Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.mft
File: D5x3odzbju1izTyoClFE3E4kP04.mft (raw, json)
Hash identifier: BC5Xgo+wvF37/0oajVn+fMMtcchcX7ziADmRQEG0pZY=
Subject key identifier: 1C:7A:C6:C0:C6:90:B1:BC:EB:96:46:07:0A:CC:FD:A3:DF:6F:9C:B1
Authority key identifier: 0F:9C:77:A1:DC:DB:8E:ED:62:CD:3C:A8:0A:51:44:DC:4E:24:3F:4E
Certificate issuer: /CN=0f9c77a1dcdb8eed62cd3ca80a5144dc4e243f4e
Certificate serial: 0196CB3C03E820CA1AC75E2E5220F9149A05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5x3odzbju1izTyoClFE3E4kP04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.mft
Manifest number: 1546
Signing time: Tue 13 May 2025 20:00:30 +0000
Manifest this update: Tue 13 May 2025 20:00:30 +0000
Manifest next update: Wed 14 May 2025 20:00:30 +0000
Files and hashes: 1: D5x3odzbju1izTyoClFE3E4kP04.crl (hash: V1KvlPKRmyqNMRqOqxacp0MwcV8kSVPJJpItZTK1Xoc=)
2: EU9ZI9FwGK9Je2LIHv8oyryDbQ0.roa (hash: lg1hblUtV5bfdjAsYpP/FKql2pfxKFHlS2JkI4euny0=)
3: UttiV2rZhXbpiEroK90NOoWzeyo.roa (hash: clJAUfrgzlJXm2cn+fD7HIKwQaoQPkMOMFf6DpqSgo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5x3odzbju1izTyoClFE3E4kP04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 20:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:3c:03:e8:20:ca:1a:c7:5e:2e:52:20:f9:14:9a:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9c77a1dcdb8eed62cd3ca80a5144dc4e243f4e
Validity
Not Before: May 13 20:00:30 2025 GMT
Not After : May 14 20:00:30 2025 GMT
Subject: CN=1c7ac6c0c690b1bceb9646070accfda3df6f9cb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:4c:7d:17:db:e5:77:3b:aa:a3:28:36:bc:cc:
c3:53:f8:e1:ef:ca:2e:c8:61:d2:d6:95:b2:c1:8f:
8b:2a:53:ad:d9:88:68:26:61:8d:7c:17:15:c6:31:
78:7a:e2:78:aa:8b:6b:82:c9:74:b4:f3:61:cb:36:
8a:7f:b7:ba:12:bb:f6:06:31:25:92:c2:45:b4:fe:
77:90:b4:6b:bc:3c:a9:70:ae:c1:36:8d:6f:10:77:
14:51:36:19:5d:a1:92:42:2e:00:d1:26:98:94:18:
e7:b8:5f:e3:6d:6c:d1:c2:90:11:e3:e2:a2:91:29:
f7:d5:d5:a1:86:ba:8a:d1:aa:a1:19:63:88:c7:58:
99:24:7d:f1:dc:37:1d:b7:fa:7b:96:ed:cc:8b:6b:
af:88:df:09:89:64:9f:fd:43:63:18:84:a1:da:c1:
ef:b6:1b:91:fb:fa:6a:67:d2:2e:5d:13:09:15:d0:
58:cb:ff:b2:a3:32:08:d0:e1:98:b4:4f:09:8e:66:
2d:b0:fb:c8:81:7e:d4:65:c0:68:50:af:d4:f1:ed:
63:c5:3f:ff:38:87:a2:ba:0b:c0:91:a7:61:94:d0:
75:9c:b4:52:f9:87:66:8a:c6:6f:76:98:1e:ca:d8:
36:79:5b:8e:94:c2:10:9d:27:7c:39:66:34:eb:cb:
d4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:7A:C6:C0:C6:90:B1:BC:EB:96:46:07:0A:CC:FD:A3:DF:6F:9C:B1
X509v3 Authority Key Identifier:
keyid:0F:9C:77:A1:DC:DB:8E:ED:62:CD:3C:A8:0A:51:44:DC:4E:24:3F:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5x3odzbju1izTyoClFE3E4kP04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/9d0e14-113b-4cba-8308-acc56977b6f4/1/D5x3odzbju1izTyoClFE3E4kP04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:d2:27:23:68:88:15:d5:52:8f:1b:47:9d:26:d6:f4:47:90:
e5:80:9a:d0:25:d8:1d:49:4c:f2:86:07:9c:61:09:aa:49:08:
39:94:95:40:97:03:e4:4c:ff:79:9e:d6:0a:40:28:a6:61:e2:
47:28:b7:95:e4:ed:3c:84:3a:f7:4a:f2:4a:18:10:80:ac:29:
95:7b:9f:57:b3:ca:b9:e9:4a:a0:1a:10:26:7d:42:fc:a5:27:
92:55:e9:dd:20:03:bd:97:df:33:59:e0:e0:ef:39:e7:3a:89:
2d:14:03:03:1e:ac:45:ec:f5:3e:9d:2d:3d:5f:8c:7d:56:74:
ee:7b:00:82:ae:17:98:ab:6a:8b:ee:7f:91:d6:5c:6d:6b:30:
8e:9c:95:e4:7b:aa:bc:fa:23:75:62:80:7d:46:a5:0a:99:ae:
eb:fc:9a:10:89:2b:e0:42:4e:c0:7a:ba:ad:c5:89:c6:cd:70:
10:3c:b4:ef:06:56:ba:73:dd:4a:7e:5b:2e:24:fe:9d:3d:d3:
01:b3:48:1e:b3:2a:14:50:cc:8e:91:ba:e7:56:43:76:ae:48:
3a:e6:87:c5:fb:0e:2d:30:bb:c4:00:08:02:46:31:af:2b:89:
d9:e8:10:9d:9b:69:20:ce:6f:06:8a:dc:dc:e2:fe:ff:e6:d7:
e8:ba:ef:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 03:46:24 2025 by rpki-client