Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
File: cdm6oCIZQu3-SzqaVwgpXARBboA.mft (raw, json)
Hash identifier: RAT1DC0CCOOmRx10moZoRrqAhjL3ooaGLE24+TN/faA=
Subject key identifier: 35:A5:35:8D:A3:7A:92:CF:30:63:57:50:68:DE:D8:7B:84:3A:EB:57
Authority key identifier: 71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
Certificate issuer: /CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Certificate serial: 0196B7B62BBE6BB3ACCFC77135F20AADB3C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
Manifest number: 1531
Signing time: Sat 10 May 2025 01:01:31 +0000
Manifest this update: Sat 10 May 2025 01:01:31 +0000
Manifest next update: Sun 11 May 2025 01:01:31 +0000
Files and hashes: 1: Uqk6ZpOTGE36LT5fcwe3jUUK8bs.roa (hash: 3ocr9qZ6ri2OW2BEWPNTcZs9jR00BhDPO+YzVSk3MLY=)
2: cdm6oCIZQu3-SzqaVwgpXARBboA.crl (hash: bp3p5xhmq6DIfocWE7phU224ZIMqAJWMYJVmDbFltzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 01:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:b6:2b:be:6b:b3:ac:cf:c7:71:35:f2:0a:ad:b3:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Validity
Not Before: May 10 01:01:31 2025 GMT
Not After : May 11 01:01:31 2025 GMT
Subject: CN=35a5358da37a92cf3063575068ded87b843aeb57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2d:be:12:96:0a:e0:67:61:b6:7b:98:19:75:
08:28:63:71:a7:57:36:c0:97:ed:d5:21:b8:6f:80:
fc:06:ac:a9:67:c8:a6:74:51:b3:a0:56:20:3f:92:
6d:4a:7e:f5:8b:15:a1:9a:61:09:42:06:0a:5f:0c:
2a:ee:8c:5a:59:b8:6d:a0:6a:9e:62:36:9f:7d:84:
10:fb:d3:2e:10:6b:c5:c6:3d:1a:8d:b9:fb:2b:c4:
83:55:ac:91:6f:72:2a:67:d0:d8:e8:43:02:26:d5:
5f:bb:35:02:77:f4:c2:3f:99:36:b7:3a:4e:b1:3b:
83:f9:96:cf:32:54:23:63:95:49:67:04:b4:fc:d4:
1d:b9:2d:33:bc:69:d6:c1:3e:f5:dd:1a:4b:56:49:
14:a0:e3:e4:46:ac:92:07:79:0c:25:c1:ad:0b:6b:
58:51:cd:93:1e:6b:49:b1:52:ef:b7:68:08:d3:9a:
45:a3:36:83:ef:12:f3:e7:ed:22:c3:45:c2:c6:67:
07:22:f5:5c:80:05:ce:ed:50:41:f7:9a:e9:32:9a:
2e:92:51:15:29:83:c3:47:26:05:be:82:df:be:b7:
85:31:d7:91:bd:7b:ce:50:61:ea:f5:87:0d:84:97:
2e:9b:64:21:f9:db:2b:19:c7:6b:3a:94:c9:d5:a7:
19:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A5:35:8D:A3:7A:92:CF:30:63:57:50:68:DE:D8:7B:84:3A:EB:57
X509v3 Authority Key Identifier:
keyid:71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:7c:c3:2b:b7:40:34:fe:6c:87:d3:77:f7:03:31:8a:d2:e2:
80:2e:ee:df:51:ac:a8:a1:2f:c1:af:0f:e6:72:ba:69:bf:21:
8a:65:09:1c:91:4f:fa:b2:f1:59:9f:a4:d0:8f:31:4b:11:87:
8b:42:6b:50:59:05:59:35:75:9a:9e:a5:82:33:2f:2f:7f:c8:
0b:91:64:61:5e:31:4d:9c:8f:55:e1:90:8b:99:c9:56:66:d3:
20:88:69:1d:e2:05:a9:3b:09:36:ec:74:2a:e0:18:62:07:ff:
c1:b7:21:bf:a5:d8:68:20:77:e4:e1:c1:f3:11:2d:90:d6:2a:
8c:0f:a3:ad:a9:71:39:6c:7b:78:92:bd:88:ac:8a:5e:2d:40:
f9:e8:bc:f5:cf:51:78:76:d5:90:87:d8:94:4d:5e:6f:d4:a0:
92:08:a0:8d:f8:a5:b0:17:59:06:d0:94:8c:f6:ab:5d:0f:cc:
8b:b6:ca:b2:40:63:8d:4b:8e:46:86:ba:17:be:4e:dc:42:91:
2a:d8:6f:93:a8:77:1e:68:9b:ad:24:b1:ef:f2:07:96:a5:de:
ba:e1:6c:23:af:55:e7:02:85:8c:2e:81:3e:89:1e:fe:80:15:
ef:7f:59:14:b3:51:77:fb:6e:b1:2d:8c:33:3e:73:e7:4d:07:
82:50:0e:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:46:53 2025 by rpki-client