Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
File: 4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft (raw, json)
Hash identifier: 1q0lXf2oMF2D+mNGP7CPpZYyZrehqUDafCT5GSijynA=
Subject key identifier: 6B:BD:0D:47:A1:97:BD:54:8D:AD:5F:19:7E:FB:B9:5C:67:09:26:4C
Authority key identifier: E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99
Certificate issuer: /CN=e0e3976d9ecb8309a8181fbd025ca52fef161999
Certificate serial: 0196C570A40E2128F1FB1D4E874671075476
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
Manifest number: 0953
Signing time: Mon 12 May 2025 17:00:15 +0000
Manifest this update: Mon 12 May 2025 17:00:15 +0000
Manifest next update: Tue 13 May 2025 17:00:15 +0000
Files and hashes: 1: 4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl (hash: kHEsH7tx0+5xeWieUNCZo3neA52SHSiNrwXWOCdi10c=)
2: cK4llrkBdLlV4HeILjRyQ98esEM.roa (hash: MuU2BWlfRFj75k9zGngWfQu7w/ZtaYOQ1aHN3Tj8NDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 17:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:70:a4:0e:21:28:f1:fb:1d:4e:87:46:71:07:54:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0e3976d9ecb8309a8181fbd025ca52fef161999
Validity
Not Before: May 12 17:00:15 2025 GMT
Not After : May 13 17:00:15 2025 GMT
Subject: CN=6bbd0d47a197bd548dad5f197efbb95c6709264c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c1:40:4c:d9:51:ad:1a:35:7c:93:60:7f:4a:
f2:5f:cb:ef:47:87:5b:ac:d5:61:ee:e6:eb:b5:ee:
ab:6c:44:4d:ef:d6:0a:c3:a1:9c:ef:30:cb:4c:36:
d5:9f:25:80:6a:aa:f7:12:a4:80:b4:6a:01:41:22:
b1:bd:1f:e8:24:26:62:b8:e3:83:26:ad:37:04:5b:
53:9e:5d:80:d0:52:17:70:bd:08:d3:4f:b6:09:cc:
a6:78:9c:10:8f:63:bb:3d:f4:d6:9a:59:86:11:31:
08:34:69:3d:08:27:d4:e9:f2:f6:fe:14:57:c7:bd:
c5:cd:45:e4:c9:ae:b8:c0:b2:83:57:c1:f8:c6:eb:
09:29:d8:42:98:ec:26:d0:95:6b:3e:a1:fe:c6:6c:
11:12:ca:86:c8:fa:65:76:9d:c7:6b:b7:97:f4:05:
fc:7d:16:44:f5:04:c1:c7:28:19:71:23:7e:49:90:
99:c7:ae:e3:d6:eb:a6:45:54:71:71:7f:a9:6f:62:
23:fb:9e:1e:1e:c2:b4:f3:b6:48:a6:bc:00:a5:ff:
37:53:60:05:1c:6a:1d:2c:8b:cc:03:3a:3e:a0:98:
f7:ff:66:6f:e2:b3:8a:35:70:e1:0c:25:4b:d5:11:
cc:db:b9:e8:81:0c:e0:50:34:a2:12:4f:05:71:88:
3d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:BD:0D:47:A1:97:BD:54:8D:AD:5F:19:7E:FB:B9:5C:67:09:26:4C
X509v3 Authority Key Identifier:
keyid:E0:E3:97:6D:9E:CB:83:09:A8:18:1F:BD:02:5C:A5:2F:EF:16:19:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4OOXbZ7LgwmoGB-9AlylL-8WGZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d612a3-4631-47de-940d-8be0d97682ab/1/4OOXbZ7LgwmoGB-9AlylL-8WGZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:b0:c0:86:83:cb:72:b6:5c:39:7a:90:b9:fd:7f:16:17:61:
af:1d:b0:f3:25:dd:60:f2:f1:92:f7:b9:55:ee:e5:bc:cb:e6:
4e:34:7e:61:ea:0a:23:ad:93:85:03:93:f6:90:ac:f8:cf:35:
a8:c1:2f:98:25:d5:0c:1c:35:61:7c:f2:33:0f:76:1b:9b:83:
2c:0e:79:fc:21:52:12:44:42:6b:19:70:1f:33:27:ae:14:42:
84:42:fe:1c:c9:c1:0a:18:16:49:5c:fb:ad:9f:5e:b9:7f:79:
b7:45:df:00:c9:74:55:20:b8:aa:47:b6:19:6e:90:14:34:47:
a9:df:59:6e:0b:6a:0e:06:86:cb:f3:26:b1:18:88:03:e0:5a:
17:70:db:39:d4:76:a0:a3:6e:a0:e1:8a:62:23:26:9e:b1:27:
29:f0:18:33:e6:fe:7a:22:cf:c0:05:52:3a:01:65:e5:63:f3:
76:b5:53:bb:4a:17:df:9c:1e:f2:c9:68:2b:b5:77:2b:07:e6:
85:d1:c6:6b:2d:51:3c:1f:be:ae:7b:b6:fc:a4:0d:46:0d:57:
b4:9a:39:14:b5:b7:89:fa:20:d0:7d:a7:71:0a:fa:84:9b:40:
dd:a7:1d:bb:b8:b8:e7:c5:a6:4c:a6:10:34:b6:6c:13:07:8c:
02:30:fe:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 02:38:06 2025 by rpki-client