Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/5ea569-f174-45c5-9db7-2af095ffc9bb/1/0fmHr1rbIwTUJvVA3l1lBUUjHlA.mft
File: 0fmHr1rbIwTUJvVA3l1lBUUjHlA.mft (raw, json)
Hash identifier: 4bcyNwxnBZRG6G1+E0DrtOwT/R7a7ftqbSnwkI5NksY=
Subject key identifier: B2:08:C6:17:9B:6E:91:5A:A1:BA:26:AB:5B:4B:22:C0:A4:F8:10:7E
Authority key identifier: D1:F9:87:AF:5A:DB:23:04:D4:26:F5:40:DE:5D:65:05:45:23:1E:50
Certificate issuer: /CN=d1f987af5adb2304d426f540de5d650545231e50
Certificate serial: 0196D32C95F552493763EAB8F4131A172FFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fmHr1rbIwTUJvVA3l1lBUUjHlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/5ea569-f174-45c5-9db7-2af095ffc9bb/1/0fmHr1rbIwTUJvVA3l1lBUUjHlA.mft
Manifest number: 0A27
Signing time: Thu 15 May 2025 09:00:36 +0000
Manifest this update: Thu 15 May 2025 09:00:36 +0000
Manifest next update: Fri 16 May 2025 09:00:36 +0000
Files and hashes: 1: 0fmHr1rbIwTUJvVA3l1lBUUjHlA.crl (hash: OwUAZTJ9OEzRc3nGMSfCzKkxOo00ybFI0z7oKd/0V8Y=)
2: 5LrP6fsEeipB-xjaCGTQi9KsiHU.roa (hash: IUrzC+/E4lKM4F7rtTCN//MYlbyHBk9E/FLwLHHLeZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/5ea569-f174-45c5-9db7-2af095ffc9bb/1/0fmHr1rbIwTUJvVA3l1lBUUjHlA.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/5ea569-f174-45c5-9db7-2af095ffc9bb/1/0fmHr1rbIwTUJvVA3l1lBUUjHlA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0fmHr1rbIwTUJvVA3l1lBUUjHlA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d3:2c:95:f5:52:49:37:63:ea:b8:f4:13:1a:17:2f:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f987af5adb2304d426f540de5d650545231e50
Validity
Not Before: May 15 09:00:36 2025 GMT
Not After : May 16 09:00:36 2025 GMT
Subject: CN=b208c6179b6e915aa1ba26ab5b4b22c0a4f8107e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e3:48:de:94:d7:2e:d1:3a:cf:0a:6b:5c:70:
8a:c9:d0:12:0e:7c:6b:2b:e5:6c:6f:f0:e0:f4:87:
2d:b6:a7:82:4f:2f:25:21:5c:a4:42:d3:c1:f9:42:
9b:fc:6a:29:e8:53:48:c9:e0:d7:d4:28:27:f5:e8:
b9:5f:13:a6:d3:df:30:54:30:4a:30:7f:22:88:b5:
92:08:a7:86:82:b2:fc:93:17:68:3a:4e:63:8b:60:
49:87:b9:a6:2a:ad:37:30:a3:0a:c4:68:71:d4:33:
22:c8:cc:58:81:48:d4:69:72:3a:99:b8:ed:d4:c8:
82:79:06:84:a6:9a:33:8b:0d:d1:24:d4:80:07:9d:
fb:ba:f3:ff:27:75:33:cc:9f:16:d9:0e:79:44:4b:
93:35:cb:4b:42:37:89:b9:e9:56:e2:c0:68:b8:1c:
d4:7d:7d:a2:d0:8a:d1:d6:0e:ec:a5:f2:cb:48:2b:
bd:96:db:14:55:06:02:8a:3d:a3:fe:81:1d:7d:92:
76:a8:32:ef:2f:cb:cd:f2:a3:23:b9:d4:7b:79:b4:
9c:92:97:82:d2:7a:3e:14:74:60:eb:6c:99:af:4b:
95:85:ee:6e:55:63:81:04:be:f5:4b:56:98:db:01:
a3:45:ac:b8:24:6c:e9:5e:dc:b2:5d:63:4a:0e:65:
9d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:08:C6:17:9B:6E:91:5A:A1:BA:26:AB:5B:4B:22:C0:A4:F8:10:7E
X509v3 Authority Key Identifier:
keyid:D1:F9:87:AF:5A:DB:23:04:D4:26:F5:40:DE:5D:65:05:45:23:1E:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fmHr1rbIwTUJvVA3l1lBUUjHlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/5ea569-f174-45c5-9db7-2af095ffc9bb/1/0fmHr1rbIwTUJvVA3l1lBUUjHlA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/5ea569-f174-45c5-9db7-2af095ffc9bb/1/0fmHr1rbIwTUJvVA3l1lBUUjHlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:37:e8:a6:3e:5e:2e:13:d0:f2:2c:97:7c:8a:b3:28:00:52:
4a:d1:38:a1:ed:a0:93:48:02:c8:58:c7:99:15:ac:d1:92:db:
65:3b:9b:c8:93:78:c7:72:04:4d:94:c6:98:b0:62:d9:38:b2:
4e:cc:39:f4:d9:e8:3a:67:85:b6:c9:31:ea:3e:42:d2:c2:91:
ec:ff:57:0a:03:ff:bb:17:68:00:5c:06:35:b3:25:11:0c:aa:
bf:5b:71:a3:16:6c:49:5b:9a:d5:ef:17:60:1a:74:52:f7:a6:
f0:fb:2c:02:96:fb:2e:99:7f:f8:2a:95:1b:1f:01:ce:09:fe:
33:6a:cc:95:0a:cd:a9:a1:3c:e7:c6:84:c8:f4:f6:ba:5a:3e:
31:ca:be:c1:aa:ca:fd:6a:8f:c2:cf:14:0e:d2:88:ea:f0:78:
c8:ef:bc:e2:a2:cf:c8:67:82:de:65:c4:e6:f3:2f:1e:11:9c:
51:06:40:76:db:62:21:63:03:b6:39:62:e6:03:d9:3e:ff:48:
24:d6:14:a5:0e:df:53:b6:8c:c0:e9:0e:b1:97:cd:9d:9a:4c:
9d:80:bb:76:1c:f3:e4:46:c1:a1:31:6e:de:21:e9:59:21:ec:
70:cd:b7:0d:2c:30:1a:89:4c:2f:f8:7b:49:90:aa:bf:d4:c8:
28:f4:bc:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 10:51:27 2025 by rpki-client