Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.mft
File: CQggTXz1vEqrOP-jnaOmge0he9Q.mft (raw, json)
Hash identifier: aVJU+r7+Gy06x5QdVWLR+iYZtDnng5FpUJHsoVLhsCc=
Subject key identifier: 92:B7:4A:38:BB:AC:FD:9C:03:3A:69:8A:56:31:C9:23:F2:53:66:D5
Authority key identifier: 09:08:20:4D:7C:F5:BC:4A:AB:38:FF:A3:9D:A3:A6:81:ED:21:7B:D4
Certificate issuer: /CN=0908204d7cf5bc4aab38ffa39da3a681ed217bd4
Certificate serial: 0196AF56BAD52D954EA284F349C855B1EB5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CQggTXz1vEqrOP-jnaOmge0he9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.mft
Manifest number: 152C
Signing time: Thu 08 May 2025 10:00:18 +0000
Manifest this update: Thu 08 May 2025 10:00:18 +0000
Manifest next update: Fri 09 May 2025 10:00:18 +0000
Files and hashes: 1: CQggTXz1vEqrOP-jnaOmge0he9Q.crl (hash: eZ3eQ4Z7lWhoWtUXqMzCm5xsW3a1aft3wFkBRxhT0PA=)
2: sDPpx-mL_-TYo49AUalN83Hb7rw.roa (hash: TLER53MCgePm+J2o6lGDLT56kpvbjUNH4PxF0iwFFXE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/CQggTXz1vEqrOP-jnaOmge0he9Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 10:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:56:ba:d5:2d:95:4e:a2:84:f3:49:c8:55:b1:eb:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0908204d7cf5bc4aab38ffa39da3a681ed217bd4
Validity
Not Before: May 8 10:00:18 2025 GMT
Not After : May 9 10:00:18 2025 GMT
Subject: CN=92b74a38bbacfd9c033a698a5631c923f25366d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:36:a0:a4:db:27:96:08:90:9b:f1:d5:c8:68:
57:3b:2f:f9:34:40:af:b8:eb:7c:e1:d6:f7:3b:0d:
2f:b7:7b:8d:81:dd:b0:aa:9f:03:e5:5b:46:80:64:
92:a6:f2:49:7a:6f:d5:75:68:c9:e0:4e:ae:14:dc:
dc:d9:35:7c:4e:5f:3e:29:f7:01:2a:5e:98:2c:79:
82:e3:79:a7:1e:6b:f6:2e:5f:1f:36:47:21:dd:a7:
5e:56:c0:cc:b2:62:1e:dc:38:d3:fc:67:11:fc:ec:
af:19:c8:8b:25:ae:c9:d2:73:15:53:33:eb:bc:e7:
29:9f:61:9e:d5:47:5d:05:94:0f:66:1a:6b:35:5b:
ec:10:2c:1a:3c:67:2a:8a:ed:7b:f0:c3:66:ed:20:
82:77:df:49:da:ed:87:05:d7:c6:c5:a5:cf:36:8d:
8e:ef:ff:3f:f6:c6:66:72:e3:eb:a6:35:c8:5f:1d:
9d:f8:f3:96:61:0c:72:a9:e2:08:dd:0a:26:44:99:
3b:77:2e:84:a6:03:50:d5:9f:c2:77:de:05:41:a3:
f7:0a:bb:a4:d6:c6:90:ee:8f:65:db:5c:d2:88:f2:
fc:bb:0d:2e:92:f0:34:79:4a:c1:f3:26:61:94:7e:
d4:d1:86:36:65:a2:5f:a2:fe:df:a1:85:75:a0:81:
16:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:B7:4A:38:BB:AC:FD:9C:03:3A:69:8A:56:31:C9:23:F2:53:66:D5
X509v3 Authority Key Identifier:
keyid:09:08:20:4D:7C:F5:BC:4A:AB:38:FF:A3:9D:A3:A6:81:ED:21:7B:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CQggTXz1vEqrOP-jnaOmge0he9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/db9e58-ee42-4a10-8222-8823f111df07/1/CQggTXz1vEqrOP-jnaOmge0he9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:28:ed:6c:5a:29:9e:e6:5b:07:5c:67:eb:bb:1e:fb:9b:95:
b0:c1:2d:39:6f:4b:d4:d9:5d:7e:53:e3:f8:eb:44:a7:1a:ef:
ae:72:fe:d0:da:7a:8f:92:7a:34:a7:e9:f2:c7:32:57:3e:74:
68:d4:1b:a4:48:9d:e2:69:ec:9d:be:5e:4d:15:4c:5f:ac:10:
19:96:a9:9c:3b:5f:64:70:26:62:99:0b:dd:b8:38:4f:cc:b8:
b7:ff:87:6e:49:ac:77:99:74:54:42:d0:65:1c:17:da:d3:e2:
c1:ed:a3:83:98:10:83:3a:d4:18:8d:61:c0:7e:97:8f:e2:93:
9a:15:f0:d2:cc:bd:d5:8b:4e:4f:6b:b4:fd:0d:84:9d:57:62:
6d:9f:80:ab:b9:c0:6b:f8:89:ef:51:ef:22:8d:2e:97:bc:7b:
93:a5:f8:97:7b:77:e7:0a:f9:5a:9a:84:b0:1e:37:f9:9a:e3:
7f:79:df:98:d7:8a:c9:2f:ba:74:cf:8d:6b:48:ac:c1:72:20:
f7:cf:09:e3:4d:7f:e6:7b:d2:6d:a3:ca:ab:f6:b1:a7:e1:b6:
63:5a:77:11:34:23:84:b2:f4:8a:01:48:c2:29:a0:df:27:95:
47:f5:1e:be:eb:36:cc:a0:8b:9a:0e:99:08:67:5d:cb:e0:81:
26:2e:87:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 20:38:24 2025 by rpki-client