Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json)
Hash identifier: /mxaKy0TleLsqVoloBATfcp0b+GXSEdqdiCWgXjd9AA=
Subject key identifier: DB:94:41:18:77:18:74:87:C4:4A:86:CC:18:DB:91:E5:68:70:1E:FF
Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782
Certificate serial: 0196BFA5FEF7C43B8E42951BF72DA521DA4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
Manifest number: 0C0C
Signing time: Sun 11 May 2025 14:00:49 +0000
Manifest this update: Sun 11 May 2025 14:00:49 +0000
Manifest next update: Mon 12 May 2025 14:00:49 +0000
Files and hashes: 1: KH_j-0tZP7kZGa_RGAqb8KjeOKE.roa (hash: nJQFit94GD/cIbI8GNPP+c6lmHYIPdofJMVeQt5hkQ4=)
2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: GsnNT4nwcOrvRzx3wlvL4K3DUY6MpO+MJutOERr9Nb4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:a5:fe:f7:c4:3b:8e:42:95:1b:f7:2d:a5:21:da:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782
Validity
Not Before: May 11 14:00:49 2025 GMT
Not After : May 12 14:00:49 2025 GMT
Subject: CN=db94411877187487c44a86cc18db91e568701eff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:28:c6:3a:c1:4a:1b:23:81:b2:b2:27:ae:aa:
15:27:b7:ae:1e:bd:27:5b:4a:68:17:e4:5f:59:85:
f0:e1:fb:39:4b:1a:ee:18:7d:cd:8b:43:54:ad:6f:
d7:6d:9a:ee:52:86:eb:4d:0c:4b:df:3b:5a:ea:54:
78:51:e5:3f:bd:a7:e1:b3:5a:03:91:df:fa:1a:5d:
32:c4:e9:5d:71:d3:ca:60:da:fa:e5:86:01:4f:a8:
d1:a5:5b:05:94:0f:84:79:f6:94:0d:b8:48:e4:39:
0d:ce:cb:0d:80:fa:8a:0e:1b:90:32:59:62:6e:19:
41:79:1c:8b:69:14:43:d2:f5:e0:03:d9:24:fe:37:
6f:e0:59:a8:bb:31:9e:b2:7c:7c:eb:db:3f:6b:49:
4c:b8:92:ff:b2:d2:fa:4c:c7:c8:50:2d:f0:db:a8:
60:5a:7e:7b:ac:d9:82:ef:28:88:8f:5a:75:bd:f5:
60:34:20:ca:54:a6:40:34:20:ce:fd:52:7a:53:12:
6c:f9:21:44:50:77:d6:dd:91:78:de:bd:49:47:c2:
56:44:f5:79:b9:8b:67:ca:1b:ca:b3:bd:75:32:fa:
2e:fb:40:f1:30:dc:48:a1:0c:df:0c:65:3f:d2:fa:
1c:bf:10:ef:96:a9:65:5e:b8:9c:37:6d:86:91:58:
f3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:94:41:18:77:18:74:87:C4:4A:86:CC:18:DB:91:E5:68:70:1E:FF
X509v3 Authority Key Identifier:
keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:4c:30:b9:b7:4c:36:4b:f4:de:01:29:07:f3:b9:27:ab:62:
a2:06:25:1c:c5:e2:57:f5:b0:de:2e:da:43:24:16:8c:27:1a:
2e:b7:18:ea:7e:7a:82:d6:61:5c:a4:43:08:a0:17:7c:57:1a:
26:3f:33:4e:e7:84:b4:24:c9:36:69:db:15:8c:d3:55:92:0a:
8e:e6:fb:47:34:51:79:34:b3:cf:ef:9b:5d:6b:98:04:ec:16:
60:d6:4b:8e:91:2c:67:00:80:17:94:f5:16:6b:17:a6:6d:4e:
d0:06:c5:64:a4:90:ae:b1:40:e0:ac:45:79:46:62:ab:5e:9e:
eb:bf:8b:8d:da:59:c7:e3:34:4f:5d:e8:a0:ce:95:c3:36:07:
6b:c4:3c:15:69:ba:41:9b:4d:f0:9e:6d:63:48:84:84:45:a4:
58:1c:cf:7f:b8:90:46:ff:fa:d6:7d:61:72:4a:03:f9:a6:dd:
2f:21:f8:28:a1:90:8e:3b:61:4d:e2:5f:d3:a1:ce:63:49:d7:
39:de:3c:59:44:87:b2:bc:3c:2c:5c:aa:04:d5:d5:a7:f8:8b:
4c:17:69:5b:ea:f2:8d:46:ea:41:7c:61:53:61:4e:7f:57:5c:
85:c8:55:7e:ad:63:16:58:24:6a:27:34:53:24:0d:37:e2:b0:
fe:6e:4d:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 19:19:06 2025 by rpki-client