Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/510e57-38da-494d-8200-891fa21c6f0b/1/i8OUjYuToh5tV9nGVU1e3RB9Ca8.mft
File: i8OUjYuToh5tV9nGVU1e3RB9Ca8.mft (raw, json)
Hash identifier: maRDfW8QRFIbFCxD8WeN3VSWhb827chKi4teIb7nYO4=
Subject key identifier: D0:62:4A:1F:44:FB:13:4B:71:38:C2:FB:CA:57:7F:E9:A1:A3:31:C2
Authority key identifier: 8B:C3:94:8D:8B:93:A2:1E:6D:57:D9:C6:55:4D:5E:DD:10:7D:09:AF
Certificate issuer: /CN=8bc3948d8b93a21e6d57d9c6554d5edd107d09af
Certificate serial: 0196CC17E096AFEE4D59A390A35ED15E607B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8OUjYuToh5tV9nGVU1e3RB9Ca8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/510e57-38da-494d-8200-891fa21c6f0b/1/i8OUjYuToh5tV9nGVU1e3RB9Ca8.mft
Manifest number: 013D
Signing time: Wed 14 May 2025 00:00:38 +0000
Manifest this update: Wed 14 May 2025 00:00:38 +0000
Manifest next update: Thu 15 May 2025 00:00:38 +0000
Files and hashes: 1: fvjwad8hv5M8RT1bW6F3smOFB2Y.roa (hash: at0gl2Sa+um/oWDDDgR4biQkEbCFJi5QlnnXaGwjc0g=)
2: i8OUjYuToh5tV9nGVU1e3RB9Ca8.crl (hash: cVA2UBz6mmwlzOhxhmS8osdd33QKibz291vPnA+/sHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/510e57-38da-494d-8200-891fa21c6f0b/1/i8OUjYuToh5tV9nGVU1e3RB9Ca8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/510e57-38da-494d-8200-891fa21c6f0b/1/i8OUjYuToh5tV9nGVU1e3RB9Ca8.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8OUjYuToh5tV9nGVU1e3RB9Ca8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cc:17:e0:96:af:ee:4d:59:a3:90:a3:5e:d1:5e:60:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc3948d8b93a21e6d57d9c6554d5edd107d09af
Validity
Not Before: May 14 00:00:38 2025 GMT
Not After : May 15 00:00:38 2025 GMT
Subject: CN=d0624a1f44fb134b7138c2fbca577fe9a1a331c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fd:06:5f:8b:1e:10:e0:ca:c4:9b:81:e8:f1:
1f:77:83:c5:61:a7:c7:81:ca:ac:ce:c3:9b:72:70:
41:e4:e6:5b:a5:f8:b2:34:8e:f8:3d:63:21:7b:bb:
21:85:9e:b4:b5:8c:29:73:a7:0d:6a:df:11:b7:fc:
0a:5b:62:20:56:d5:9a:50:16:a1:09:10:0a:db:93:
2e:92:c8:79:8d:41:86:ec:0d:80:a1:64:6d:9e:15:
81:28:9a:7f:8a:22:23:52:1b:2c:f8:af:12:5a:5c:
13:f4:d1:45:03:f0:3a:5b:49:77:85:da:2e:77:e0:
56:84:e7:ab:91:3e:ea:5d:49:f2:a2:ec:9d:35:f1:
b9:7b:ce:6d:d4:09:55:c5:fb:3e:59:6d:a9:05:11:
d5:9f:16:9a:55:74:d4:fb:e5:fa:c6:3f:b7:94:c9:
83:86:af:71:4a:31:98:76:69:70:5f:34:79:b9:ea:
84:a2:1a:13:44:d7:41:81:9d:0f:6d:6c:93:ea:e5:
4d:34:84:63:8d:d0:e7:71:da:80:ab:f2:a6:b8:63:
58:57:80:b0:e7:09:3d:72:2f:f1:b2:fc:94:75:8c:
70:69:c3:90:62:0d:6b:83:27:8d:29:a6:08:24:b7:
43:fc:b2:a5:04:6e:23:9d:c4:e9:74:a7:4c:e6:e6:
f2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:62:4A:1F:44:FB:13:4B:71:38:C2:FB:CA:57:7F:E9:A1:A3:31:C2
X509v3 Authority Key Identifier:
keyid:8B:C3:94:8D:8B:93:A2:1E:6D:57:D9:C6:55:4D:5E:DD:10:7D:09:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8OUjYuToh5tV9nGVU1e3RB9Ca8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/510e57-38da-494d-8200-891fa21c6f0b/1/i8OUjYuToh5tV9nGVU1e3RB9Ca8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/510e57-38da-494d-8200-891fa21c6f0b/1/i8OUjYuToh5tV9nGVU1e3RB9Ca8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:ce:cd:b9:4f:e0:eb:15:4b:23:c2:20:c3:f3:e5:e3:74:93:
99:3e:79:7b:a0:95:de:52:70:15:23:d2:fb:be:32:e1:7e:c5:
b0:0e:35:f0:03:84:9f:ed:74:1b:dc:b7:08:11:5a:a6:90:fa:
fc:f7:0b:fb:50:15:f0:a5:1c:84:a1:bd:b4:08:dd:ea:5b:8e:
7a:a6:d9:e7:38:59:65:7b:b6:ea:31:f3:9d:20:71:60:11:c3:
66:11:d1:e5:21:36:02:42:17:ee:76:5b:50:3a:8c:cd:44:3f:
bc:ba:fa:15:6a:97:30:05:55:f0:6b:15:b8:ae:7c:ce:53:3a:
30:91:91:7b:a5:3b:d6:22:fd:63:e8:d3:66:b1:06:74:68:85:
d1:72:bb:cb:37:2a:34:22:0c:11:76:fc:c5:49:e0:b5:31:81:
13:ee:91:5d:df:b6:04:25:6d:6d:62:7b:33:9e:b6:81:51:3c:
34:dd:2a:6d:a3:eb:c0:fc:a7:16:58:09:46:03:6f:db:f9:1c:
fb:ff:a3:c3:33:28:40:e8:24:5b:e2:da:8f:73:1d:0e:b7:81:
ac:15:e8:55:5f:6f:ef:51:66:90:d9:11:2b:57:3d:97:02:d2:
c8:60:2c:be:f1:fd:68:5b:5b:7e:c3:9a:86:9f:62:41:4c:75:
c2:54:a8:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 09:15:16 2025 by rpki-client