Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.mft
File: moI9HNrrg3dfH7vV-frkGsXfFxk.mft (raw, json)
Hash identifier: Vi6j+YWkBMJXY+Ma6YXEEuy1VU0Alr313Vd3E2rJZ7E=
Subject key identifier: FF:85:FA:63:8B:5B:20:C1:52:D3:D7:3E:B9:B6:2D:51:86:20:DB:4E
Authority key identifier: 9A:82:3D:1C:DA:EB:83:77:5F:1F:BB:D5:F9:FA:E4:1A:C5:DF:17:19
Certificate issuer: /CN=9a823d1cdaeb83775f1fbbd5f9fae41ac5df1719
Certificate serial: 0196C3B99ED0ECAACE1673FF7FA3D2C1E17B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/moI9HNrrg3dfH7vV-frkGsXfFxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.mft
Manifest number: 056F
Signing time: Mon 12 May 2025 09:00:43 +0000
Manifest this update: Mon 12 May 2025 09:00:43 +0000
Manifest next update: Tue 13 May 2025 09:00:43 +0000
Files and hashes: 1: moI9HNrrg3dfH7vV-frkGsXfFxk.crl (hash: dmcB0XXcC4ey26JyZJs9P6Ev9ZE9bxewT8yKVXMcgzQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.mft
rsync://rpki.ripe.net/repository/DEFAULT/moI9HNrrg3dfH7vV-frkGsXfFxk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:b9:9e:d0:ec:aa:ce:16:73:ff:7f:a3:d2:c1:e1:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a823d1cdaeb83775f1fbbd5f9fae41ac5df1719
Validity
Not Before: May 12 09:00:43 2025 GMT
Not After : May 13 09:00:43 2025 GMT
Subject: CN=ff85fa638b5b20c152d3d73eb9b62d518620db4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d1:75:60:9c:e2:34:7d:1f:ca:d0:4f:b9:01:
42:6b:1d:8e:65:2f:c4:b5:a6:7e:22:5b:dc:c6:de:
39:8d:be:f2:14:93:c0:90:af:f0:64:89:02:5b:2f:
7b:2e:81:5a:a0:f0:c9:35:cd:b7:e2:4b:e7:26:ea:
02:25:6a:27:0c:49:3e:be:fa:d6:67:8c:d8:08:f9:
47:c0:78:2c:2f:1d:f0:ac:68:ec:97:40:5d:d8:76:
e9:aa:54:1f:74:5d:12:b7:ef:55:db:ac:92:bc:34:
fc:5b:b9:63:6f:1f:93:ef:74:9f:8c:89:d7:d9:f5:
e1:77:71:18:84:f3:4c:ed:82:96:21:71:b2:be:08:
46:a8:9e:44:82:2d:84:37:7f:6d:14:46:fb:84:58:
45:70:f5:d3:92:99:0c:d6:6b:8d:02:5f:e6:64:dc:
8b:16:06:a9:aa:01:f4:b1:f9:03:82:1e:aa:fb:7f:
7b:2d:c6:64:36:73:98:c6:1d:4e:aa:2d:b6:75:65:
fa:7d:50:72:98:9a:2f:c7:11:be:e7:58:4b:b2:d5:
c8:e9:fd:96:6f:fa:54:c9:d4:7e:e4:8f:75:00:c4:
54:57:1a:fe:50:d9:3f:a1:16:3e:12:2d:5f:27:44:
1e:f3:e9:41:75:c6:49:51:2f:ca:bd:38:ad:0a:9d:
be:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:85:FA:63:8B:5B:20:C1:52:D3:D7:3E:B9:B6:2D:51:86:20:DB:4E
X509v3 Authority Key Identifier:
keyid:9A:82:3D:1C:DA:EB:83:77:5F:1F:BB:D5:F9:FA:E4:1A:C5:DF:17:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/moI9HNrrg3dfH7vV-frkGsXfFxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:91:d0:3a:07:31:cc:1a:d4:50:5a:9c:0c:33:c3:b2:e6:a1:
b2:ce:58:92:69:be:2d:2f:38:85:b1:98:2f:70:57:91:07:1c:
83:cb:ff:1e:30:1f:9d:59:cd:a3:a5:ec:47:49:19:e4:18:a5:
72:2d:d2:b2:2a:79:f6:25:75:22:82:70:2a:74:15:73:f5:f6:
4d:ad:26:1a:62:83:ac:ae:93:fb:27:7a:5b:82:a9:7f:f5:5f:
40:21:48:ba:09:a7:8d:3e:72:0c:5b:f3:39:4a:29:15:5a:ff:
26:08:17:b5:03:1b:cf:76:70:b5:71:d7:3d:97:da:ea:9f:65:
bb:84:79:ae:c5:08:4e:37:14:f0:50:3b:d4:6b:a8:0a:2a:cd:
d0:70:c5:a0:50:c1:82:ff:27:f8:6d:c0:a6:10:91:b5:10:e1:
bf:7c:ec:73:a7:71:fe:c7:b2:ff:5e:ac:9c:e4:d2:74:1c:f8:
01:00:8f:6f:e1:29:b9:e7:fc:69:a2:17:1d:3a:3c:55:eb:f8:
1e:d6:22:05:17:ba:40:dc:4d:a5:e3:c0:2b:18:ba:96:7e:50:
5e:36:d9:c5:66:ff:08:ac:fb:43:c0:0e:56:c1:62:8d:20:9b:
4b:f2:fa:ab:6d:d0:8c:62:0b:51:94:29:eb:b5:af:cb:55:72:
75:bd:1c:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:30:11 2025 by rpki-client