Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
File: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft (raw, json)
Hash identifier: 00KXxc4Q0hRrrjG12Tyjl/kNJ3cY/VzdRJ9Bfd+dCUk=
Subject key identifier: FF:F4:6E:2E:69:B7:42:F1:B4:C0:45:4C:DD:C3:98:E9:4F:A3:22:35
Authority key identifier: 0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66
Certificate issuer: /CN=0e1dd539525a39d847014e8fea3c641d973cc866
Certificate serial: 0196C34BA2AEDB25E71534AD4F7B585BF709
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
Manifest number: 04BA
Signing time: Mon 12 May 2025 07:00:35 +0000
Manifest this update: Mon 12 May 2025 07:00:35 +0000
Manifest next update: Tue 13 May 2025 07:00:35 +0000
Files and hashes: 1: 5qU9a0oGWmmroynSN69UsFF4Lyw.roa (hash: ck+/DYuUP9vUcXqAS40voGKy/13DDBxa+VF1/FTp/II=)
2: Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl (hash: Wb7FbEiPX3uAXxCfScxRi2PX6Ukij+sEL74ccsrW7bQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 07:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4b:a2:ae:db:25:e7:15:34:ad:4f:7b:58:5b:f7:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e1dd539525a39d847014e8fea3c641d973cc866
Validity
Not Before: May 12 07:00:35 2025 GMT
Not After : May 13 07:00:35 2025 GMT
Subject: CN=fff46e2e69b742f1b4c0454cddc398e94fa32235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a2:68:c3:6a:de:e5:0e:47:a8:22:82:56:af:
6d:20:69:92:1f:c9:d6:b3:c3:61:80:83:72:10:8b:
28:f4:2d:27:80:75:f2:75:cc:a2:a5:4c:91:72:d3:
8b:f5:26:23:6b:f0:d7:30:e1:2c:46:c1:7e:34:55:
41:95:12:7e:c0:86:a7:b3:57:0b:ba:59:3a:bf:4f:
f9:c6:80:2c:66:eb:fd:83:2a:c5:8e:a2:1a:1c:8f:
0c:a9:dc:1b:20:e7:9a:87:93:ef:1c:16:53:ac:3e:
9a:80:86:87:5a:c9:c9:2c:3c:48:e4:d4:7a:fb:e2:
91:9f:c2:13:ab:39:41:10:30:de:72:09:59:22:c0:
86:ba:83:2f:0c:52:2b:f0:0f:30:05:5a:2b:7a:65:
5c:5a:dd:5f:82:ac:a3:e0:bc:08:58:ff:d0:30:82:
69:a7:59:0f:3b:c5:8d:10:68:db:33:08:e7:cf:62:
a9:84:6c:8b:d6:c5:e2:5c:1a:c0:39:5b:09:6c:18:
c2:ae:7d:33:65:e6:20:73:58:91:2b:35:47:f0:89:
f8:cc:9c:6f:e9:e5:94:a4:c3:e9:c2:81:31:e7:3a:
c3:d1:50:a1:eb:c1:ea:cd:14:6f:16:01:6d:e7:92:
ba:81:51:86:c8:ec:82:0b:84:d9:98:73:fa:0d:1e:
51:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:F4:6E:2E:69:B7:42:F1:B4:C0:45:4C:DD:C3:98:E9:4F:A3:22:35
X509v3 Authority Key Identifier:
keyid:0E:1D:D5:39:52:5A:39:D8:47:01:4E:8F:EA:3C:64:1D:97:3C:C8:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/450b29-40d6-4da3-90b0-929893081866/1/Dh3VOVJaOdhHAU6P6jxkHZc8yGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:ee:62:4c:37:c0:af:8e:0c:9c:f3:73:81:70:8a:48:1d:94:
32:15:9a:21:cd:ee:e4:04:bc:54:eb:f9:80:af:e1:19:42:8b:
30:d3:df:e3:5a:77:bf:54:71:45:2e:f8:7f:d5:f9:07:03:7f:
01:f0:9a:64:33:d5:c8:73:6e:2b:a7:17:53:43:d3:90:5d:1d:
f5:1e:ac:14:e6:96:ae:e5:95:e2:c5:fa:39:97:d8:e3:43:cd:
3c:05:e5:c9:f4:f8:08:82:76:90:6b:5c:e1:da:41:1c:3d:4f:
1a:f6:96:bc:d3:e3:81:f5:2f:1b:93:56:78:00:4f:d6:af:b6:
ed:22:39:ac:e9:e9:3a:a5:cd:03:6f:21:d2:4d:43:37:d1:5a:
c0:90:31:72:bd:d8:95:49:3a:e0:4a:39:c0:6b:a5:b8:84:5e:
28:31:0f:42:e2:a9:7e:c4:75:26:ad:fc:e8:0f:85:53:68:7a:
01:bd:ea:22:64:b7:74:88:41:e2:26:e3:1e:6b:b1:93:3c:eb:
dd:50:ae:e3:9f:58:8a:93:48:e7:47:77:f8:d3:73:a1:6c:57:
04:b1:24:c0:2c:88:3d:e3:37:11:41:b5:c5:43:c4:49:5d:ff:
f4:5a:c0:62:ee:66:82:85:ee:b1:04:c5:8d:38:a4:27:ea:d6:
95:98:f0:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 12:49:33 2025 by rpki-client