Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
File: jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft (raw, json)
Hash identifier: AExXpvu7rywQLi9y1C6xpn6dz77jnhZFfDFdsMJkfZk=
Subject key identifier: A6:E6:BC:92:F4:F8:42:58:42:6A:A1:80:78:41:8E:6A:07:80:08:F0
Authority key identifier: 8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76
Certificate issuer: /CN=8c54a846632e83340e114d0d35591b3d42188b76
Certificate serial: 0196CDCFB6470A3D7AB31F57AFC2863196BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
Manifest number: 0D59
Signing time: Wed 14 May 2025 08:01:03 +0000
Manifest this update: Wed 14 May 2025 08:01:03 +0000
Manifest next update: Thu 15 May 2025 08:01:03 +0000
Files and hashes: 1: 0NQ-WA07ivHNbBCHB8RlQLxAoLU.roa (hash: yrHnQMXQ6Qe+mkwHNhl6sEUBZtgafrbZ/F8WnR+E6Bs=)
2: jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl (hash: fcET25EfxV4BcgVn6UY2UiuQSkGIQt66SpsbyvT2uTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 08:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cd:cf:b6:47:0a:3d:7a:b3:1f:57:af:c2:86:31:96:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c54a846632e83340e114d0d35591b3d42188b76
Validity
Not Before: May 14 08:01:03 2025 GMT
Not After : May 15 08:01:03 2025 GMT
Subject: CN=a6e6bc92f4f84258426aa18078418e6a078008f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:24:22:ba:95:76:38:9c:b9:21:ae:ee:90:6d:
5f:59:87:2b:f7:2e:fc:af:f9:9d:fe:3c:d0:46:7c:
4f:82:be:ea:d0:28:31:29:c2:c0:ed:dc:34:d4:cf:
2b:1e:a0:63:7d:b4:0a:1c:60:d1:f0:89:e4:da:8c:
f0:69:d4:88:7c:c2:42:01:d9:fb:a9:6e:33:26:dd:
2f:a9:01:9d:5a:a8:f2:d6:91:03:5d:64:c2:70:be:
4a:d5:0b:99:4b:9f:85:4f:06:b7:45:86:42:7d:17:
f0:ec:7f:0d:15:31:c5:4d:f1:08:a8:cc:8b:2d:bb:
03:d4:fb:c6:72:6c:7c:e1:c4:70:bb:46:d5:45:b9:
0a:2c:9b:ae:0f:f0:58:c8:2f:43:19:82:35:29:4c:
df:5c:65:d4:b5:d1:41:0e:54:0a:e9:2f:d0:34:80:
50:df:76:4b:64:ed:27:d0:63:26:45:51:a5:f4:57:
6b:f8:29:4e:49:ad:d4:ba:2e:30:67:d0:bd:f0:90:
5c:23:71:28:72:3c:c9:47:4c:1b:c3:7a:cb:a0:74:
56:db:40:7a:18:9c:61:d9:9a:68:fa:3f:a2:f1:ec:
e3:01:2c:92:af:1d:fb:e2:25:5f:68:e7:5e:a5:4d:
39:b5:d1:d1:a9:c1:a9:90:55:86:5f:80:24:9f:90:
9c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:E6:BC:92:F4:F8:42:58:42:6A:A1:80:78:41:8E:6A:07:80:08:F0
X509v3 Authority Key Identifier:
keyid:8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:7a:2f:0f:f4:65:f8:c2:e2:63:32:1d:97:90:89:be:6b:b8:
ed:51:72:e1:8e:85:1d:41:a3:45:0d:52:df:47:70:48:90:39:
76:45:87:33:34:24:02:2a:f6:f0:3d:35:ec:09:ef:2e:11:73:
c8:a8:5e:62:3c:25:59:bb:07:25:6e:ba:9d:52:7c:f5:e6:45:
4d:2b:08:97:c8:9e:09:23:2d:c8:f7:25:c2:3a:f7:1c:d8:e1:
64:e8:48:d6:f5:16:08:57:69:b3:3a:01:bd:b0:33:21:a6:72:
5b:8e:d0:d9:2c:19:cb:9c:86:bc:c6:0f:1c:2c:cf:bf:95:5f:
5f:c6:ad:07:b2:4c:09:5d:f9:d6:a5:ca:28:ae:93:52:5e:57:
2f:ed:61:ff:b8:2e:76:ae:58:3b:1b:dc:7c:4b:6c:ba:e2:5c:
c2:fc:2a:ce:30:78:b1:2a:32:cb:b6:be:89:6f:63:0a:ea:e0:
b4:f2:75:7e:e7:99:41:a0:0b:fa:86:ef:23:19:f6:6a:9d:b6:
81:ee:3f:17:f4:8e:c9:1a:36:98:cb:d9:dc:a0:96:e6:24:90:
7f:88:95:ea:2c:df:95:74:96:98:c1:ef:c8:a4:80:ce:1c:28:
53:4a:36:7a:20:20:df:f8:6e:ac:b6:d6:88:3d:b5:9e:5a:fd:
45:22:93:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 15:28:27 2025 by rpki-client