Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json)
Hash identifier: HSdTsKFwD79DZuMe/N3xzHY355/QV5ZXj9SHlurzXQ4=
Subject key identifier: 9A:90:6C:EC:15:4E:88:2A:16:AD:FD:D5:6A:61:2E:78:B3:60:75:7D
Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Certificate serial: 0196BB5B1962194FABB302B0811D0F33D68A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
Manifest number: E0
Signing time: Sat 10 May 2025 18:00:31 +0000
Manifest this update: Sat 10 May 2025 18:00:31 +0000
Manifest next update: Sun 11 May 2025 18:00:31 +0000
Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: Qkcp0rSQr+Z7bO4Ep69F+ScoUUuUEJ6Zb9xP1IT9YYE=)
2: DyBY2wfHB6a4dl33U3SXwgLJDGU.roa (hash: WRQJvvPjJahE1qm/vBTCrYOROs7sZwpvslZhT6hCk+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:5b:19:62:19:4f:ab:b3:02:b0:81:1d:0f:33:d6:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Validity
Not Before: May 10 18:00:31 2025 GMT
Not After : May 11 18:00:31 2025 GMT
Subject: CN=9a906cec154e882a16adfdd56a612e78b360757d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:98:c7:37:51:55:bd:99:29:1f:21:10:9d:7a:
94:53:e1:dd:ad:30:c9:ef:e9:70:80:34:2f:df:9e:
62:01:8b:ef:04:e4:24:24:14:a5:0c:1c:88:9d:9c:
a1:bc:05:40:5e:89:71:67:d6:a2:b7:e4:6a:69:69:
d3:84:31:48:c5:2e:5b:9b:09:34:8e:05:04:57:2d:
e1:ac:b9:80:25:89:06:cc:ac:51:64:5f:3c:8b:10:
e2:7e:b8:60:82:bf:e5:58:24:ad:6c:3d:45:67:f0:
7c:e6:4c:64:4a:0b:0d:a7:1c:67:3e:36:c9:e6:a3:
dc:3d:48:dc:c9:b6:4f:fb:6c:f4:2a:f5:77:a8:0e:
23:6f:b1:cc:c0:bc:f4:0e:0b:90:df:8d:74:41:79:
64:3a:60:f3:80:3b:6c:42:45:8b:60:2b:be:f4:34:
1a:4a:fa:95:2e:e8:fb:70:e2:30:1c:54:32:87:ea:
c6:ce:16:a5:41:5b:a7:da:b1:69:26:91:7f:e0:f3:
f1:02:20:99:e9:33:14:3d:db:c8:2e:a8:cb:7e:87:
56:63:e1:63:f6:cb:43:c7:9c:df:1f:51:05:85:e2:
76:6a:47:6d:c8:67:d0:1d:86:c3:6f:98:ce:9e:58:
3b:cd:61:60:dd:5d:b1:c3:f2:5c:24:77:67:ba:a9:
60:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:90:6C:EC:15:4E:88:2A:16:AD:FD:D5:6A:61:2E:78:B3:60:75:7D
X509v3 Authority Key Identifier:
keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:86:9b:d2:1e:90:5c:d3:6b:e4:f4:fa:c2:d8:04:a6:32:4d:
04:28:0d:e1:a3:83:79:fa:9c:69:54:51:84:08:57:8c:e2:63:
84:27:ab:bd:7c:80:fe:ac:27:5a:ee:3f:35:ff:ed:54:d0:7d:
07:26:6b:5e:95:40:3c:db:c6:11:f8:b3:25:30:ec:b7:65:ca:
b4:63:3a:47:26:6e:fd:b0:16:8e:89:12:99:1b:88:0e:a7:e0:
fd:32:8f:b5:be:7f:70:94:f5:07:a9:03:2f:42:08:94:1e:04:
94:bc:ba:b5:14:6a:2d:14:d8:21:d7:e1:d2:a5:3b:e2:bc:94:
f2:74:28:4f:1b:2c:e0:b3:6a:c1:53:07:b2:34:f5:17:4d:07:
7f:34:ed:6f:f2:fc:7b:69:d7:e6:4f:33:18:45:2c:b9:83:86:
67:67:47:56:7d:90:1a:36:36:8d:e6:63:03:8e:ba:22:76:19:
0e:f1:80:1c:c6:72:c5:3f:07:df:18:0d:c5:e3:66:40:1a:d1:
8d:2d:be:85:16:b3:a1:13:b8:37:b0:06:cb:a9:8a:dd:c3:23:
27:cc:13:b0:7f:d7:e1:47:27:0c:fa:c7:c3:84:33:2f:22:3b:
e4:eb:78:a3:22:67:c8:e9:d1:39:0a:02:3a:38:f2:f2:99:c6:
e9:2f:8b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 23:09:29 2025 by rpki-client