32:78:85:78:96:97:74:75:2d:b3:b0:
be:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:1F:30:08:1B:AA:81:B1:B6:F4:7C:49:16:52:51:B9:F7:86:50:D2
X509v3 Authority Key Identifier:
keyid:D1:0E:38:B0:B7:A3:3E:F3:A1:6E:15:43:34:02:98:7D:6D:67:8D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Q44sLejPvOhbhVDNAKYfW1njaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/3fa09a-e874-4f34-bf45-2c0eda70666a/1/0Q44sLejPvOhbhVDNAKYfW1njaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:72:b5:66:ac:49:ed:64:56:17:1a:70:1c:16:2d:58:6a:9f:
02:5d:72:17:b7:46:22:bd:f0:9c:d0:3e:bf:70:98:81:83:02:
e4:c8:a4:f5:85:48:2f:83:61:01:5b:22:cc:a5:9b:ff:ee:16:
60:72:ff:33:93:e0:c6:e9:26:27:43:31:69:41:50:f7:e5:a6:
43:96:54:7e:0b:9b:3f:32:f1:c3:83:6a:d6:fe:c1:13:f6:60:
88:a7:8b:be:7c:49:b5:72:65:85:1f:fd:86:da:eb:ec:b0:f9:
a1:aa:99:b6:16:33:79:1d:4a:14:59:e9:72:19:e9:42:1d:2b:
11:77:64:63:e3:5f:b1:23:6b:ec:4e:2e:66:17:88:90:d8:17:
3f:65:40:0d:9f:5b:60:53:48:f4:18:7b:4e:96:7b:4d:b8:fb:
c4:2d:ad:6d:cb:9e:64:fc:c8:9e:bc:52:e1:ab:2c:f7:c9:6d:
e0:2a:e9:de:c5:5c:bc:a6:c0:3c:fe:e4:bf:df:73:16:33:85:
29:92:aa:a4:cd:c4:68:74:da:2a:6d:70:cb:98:07:93:cd:a7:
cf:b9:a0:24:34:e6:af:b3:21:43:46:b5:f0:e3:ea:dc:49:cc:
f9:70:ef:96:47:39:b2:83:dc:83:5c:58:a1:2a:52:50:58:f0:
3a:7d:96:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 20:32:14 2025 by rpki-client