Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
File: 7jcJhfg_QTMBEcNQzWseHurVJqo.mft (raw, json)
Hash identifier: 0aXBAPNwAXQ0QJofAc27YbdBfVccGWzmIMOXmnu7800=
Subject key identifier: BF:B3:BF:93:30:81:FE:73:FD:4C:C7:4D:F8:96:1B:5D:1B:48:E8:AC
Authority key identifier: EE:37:09:85:F8:3F:41:33:01:11:C3:50:CD:6B:1E:1E:EA:D5:26:AA
Certificate issuer: /CN=ee370985f83f41330111c350cd6b1e1eead526aa
Certificate serial: 0196BC6E323DEBF8351936FB25D800BCA34A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jcJhfg_QTMBEcNQzWseHurVJqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
Manifest number: 1535
Signing time: Sat 10 May 2025 23:01:00 +0000
Manifest this update: Sat 10 May 2025 23:01:00 +0000
Manifest next update: Sun 11 May 2025 23:01:00 +0000
Files and hashes: 1: 7jcJhfg_QTMBEcNQzWseHurVJqo.crl (hash: rq3pyfghn1rDk+M/ORD2aT9CIZVH6UH4s9hwmawdlbg=)
2: 9aUDpcgA6maCgt07Eahm-5WcaJs.roa (hash: X/S54nVM9EqnKhRT8BDrMFb0JIJWk3STHP7cN6TfAmc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/7jcJhfg_QTMBEcNQzWseHurVJqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:6e:32:3d:eb:f8:35:19:36:fb:25:d8:00:bc:a3:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee370985f83f41330111c350cd6b1e1eead526aa
Validity
Not Before: May 10 23:01:00 2025 GMT
Not After : May 11 23:01:00 2025 GMT
Subject: CN=bfb3bf933081fe73fd4cc74df8961b5d1b48e8ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:80:b6:b4:81:60:eb:8e:5e:50:1b:4f:d1:d5:
7f:0d:57:b7:00:4e:94:3a:f9:dd:0f:4a:b1:82:4c:
cf:77:23:cf:7e:06:d6:4b:94:f6:ff:65:18:ae:62:
fa:0b:61:9a:e1:b6:10:cf:1e:91:a1:a4:5e:7b:02:
22:1a:12:5e:66:5f:3a:86:2d:5f:c0:2a:aa:fd:0d:
2d:40:c4:65:e9:32:90:01:e1:9a:5e:af:48:dd:bd:
68:d8:c6:1b:95:b8:7f:2b:92:41:a8:ff:4e:7d:c9:
f4:d0:c4:59:c2:3e:04:ae:08:8b:34:c7:0b:91:a7:
25:4c:a3:8d:34:91:ae:3d:17:04:99:fc:36:8b:1e:
85:45:32:30:1a:b9:88:69:52:cc:a9:e8:f8:0c:77:
86:78:5c:eb:29:c4:86:cc:be:68:1c:3d:2a:b7:60:
f6:ed:fe:69:a1:41:73:26:15:1d:be:62:2a:ce:e9:
1e:ef:87:81:64:fc:85:8e:99:1a:2f:48:73:fa:38:
c6:5d:ed:cc:c8:9d:9d:5f:29:9c:ce:03:42:7b:f3:
22:3f:08:f3:05:13:d3:1c:8a:b4:70:a3:75:b2:5f:
45:97:8c:74:f8:bb:11:ab:8a:6f:82:31:29:4a:ae:
82:d9:86:84:5a:ab:71:66:f7:9d:ec:e7:2d:59:98:
cf:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B3:BF:93:30:81:FE:73:FD:4C:C7:4D:F8:96:1B:5D:1B:48:E8:AC
X509v3 Authority Key Identifier:
keyid:EE:37:09:85:F8:3F:41:33:01:11:C3:50:CD:6B:1E:1E:EA:D5:26:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jcJhfg_QTMBEcNQzWseHurVJqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/2744d0-41a0-4434-b690-3244546f8cbf/1/7jcJhfg_QTMBEcNQzWseHurVJqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:f2:63:75:89:99:bd:61:06:38:42:67:a2:67:78:aa:18:b3:
ea:9d:7d:4f:4e:64:8e:b2:9d:ac:15:02:8d:5b:83:96:aa:37:
ed:b4:b7:b4:7e:ce:b5:9f:a4:c8:1c:68:62:92:4a:90:2c:ef:
b4:b6:57:8e:41:2f:de:56:30:d3:7d:d7:57:c8:f2:ed:43:97:
21:cf:b8:4b:9a:16:9e:c1:45:1e:43:d9:98:00:b0:58:68:a7:
d2:b7:3e:b8:f0:af:ee:17:a6:5b:86:d7:cf:53:cc:82:f9:f6:
2e:e4:98:01:fa:fe:5a:7d:06:b6:80:21:92:ef:ba:a9:aa:7e:
be:f7:17:2a:bf:34:43:75:5d:c5:28:77:db:6f:f8:d7:15:cf:
a5:61:6f:13:c0:ae:64:e1:d5:50:7d:67:a4:ee:d6:ea:33:35:
56:24:43:d3:d6:19:9a:39:6a:b9:51:09:ea:13:c4:fa:50:5d:
2f:f1:ed:0a:bc:96:8d:4c:11:e4:84:51:e8:4c:b6:39:07:47:
2b:c0:ad:97:a9:50:b3:a2:c0:66:da:4e:6d:d8:2a:aa:1d:e1:
de:28:e5:ee:af:b0:3b:3b:e9:e6:58:4c:e8:39:2a:a5:e7:60:
90:bf:17:3f:32:57:b4:25:26:c9:3e:9c:84:be:ca:69:55:2c:
09:13:36:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 04:28:58 2025 by rpki-client