Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
File: 32GikiI62a68itgsKlZHX72XqDQ.mft (raw, json)
Hash identifier: UBeeXlKFe+yZAY6xCbD5rOTf8WXbnnLtuPsBkA2ad4Y=
Subject key identifier: 73:C3:38:83:36:A5:60:36:68:76:29:F8:F9:5A:D9:CD:BD:A2:35:52
Authority key identifier: DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
Certificate issuer: /CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Certificate serial: 0196B8FEE4E534D1ECE24034C988E85E21F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
Manifest number: 0BE0
Signing time: Sat 10 May 2025 07:00:34 +0000
Manifest this update: Sat 10 May 2025 07:00:34 +0000
Manifest next update: Sun 11 May 2025 07:00:34 +0000
Files and hashes: 1: 32GikiI62a68itgsKlZHX72XqDQ.crl (hash: vLFfaYVG/rFrkBxELrGmoGbyOIyiVB6g1VfLHY/C/ws=)
2: DmQguxgVyJ_d0tpi3KUPtRcdGUQ.roa (hash: OiuAWrEvvfbOYm4huTJvJrvDJABO3FsTpYDNXs6sb+s=)
3: aI06tjVZeZrIS1TA5LHHtgH2TfE.roa (hash: LKF1KEnQy5/5rD4HRU7tZBGEwLV0sJ0zLyAcVF0BY1c=)
4: gCOrJJaf7HO535LCuEoI7vxf65A.roa (hash: 7Nbxw9zLeIaRzeX3DJv4MIaTHvVYcSTc1CbOKxR59lQ=)
5: k6eyynVladw6I8I9j1dsAe95OA8.roa (hash: A0AAtMX//zpiq0We38ivcj7YmnJWOeaOBnQnV51DCG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:fe:e4:e5:34:d1:ec:e2:40:34:c9:88:e8:5e:21:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Validity
Not Before: May 10 07:00:34 2025 GMT
Not After : May 11 07:00:34 2025 GMT
Subject: CN=73c3388336a56036687629f8f95ad9cdbda23552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f6:a1:4d:48:64:31:fd:3d:bf:da:5a:3a:e5:
7c:42:ce:4e:c9:ad:b9:03:a7:0c:54:8d:08:ac:52:
58:11:46:fc:fe:51:35:f6:b0:fa:b7:61:78:30:5e:
e8:4b:99:01:3f:bc:f9:bc:b1:27:26:e7:f7:c1:a9:
ff:5e:c4:1b:bf:ee:5a:d4:62:a1:d5:11:e3:27:06:
2f:a3:00:c8:2d:db:9e:b1:47:50:a0:b1:6d:e4:33:
9a:bb:34:5a:d5:42:09:cf:f4:ed:58:36:82:21:36:
eb:a1:32:ea:ab:91:09:08:a0:c6:97:4c:12:13:10:
22:be:f2:63:a6:57:f6:4c:db:db:b3:59:8b:50:91:
32:52:de:be:d0:7b:1f:6f:7b:26:f1:84:3f:f9:bc:
ae:44:d2:f9:b8:49:6e:25:32:15:35:69:a4:76:58:
60:e1:a4:ee:32:69:ac:33:94:fe:19:6b:ab:72:1e:
80:d2:fe:fe:f4:48:2f:43:13:8c:01:38:69:0f:e7:
94:45:33:25:49:5e:60:1f:bc:cb:36:01:ea:d8:a0:
17:cc:41:4a:81:37:3e:fa:20:d0:bd:dd:5a:f9:6c:
f5:da:b2:a1:d3:41:b0:da:46:c2:2a:33:34:f6:76:
23:16:e6:d1:0f:ab:f1:39:3a:5d:2d:ab:3f:d6:b8:
39:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:C3:38:83:36:A5:60:36:68:76:29:F8:F9:5A:D9:CD:BD:A2:35:52
X509v3 Authority Key Identifier:
keyid:DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:e4:66:80:ee:84:34:08:38:86:99:44:b5:b3:3a:98:31:dc:
87:bd:d1:65:5e:e6:0a:af:82:8c:b9:06:d5:25:61:e8:f8:5d:
22:e9:a8:f4:7b:5a:05:7f:db:19:b6:69:1b:57:db:e0:b6:8d:
e7:c2:61:29:22:f1:99:9f:b7:1a:26:7d:e7:92:84:02:d2:cb:
87:9e:c0:86:4e:8d:3e:a0:61:5c:65:a9:c3:47:56:97:a7:b8:
b4:a1:87:1d:f8:2e:eb:41:92:a2:6c:85:1c:98:8b:e3:dd:48:
e5:70:17:a4:8e:98:3e:b8:a2:3d:ab:e0:bc:be:f8:55:3b:ec:
67:c1:3f:7f:e4:db:48:46:8b:c6:1c:82:75:71:00:5d:1e:69:
04:99:eb:23:f1:f0:55:46:93:b9:02:55:ed:1c:06:51:6c:21:
dd:46:8d:7c:57:63:ef:f8:a5:43:49:89:d1:d8:87:58:8b:e6:
9f:4a:f6:e4:92:ee:a5:e1:40:d4:c0:f6:83:41:a8:8b:7a:56:
ed:8e:27:76:34:a0:9d:a2:36:20:dc:68:29:0f:28:0d:be:c5:
9b:fd:17:50:6e:8a:f2:ff:00:c2:f5:61:b6:5a:68:cd:18:58:
6f:84:f6:b3:f0:ba:65:cb:15:0d:52:a8:2c:e2:82:18:da:8a:
16:25:4d:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 08:44:02 2025 by rpki-client