Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
File: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft (raw, json)
Hash identifier: UkiDA9uStZEjspLCx5ysJBXHDA3YHov4lZpqyjPN46o=
Subject key identifier: D9:CE:EC:38:30:D3:FA:B4:50:C3:B7:8D:FA:70:9D:4F:BD:31:6F:9B
Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Certificate serial: 0196ACFB2DD69DFC77E0686166E2DC5278F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
Manifest number: 0EF3
Signing time: Wed 07 May 2025 23:01:04 +0000
Manifest this update: Wed 07 May 2025 23:01:04 +0000
Manifest next update: Thu 08 May 2025 23:01:04 +0000
Files and hashes: 1: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl (hash: jZOJOII3q2iF+CYbt/9RM6typzmnPpGInSJdQGPXQ4Q=)
2: Ut4z4tImR83ncGrwpXNPaCBz4dc.roa (hash: x3Tb8uXmHgRhBdCjWUywrl5EoWV8hOlCverEGcV2UXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 20:38:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ac:fb:2d:d6:9d:fc:77:e0:68:61:66:e2:dc:52:78:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Validity
Not Before: May 7 23:01:04 2025 GMT
Not After : May 8 23:01:04 2025 GMT
Subject: CN=d9ceec3830d3fab450c3b78dfa709d4fbd316f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9f:d4:e3:d5:17:17:1d:91:9a:16:8e:dc:64:
04:30:a8:f8:0b:4c:73:5f:b7:73:c2:b6:cf:17:b5:
85:4f:93:dd:45:fb:ca:85:92:e9:8d:46:fb:02:8b:
e4:b8:1a:f5:a4:27:6e:97:a3:2d:fa:00:bc:06:e8:
67:77:bf:d1:9e:bc:d2:58:6c:43:ad:6f:f7:24:87:
36:5f:5a:09:e1:5d:96:57:f5:45:0f:89:8b:fa:27:
da:57:82:a2:d8:52:68:5d:5f:bd:4a:75:be:6d:a1:
bb:14:ac:07:5d:6a:8e:1b:48:65:56:c5:47:19:bb:
a1:ca:c8:68:03:3b:3e:7e:d9:36:3c:45:bd:c5:e9:
96:79:12:8c:01:93:ac:8b:5e:52:01:32:4d:70:b9:
33:f0:63:2c:16:42:ee:50:16:d0:65:97:b2:86:83:
c4:5e:da:a6:1d:04:03:13:0e:ec:8b:67:51:a1:43:
e8:97:e2:af:12:67:99:26:28:2b:e4:b2:b0:44:bb:
7f:cc:8d:39:f2:d0:00:32:e5:70:f3:3e:90:e7:c2:
e4:2e:1a:70:6e:c6:25:63:a3:d7:c7:ff:2f:c6:7e:
73:fb:b7:de:15:3d:f8:c8:b9:1d:1e:7a:88:a8:d2:
e5:99:da:95:0a:23:9e:69:60:8d:2f:90:ff:f1:94:
b2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:CE:EC:38:30:D3:FA:B4:50:C3:B7:8D:FA:70:9D:4F:BD:31:6F:9B
X509v3 Authority Key Identifier:
keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:c0:e2:37:5b:74:ee:83:3d:ed:b6:bf:10:c0:d4:13:15:ac:
bf:1a:82:e3:38:3d:08:cd:a2:18:6b:16:30:e2:b3:d2:7e:97:
9a:20:35:9f:c1:89:c4:bc:03:61:f1:15:e5:28:6f:ed:03:2c:
52:dc:fa:1f:40:da:3c:74:a7:d8:3a:08:20:7e:0c:31:80:19:
02:dc:21:95:5a:be:eb:ce:fe:1c:9f:69:00:f1:27:f5:41:07:
89:d4:c4:eb:8c:73:f4:32:a6:c8:65:e5:df:6c:c6:9f:97:43:
82:17:72:59:4a:df:71:d9:64:45:43:06:29:db:c2:72:10:3d:
32:f8:b0:5b:b7:74:38:c8:4d:1a:a4:54:7d:3f:10:71:79:39:
24:f6:65:58:c5:12:a6:4c:f3:d3:d0:19:85:b0:dc:6f:16:61:
9d:7e:0d:58:03:9e:e3:8b:d9:09:f4:5c:68:03:bc:8b:93:27:
73:78:34:40:78:08:e4:4a:85:ed:ed:96:98:22:5d:93:bb:a1:
c7:21:fe:00:2e:97:7e:e2:e4:4c:f0:4a:ad:aa:7c:69:36:01:
e5:70:ca:70:65:7e:d1:65:0a:61:cc:8e:f4:a0:43:16:f4:7f:
7b:2a:3b:ec:91:20:5d:60:35:6a:10:3d:48:1c:06:72:58:34:
e4:5b:db:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 01:48:39 2025 by rpki-client