Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
File: drTT6JcTIsZNegRYurdFqJreTeU.mft (raw, json)
Hash identifier: /uxFDMbmN+w3/3BHPoZH2+XD5oheYGL6DV8oOOmRJn8=
Subject key identifier: 27:3E:38:60:48:AE:88:F6:D3:53:1C:2C:46:F0:6E:F9:3C:D0:E3:FA
Authority key identifier: 76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5
Certificate issuer: /CN=76b4d3e8971322c64d7a0458bab745a89ade4de5
Certificate serial: 0196AE0DD10863C140A33A2AF5CDC99723F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
Manifest number: 01AF
Signing time: Thu 08 May 2025 04:01:03 +0000
Manifest this update: Thu 08 May 2025 04:01:03 +0000
Manifest next update: Fri 09 May 2025 04:01:03 +0000
Files and hashes: 1: ZYX1Qhws2vdCl-u2QXbSsdG6zUs.roa (hash: 1Yas72g5IvT1A6G5CoyKopOr6adZNC8arOgG6BPNF2I=)
2: drTT6JcTIsZNegRYurdFqJreTeU.crl (hash: VvR975qkoP53j7QvlsxnTeVxnEolSbNT2Q0uYlrLUpw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 20:38:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:0d:d1:08:63:c1:40:a3:3a:2a:f5:cd:c9:97:23:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76b4d3e8971322c64d7a0458bab745a89ade4de5
Validity
Not Before: May 8 04:01:03 2025 GMT
Not After : May 9 04:01:03 2025 GMT
Subject: CN=273e386048ae88f6d3531c2c46f06ef93cd0e3fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1f:db:ba:25:40:0a:19:03:a7:0a:f8:2f:86:
0e:2c:90:a1:7d:a2:6c:f9:d1:ee:f7:02:4f:14:90:
0c:8e:d9:09:f3:49:0d:9c:b0:7d:10:8a:ef:60:a2:
e7:4d:64:c3:bc:a3:ce:58:6b:4b:ff:c2:02:b3:cb:
6a:d6:39:1d:ac:4a:f9:70:75:7f:76:90:1e:a8:c9:
78:3b:8b:73:80:25:23:c2:4d:1d:ab:99:cf:ea:51:
55:1d:19:ca:d6:4d:79:ba:5e:de:f4:6c:af:ae:f6:
45:bd:e6:08:14:0f:f0:e9:b8:0a:48:d8:50:c1:a4:
9f:b0:dd:13:6a:e1:d9:b2:66:ef:63:3a:4f:fb:ab:
a3:a1:e4:3d:a1:85:ec:22:6e:6d:e2:e7:89:59:d8:
61:c1:a3:a2:a2:b8:af:59:f1:32:ea:4e:4f:5b:f5:
0f:e4:62:0d:b3:56:ae:69:a9:27:c7:d1:0d:fb:e6:
b3:d6:6a:08:d5:b7:04:dd:c4:06:8d:13:fc:df:c5:
fc:52:4d:df:80:1b:74:0d:ad:e3:8f:37:94:a3:f5:
f7:36:da:32:33:40:3e:50:2f:24:fc:16:14:60:6e:
7c:b9:84:05:dc:cf:f1:bc:99:76:9a:fc:d8:e5:28:
32:48:eb:a2:6b:92:2e:12:86:d4:7b:27:72:b7:04:
c1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:3E:38:60:48:AE:88:F6:D3:53:1C:2C:46:F0:6E:F9:3C:D0:E3:FA
X509v3 Authority Key Identifier:
keyid:76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:a1:b3:10:cd:22:e0:e7:59:d0:3e:75:b9:b8:ed:e7:6e:c5:
55:20:53:34:14:11:73:7e:e0:49:30:e9:95:75:4e:41:19:1b:
31:40:c6:4c:f5:fa:2b:73:65:f7:ea:0b:17:65:ef:3b:d6:c8:
56:a2:62:c9:44:52:8b:ef:a7:f7:a2:eb:d1:1a:80:6a:a2:68:
2b:40:b5:43:8d:8a:2f:d8:ec:b6:9a:f4:71:6e:fd:9b:3e:ff:
c7:f5:56:16:eb:4d:9b:e9:f3:74:1f:76:f0:bd:9d:f2:64:42:
d7:ac:28:fd:4d:bb:6f:39:9a:87:48:a5:9d:2c:9e:11:13:de:
3c:11:86:61:86:fa:62:84:be:23:1e:8a:e2:4e:d5:7f:c9:ab:
72:af:36:74:18:1c:2b:7b:57:af:d6:e0:c2:dd:27:c1:85:01:
60:8b:cc:10:bb:eb:0f:ac:1b:64:8e:d0:e2:11:6b:5d:81:2e:
d0:39:9b:e0:49:ad:80:61:50:db:a5:20:73:dd:d8:cb:c9:de:
7e:1f:41:7b:fa:ad:c6:51:28:c3:1d:6d:d9:f0:f8:fe:5b:30:
10:0f:7a:81:45:6d:4e:84:83:1e:2b:fc:5a:5d:c6:71:d9:02:
a0:57:cd:3c:b6:9a:d2:99:7b:c9:e6:91:1a:eb:d1:f5:11:e3:
02:fe:3e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 06:28:15 2025 by rpki-client