Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
File: cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft (raw, json)
Hash identifier: wXH5ad9zStAyvTvvCSWQ9uYTeMHPUbiDVsRYpTSZZ+o=
Subject key identifier: 70:4C:25:AB:1A:51:6B:51:EB:BF:B4:B9:8C:E5:72:84:6A:3C:80:A5
Authority key identifier: 70:7F:7E:E6:AB:9C:F4:48:F9:94:93:67:FB:7C:0E:DE:10:73:F9:7F
Certificate issuer: /CN=707f7ee6ab9cf448f9949367fb7c0ede1073f97f
Certificate serial: 0196BBFFC41B49B0FD2CF8D56D1EC7DB5E9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
Manifest number: 1534
Signing time: Sat 10 May 2025 21:00:23 +0000
Manifest this update: Sat 10 May 2025 21:00:23 +0000
Manifest next update: Sun 11 May 2025 21:00:23 +0000
Files and hashes: 1: cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl (hash: tzkPotOnnXxLjBCAizTfFqUhWowzGeMq6tfgKsP98Dw=)
2: gEcPKMyXsq8EnU4MPoFeY2Uidb0.roa (hash: 43PR1hTJL7tXyu9/IcMkUlMdJ9SOinPx2dKMQk9nNKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 21:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:ff:c4:1b:49:b0:fd:2c:f8:d5:6d:1e:c7:db:5e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=707f7ee6ab9cf448f9949367fb7c0ede1073f97f
Validity
Not Before: May 10 21:00:23 2025 GMT
Not After : May 11 21:00:23 2025 GMT
Subject: CN=704c25ab1a516b51ebbfb4b98ce572846a3c80a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:44:4f:7b:74:fe:e9:69:a7:a0:c1:9f:79:fd:
4e:4a:06:7a:ea:cb:23:5f:88:ae:2e:8e:89:e2:a6:
a2:6a:d3:0a:63:da:04:ad:df:d9:af:55:dc:63:82:
cb:05:ee:3d:de:53:08:80:71:df:bb:68:9e:8c:1a:
44:b9:7b:65:db:f5:b4:96:ae:31:8a:c6:54:93:0e:
5c:fd:eb:a8:ba:be:e8:fe:1f:75:70:20:71:9f:88:
fb:f0:e3:9a:6b:16:b4:e3:7e:e6:43:9b:6b:47:29:
51:2a:65:3c:b0:94:d1:8c:bc:03:12:bc:98:87:0e:
0d:c3:11:e5:a3:4e:e5:1f:aa:a6:f9:21:22:82:8a:
56:ad:76:5e:a1:55:08:2a:a2:d0:d6:c0:18:cb:d9:
63:b0:49:a8:a1:86:01:51:c4:90:e9:46:65:a6:33:
2e:cb:96:18:95:8a:aa:64:32:82:17:70:1c:21:0e:
8e:89:b2:a6:46:4a:1b:71:84:e1:15:fc:cc:aa:41:
4c:81:a4:ef:4e:81:d1:e8:98:14:56:40:85:52:af:
18:63:2b:bf:71:6a:29:ba:81:bd:5c:70:26:3a:6a:
48:f8:35:a5:f9:8d:f0:5d:85:df:c0:61:c8:80:48:
32:3d:49:52:7f:72:cc:e4:8a:77:5a:ed:49:0d:37:
9c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:4C:25:AB:1A:51:6B:51:EB:BF:B4:B9:8C:E5:72:84:6A:3C:80:A5
X509v3 Authority Key Identifier:
keyid:70:7F:7E:E6:AB:9C:F4:48:F9:94:93:67:FB:7C:0E:DE:10:73:F9:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cH9-5quc9Ej5lJNn-3wO3hBz-X8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/3b45b3-18a4-47f8-8264-f708bc70e6ee/1/cH9-5quc9Ej5lJNn-3wO3hBz-X8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:c6:61:63:d2:48:0d:f5:58:00:ab:34:a6:99:8b:dd:e0:63:
aa:ea:9c:8c:21:63:14:e2:83:a5:73:5b:7c:ee:87:79:74:05:
91:82:56:63:65:68:09:14:dd:1e:5d:18:ec:b6:4a:c8:a7:94:
31:9e:67:95:67:2c:9d:4d:eb:2b:05:2f:b2:72:3b:d4:85:b5:
57:6e:57:f1:3e:cc:06:af:d1:48:89:fc:d4:d0:cc:c4:ad:3f:
2b:04:16:51:e5:16:d4:e5:5e:99:07:a1:df:7b:67:14:f5:79:
70:4b:a9:6f:81:c0:79:f5:e3:40:4f:db:3d:b8:1e:5d:be:14:
26:28:c6:eb:29:83:81:c3:9b:cd:99:bb:c8:03:6c:4c:15:75:
46:18:d0:b5:2c:db:d1:7f:35:7e:0d:5c:f0:5a:53:7f:ee:1d:
a9:06:2f:1d:cd:62:79:75:a4:35:2c:8d:b1:79:eb:1c:ef:73:
e7:0a:b7:76:0c:01:95:72:25:83:1e:20:6c:a3:17:1e:cb:d9:
e3:6e:4a:b7:11:d3:7c:1e:f1:fd:04:9c:2b:76:f4:46:57:5a:
7e:c9:16:4d:6f:36:c5:4d:3a:a3:bc:bf:92:e6:f9:7b:76:70:
d9:83:7c:48:36:61:3d:9d:97:00:52:a7:22:c8:82:1d:2a:6f:
ef:2f:50:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 06:16:27 2025 by rpki-client