Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
File: wb80sZClHOUwAleRGvMEBPSVH7Y.mft (raw, json)
Hash identifier: A6sbgglDP7ZHl8nSpSpQUO5W0/dCyKaakagSxJcnvws=
Subject key identifier: EB:7C:40:A4:42:D2:8C:D9:17:C1:F9:FE:BE:D3:A1:15:CE:9D:02:F7
Authority key identifier: C1:BF:34:B1:90:A5:1C:E5:30:02:57:91:1A:F3:04:04:F4:95:1F:B6
Certificate issuer: /CN=c1bf34b190a51ce5300257911af30404f4951fb6
Certificate serial: 0196AE0D8261503ECF6E9EE9B4CE0541B736
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
Manifest number: 152A
Signing time: Thu 08 May 2025 04:00:42 +0000
Manifest this update: Thu 08 May 2025 04:00:42 +0000
Manifest next update: Fri 09 May 2025 04:00:42 +0000
Files and hashes: 1: 0tyV27ZaRKIuc5h8kTDsBiv4BZI.roa (hash: 1dyOdZnQpGVWWsvnKswgEprRwbXy0vsePve+ulQremU=)
2: wb80sZClHOUwAleRGvMEBPSVH7Y.crl (hash: nQeU6nkk7YT5L4wHD/XSL0Zqm2UrUqG+kllKeD3sIWI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:0d:82:61:50:3e:cf:6e:9e:e9:b4:ce:05:41:b7:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bf34b190a51ce5300257911af30404f4951fb6
Validity
Not Before: May 8 04:00:42 2025 GMT
Not After : May 9 04:00:42 2025 GMT
Subject: CN=eb7c40a442d28cd917c1f9febed3a115ce9d02f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:f2:4b:48:08:37:f3:e7:63:f2:7a:6e:5b:47:
34:aa:af:7f:13:62:4f:4b:24:ea:34:72:0e:8a:ac:
04:75:bf:8f:f4:b4:c0:20:5d:d2:35:cf:1b:3f:a1:
7c:70:b6:9b:66:64:b0:66:9d:8c:1b:bf:00:13:63:
18:19:b5:b3:3f:37:9c:e6:1a:30:e9:cd:b1:88:7d:
a3:0d:00:43:76:43:5b:fd:7b:58:5e:c7:1e:af:2f:
30:96:c4:b4:cb:1a:d6:6d:ec:92:30:d2:95:3c:81:
08:a1:a1:95:4b:9c:5e:12:b1:38:12:3a:5d:b2:0b:
21:2e:f3:01:46:b6:fa:97:3d:c4:55:d6:f2:56:1f:
12:08:51:2b:bc:3e:ef:65:82:6e:52:83:f4:9f:dc:
15:5d:da:92:21:b2:0a:6f:9f:c7:7f:bf:ef:ae:d1:
08:cb:99:f0:9b:e4:2e:87:b9:20:f6:18:0c:aa:e8:
37:88:bc:fe:f3:5a:0d:d2:4b:e5:75:4f:49:e7:ae:
54:82:12:64:f7:38:00:e5:ae:b5:56:b1:aa:bd:52:
67:3f:f8:5a:4d:3b:80:52:ed:b6:67:7c:99:fd:fd:
26:be:f1:56:be:4e:88:c7:27:e3:86:5c:72:b3:94:
96:f2:5c:bb:f9:2f:e5:a2:79:37:6e:bf:fb:c7:5c:
a4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:7C:40:A4:42:D2:8C:D9:17:C1:F9:FE:BE:D3:A1:15:CE:9D:02:F7
X509v3 Authority Key Identifier:
keyid:C1:BF:34:B1:90:A5:1C:E5:30:02:57:91:1A:F3:04:04:F4:95:1F:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:c9:32:62:b7:78:38:dc:f6:6d:63:6d:64:8f:39:b8:53:69:
a6:3f:9a:20:c1:90:1d:13:4c:bf:65:53:2e:73:15:4e:d2:1f:
16:71:75:49:8a:34:ba:b2:48:10:97:af:5f:78:1a:72:63:e5:
0b:b5:99:cb:e7:48:59:01:a4:bc:a7:3e:6a:6c:ad:aa:3a:e2:
30:94:39:fe:32:02:31:d4:60:2a:2c:eb:af:43:3f:48:07:57:
1f:e3:fe:ac:57:88:24:d5:b2:18:0b:aa:2f:fd:ad:1b:cb:56:
c2:64:8c:1f:c3:28:4a:a3:40:8f:c3:df:aa:a1:f9:41:8b:56:
c1:37:18:8e:f9:4e:a9:84:22:63:23:99:86:67:dc:f1:b1:94:
44:c1:98:3c:e7:1a:7b:91:bc:f3:a3:ad:54:d9:ed:16:ed:ab:
e7:bb:89:d6:a1:f4:a2:40:c4:a6:0d:00:b9:cb:5d:a9:75:15:
85:80:d1:b1:a7:55:a6:8b:03:a2:49:33:fe:4b:19:48:77:81:
62:a2:e4:ce:c6:7a:af:c9:6a:04:24:17:76:22:74:0b:19:7f:
3a:f4:00:40:47:34:7b:6e:b3:2b:cb:2a:f4:86:8c:2e:4d:b6:
0b:0a:27:18:59:37:98:de:65:a3:5c:6f:f3:d7:6a:42:28:a9:
74:c7:5d:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 12:54:57 2025 by rpki-client