Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
File: wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft (raw, json)
Hash identifier: wDONZqXBXI3k+HlpYwSzJbcSsFVmBWz4zfudTs/H+QA=
Subject key identifier: 7D:B3:AA:32:8E:9B:9E:9B:EC:29:2E:A2:54:F5:41:B5:10:B6:48:1C
Authority key identifier: C2:1E:32:D0:47:C5:D1:B9:E2:67:70:C3:84:03:04:CF:69:71:DE:1C
Certificate issuer: /CN=c21e32d047c5d1b9e26770c3840304cf6971de1c
Certificate serial: 0196BCDB99D0CE63FD160211664C60A59AA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
Manifest number: 0856
Signing time: Sun 11 May 2025 01:00:30 +0000
Manifest this update: Sun 11 May 2025 01:00:30 +0000
Manifest next update: Mon 12 May 2025 01:00:30 +0000
Files and hashes: 1: 0YAlpXVId3LHx7bUr5xQcDkFv50.roa (hash: TFSQN0O8fIRBDFY4jZJFLp3OndkfiZIj1gXdcop7ZBU=)
2: wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl (hash: QzFMMndAQ9YS+SiLCVJlB6/ucjN/+rt2kJSLTI1VTHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 01:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:db:99:d0:ce:63:fd:16:02:11:66:4c:60:a5:9a:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c21e32d047c5d1b9e26770c3840304cf6971de1c
Validity
Not Before: May 11 01:00:30 2025 GMT
Not After : May 12 01:00:30 2025 GMT
Subject: CN=7db3aa328e9b9e9bec292ea254f541b510b6481c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ef:f5:7c:30:71:e5:76:7e:e8:c2:d6:fc:d4:
81:6f:5a:3f:10:f1:7d:88:a2:83:75:86:0e:9e:3b:
5e:fa:82:b0:fb:b9:ed:07:14:e3:a3:7f:2d:c2:3e:
d4:b7:c5:62:d9:de:79:49:82:be:81:91:e2:a0:2f:
72:4f:c1:6e:17:83:2d:24:84:4c:48:f7:be:d6:38:
37:59:87:c6:51:17:03:53:1e:29:0c:07:27:7c:e6:
df:b9:76:f3:fa:9f:ab:b6:8b:e8:d4:7d:e4:6b:90:
6c:9b:6a:eb:11:40:4b:3d:45:bf:c1:24:bf:d3:fb:
1b:7c:74:cc:73:73:b5:fe:39:64:ab:13:31:2c:24:
bd:60:3f:88:6b:ea:1c:c0:ec:20:52:11:5d:33:79:
34:2f:4a:52:e7:ba:c4:56:9f:37:b5:5c:1a:52:0f:
68:af:6a:76:94:3c:1e:7d:c6:af:29:78:02:1d:bd:
3c:c3:71:bc:05:c7:b0:c9:12:ec:a3:79:0c:e1:45:
9c:89:b0:50:93:bc:06:14:17:9c:b6:3b:6e:fb:f0:
ac:c0:4e:26:24:af:92:2c:da:1d:7c:6c:1f:76:61:
58:a6:4b:87:fe:50:10:65:7a:31:10:1a:21:ee:e0:
b1:e1:31:06:e5:e1:16:fb:e7:d2:82:8c:0e:90:1a:
9f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:B3:AA:32:8E:9B:9E:9B:EC:29:2E:A2:54:F5:41:B5:10:B6:48:1C
X509v3 Authority Key Identifier:
keyid:C2:1E:32:D0:47:C5:D1:B9:E2:67:70:C3:84:03:04:CF:69:71:DE:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:09:c3:57:e5:2d:7c:62:45:67:50:fb:29:02:2d:9c:40:de:
15:0e:3a:49:29:78:ce:95:a9:a3:9b:37:32:b8:95:35:b2:3f:
16:ec:62:13:bd:37:85:10:f1:72:ff:b5:29:05:c5:c6:e7:77:
62:80:8d:39:4a:ba:d2:90:80:b3:d9:ac:52:f0:0a:41:0d:07:
65:7a:eb:00:e0:b5:2b:f9:35:bd:9d:33:a9:73:7a:d4:f0:3b:
fa:aa:8c:e4:2d:27:01:d1:a8:37:e3:b1:7b:be:a8:86:50:7e:
1d:a0:ae:e2:1e:de:9f:5e:1a:c7:ca:f0:88:ea:e9:f9:be:fd:
ef:e3:e6:9c:37:60:73:a6:73:2d:1b:38:18:92:a4:be:d8:a5:
c8:dd:4a:77:ae:bc:94:72:58:44:cd:07:13:27:7d:d8:2e:d4:
be:e9:ac:cd:30:87:75:89:ac:e8:5d:eb:a0:82:06:e7:83:56:
c3:9b:c2:95:fd:70:35:13:65:19:7b:13:a9:cb:0d:e7:b0:62:
9e:2b:0d:bc:b6:0c:4a:37:a0:d6:8f:5c:93:27:87:08:86:a2:
1d:12:03:1f:34:e0:ab:df:38:fc:d3:a2:12:a7:18:ac:d6:64:
ea:0b:38:56:2e:44:7d:8e:f5:f7:d0:ef:4a:62:79:ee:08:d2:
8c:5a:ee:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 11:41:20 2025 by rpki-client