Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: UDxvd64JgQZHAwxcR70W5w0BY3/fwqpLXMOIyhu1zPQ=
Subject key identifier: 32:35:A1:BB:CC:AC:44:95:7F:CE:CB:5B:0B:6C:5C:43:C6:0E:78:01
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 0196D1E2C6E70D08DE041EEEF5EACFC8D076
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 153F
Signing time: Thu 15 May 2025 03:00:22 +0000
Manifest this update: Thu 15 May 2025 03:00:22 +0000
Manifest next update: Fri 16 May 2025 03:00:22 +0000
Files and hashes: 1: mCm-KBIMQ6gtgsW9oEUxZqdGcRM.roa (hash: ItOlCehgUekOH/ud/IMp3e9dVCyKMOt54wV1YDUzoCg=)
2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: M3srFTihrLDCNBBT5lBmU7nbQU3jTC+2lGIXEd9fJGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d1:e2:c6:e7:0d:08:de:04:1e:ee:f5:ea:cf:c8:d0:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: May 15 03:00:22 2025 GMT
Not After : May 16 03:00:22 2025 GMT
Subject: CN=3235a1bbccac44957fcecb5b0b6c5c43c60e7801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b3:17:cb:e1:88:af:8d:94:20:bc:58:e9:49:
1d:34:9e:26:b7:9f:df:51:00:b8:01:96:99:ce:9a:
c1:b9:2f:0a:71:21:07:d4:f3:ec:0c:b0:2a:95:b9:
bf:18:87:11:2e:62:30:98:fd:5d:ae:68:e1:e3:49:
86:a0:dc:07:fa:ea:56:28:5d:c8:fb:f6:f9:30:fa:
45:41:1f:ff:43:85:55:5e:ab:e7:f0:9c:86:52:8f:
5e:c7:6c:a3:23:aa:02:1e:8b:ba:0a:ce:e9:76:62:
9b:6d:17:f2:44:a3:a0:d6:af:d9:0d:90:bc:24:6e:
c8:b3:b1:46:9d:21:64:6e:a3:2a:ac:92:9e:3b:62:
9f:db:e8:9d:ea:9e:3d:63:9b:9c:77:d9:d2:c4:1a:
b7:ab:1d:29:58:41:9e:d6:e1:55:af:47:20:5f:e0:
9c:31:27:46:93:17:17:70:a6:4c:be:36:05:bd:95:
b9:2e:3e:4f:97:4e:5a:99:1e:78:36:02:3e:51:e6:
04:5d:47:c1:1b:6b:0a:36:c9:df:6a:c9:91:52:09:
95:c3:07:1b:7b:1b:2b:dc:64:c4:5f:cd:68:1f:13:
0e:26:47:c6:03:d9:9a:9a:da:9d:6c:50:9e:ec:bb:
33:fe:3d:59:8c:c3:f9:f3:a9:e8:e4:0c:4f:65:27:
7e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:35:A1:BB:CC:AC:44:95:7F:CE:CB:5B:0B:6C:5C:43:C6:0E:78:01
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:b9:34:4e:fd:58:23:e6:cc:c3:c8:2a:63:ff:c4:bd:a0:55:
2f:4b:59:e9:c9:b7:38:ed:8f:8d:cb:27:34:5a:f3:90:36:9a:
a3:a0:9a:41:e9:60:d5:cf:0e:b2:88:a4:06:b1:e6:07:5a:dd:
5d:72:6a:35:df:93:b2:bf:87:d4:b0:1d:b2:48:1c:43:f8:bd:
3a:dd:84:d9:c5:56:3f:81:8a:b1:df:de:ed:67:18:5e:cc:7b:
43:96:10:19:f3:60:bc:0b:0e:13:a0:fc:a8:b2:74:e4:ea:c4:
4b:b0:a5:0c:95:c3:c9:89:ec:a9:4b:4e:ec:13:69:ee:06:0b:
ba:09:d6:4d:5b:9f:ac:78:56:fa:99:88:44:f6:7f:45:48:f0:
c5:24:3b:b4:89:d9:e1:78:18:9d:ad:1f:84:b9:dd:24:71:83:
93:58:49:5c:fc:22:01:98:d7:bd:04:8e:46:f9:30:8c:73:8e:
85:1e:8a:bf:88:ca:92:d1:71:8c:99:46:ee:2e:c8:92:f2:cf:
76:05:d6:31:97:18:f3:31:cb:b4:c3:94:5f:19:c0:4c:3e:3b:
21:59:33:92:e8:dc:ee:2e:e8:01:44:5a:c9:72:60:2a:b9:91:
74:5d:f4:a0:0c:91:a9:cc:51:93:0e:94:3e:76:7b:a3:56:ec:
95:da:d4:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 07:14:20 2025 by rpki-client