Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
File: 0mHPvAfsMGN33LFql6EWDHptgsw.mft (raw, json)
Hash identifier: IesRP7ctPoBQc4NgSdMM0N+5aDSQOn3cwSZsVMJ1Dlk=
Subject key identifier: A9:D8:1E:49:6C:6B:44:4C:38:E6:A2:DC:31:09:52:9B:0F:D8:0D:11
Authority key identifier: D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC
Certificate issuer: /CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc
Certificate serial: 0196C615E510B3CD3304AC0437C8E4F1E484
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
Manifest number: 0179
Signing time: Mon 12 May 2025 20:00:45 +0000
Manifest this update: Mon 12 May 2025 20:00:45 +0000
Manifest next update: Tue 13 May 2025 20:00:45 +0000
Files and hashes: 1: 0mHPvAfsMGN33LFql6EWDHptgsw.crl (hash: lJKFsOvYWLcDH0cPhgxaX9dBQx0L1Ed4uofoRdP69Tk=)
2: 1-242YNLxFtHiZKrZjOTCTUI_hX4.roa (hash: Zl/0hNDNG1rQGa8HsGyytZ4/ZO9Krs9kfipHSTu8iZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:15:e5:10:b3:cd:33:04:ac:04:37:c8:e4:f1:e4:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d261cfbc07ec306377dcb16a97a1160c7a6d82cc
Validity
Not Before: May 12 20:00:45 2025 GMT
Not After : May 13 20:00:45 2025 GMT
Subject: CN=a9d81e496c6b444c38e6a2dc3109529b0fd80d11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:88:a4:e6:2c:d2:7f:13:14:29:1d:11:d6:ed:
5e:93:2a:1f:65:a6:3d:4d:6f:8b:a5:2a:9a:fb:59:
aa:a3:0d:f3:27:ec:e9:a3:ac:ac:68:be:ea:c3:54:
14:e4:d0:dd:66:93:bb:a5:a4:7a:74:30:23:2b:57:
e5:d7:a4:1a:ce:a2:85:f6:ad:fc:8c:c1:41:06:6e:
15:96:42:aa:ee:65:78:fe:6d:b6:5e:0a:f8:9a:e9:
1d:f8:69:7e:40:a0:bb:ee:e3:16:b7:0c:00:3c:14:
97:90:c4:61:47:77:cb:26:c5:e8:8f:df:ff:56:5d:
9a:9c:78:8c:4f:93:b1:45:e9:da:bf:ce:80:e6:8b:
b6:b3:4c:ef:05:24:79:7d:1a:06:ba:41:38:9b:c6:
36:da:39:b4:69:a1:a6:f6:88:07:12:d8:c4:69:12:
e9:8b:91:f2:31:b7:fc:93:d1:bb:c7:ee:1c:36:34:
f5:a6:46:be:32:bd:9d:34:fe:27:b6:cc:b6:59:60:
9d:8b:1b:88:ed:a5:21:c6:ad:ca:55:6e:85:ab:cb:
b8:4f:fa:59:26:2d:3f:91:1b:31:a0:c4:3d:3a:7e:
e9:29:a7:34:f1:be:98:01:63:71:9a:18:b5:9d:e8:
3e:3e:32:51:3e:22:61:99:68:14:2e:cd:f0:94:7d:
26:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D8:1E:49:6C:6B:44:4C:38:E6:A2:DC:31:09:52:9B:0F:D8:0D:11
X509v3 Authority Key Identifier:
keyid:D2:61:CF:BC:07:EC:30:63:77:DC:B1:6A:97:A1:16:0C:7A:6D:82:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mHPvAfsMGN33LFql6EWDHptgsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/4eafc9-5473-4602-a149-922a16d117dd/1/0mHPvAfsMGN33LFql6EWDHptgsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:34:d3:4d:3f:32:c4:3a:cc:71:ac:3b:74:08:89:1b:66:97:
a9:69:58:32:4a:48:78:72:f7:50:e3:65:87:58:b0:a2:aa:20:
d3:09:13:a4:a3:16:aa:26:43:be:ef:82:c9:29:3f:9d:47:02:
5c:a6:f3:ba:90:af:29:aa:9f:8a:71:87:a7:af:3f:6b:8d:c7:
fa:36:c4:10:ce:d0:91:d5:e8:d3:1a:9f:94:a1:28:46:72:77:
4d:69:3b:76:92:af:c1:b9:e1:c3:91:18:b5:b5:32:64:e0:a3:
25:9d:74:09:0d:b6:5c:6b:16:b9:e3:e8:5b:8a:2b:74:91:c2:
39:87:a1:b8:0f:b5:ac:0c:8d:ad:23:72:be:11:6e:b7:e6:55:
c6:5f:f4:df:9c:b8:9f:cc:7f:96:28:79:a9:5a:c2:91:8d:fb:
3b:e3:04:95:f8:91:e6:59:f3:1a:05:54:0f:67:d6:58:ee:a3:
3d:89:cd:e6:f1:78:86:23:9b:62:c2:70:33:5c:93:5d:53:6c:
47:a8:74:8a:f6:62:39:54:01:00:cf:0f:57:cd:b2:e2:8e:67:
1a:48:ae:bc:00:f1:94:04:a2:f7:69:66:cd:94:b3:0c:dc:1e:
68:62:cd:a8:05:1b:2b:7c:74:4b:02:98:3c:51:b5:38:67:7f:
26:4c:99:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 22:57:09 2025 by rpki-client