Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft
File: WdNqIemzaNdIurjHe-vd4sInxsM.mft (raw, json)
Hash identifier: /H3D9EJTQtBusN3B9td7we7SednoIHXOpl+wLsZpNaE=
Subject key identifier: 71:66:3C:3E:5E:74:63:9A:F2:C4:45:23:36:96:44:FB:01:6A:20:CC
Authority key identifier: 59:D3:6A:21:E9:B3:68:D7:48:BA:B8:C7:7B:EB:DD:E2:C2:27:C6:C3
Certificate issuer: /CN=59d36a21e9b368d748bab8c77bebdde2c227c6c3
Certificate serial: 0196C081A231BFC030903D545CF77AA038B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WdNqIemzaNdIurjHe-vd4sInxsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft
Manifest number: 0710
Signing time: Sun 11 May 2025 18:00:43 +0000
Manifest this update: Sun 11 May 2025 18:00:43 +0000
Manifest next update: Mon 12 May 2025 18:00:43 +0000
Files and hashes: 1: OQOfIBTtC9P7jCN0mN43Fc_lGps.roa (hash: ObKTxdr4K0eIsn14ipiRS5l0MCp4U/+rAHXfJfh0K1g=)
2: WdNqIemzaNdIurjHe-vd4sInxsM.crl (hash: Om4i4l80VYUbArQRH6nApp/eS30+MLWAVrfnKuipvUY=)
3: is_XEdqOSIZdOdAUliJ38zXn5ZE.roa (hash: +WoDzk7VKcG/lDal047Esdi6HVzF1DiurqrDKoqvrhI=)
4: skXm2fkwzq64ONGiXwLfUYMzOOo.roa (hash: eZX3z+2+p9WFafZJ1Sv1eq5Rzpet45IDFVeaiO++2eM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/WdNqIemzaNdIurjHe-vd4sInxsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 18:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:81:a2:31:bf:c0:30:90:3d:54:5c:f7:7a:a0:38:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59d36a21e9b368d748bab8c77bebdde2c227c6c3
Validity
Not Before: May 11 18:00:43 2025 GMT
Not After : May 12 18:00:43 2025 GMT
Subject: CN=71663c3e5e74639af2c44523369644fb016a20cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:11:19:da:21:d1:f8:9c:bc:27:3d:3e:64:b1:
f7:6d:63:60:50:be:20:6b:82:dc:a1:21:8a:de:a0:
c4:97:7f:f6:be:eb:0a:4a:bb:dc:e4:49:cb:49:5f:
4b:62:83:82:03:5b:af:ea:bd:b8:d4:63:08:d7:25:
9c:77:28:39:bd:a0:b5:9f:20:0d:12:74:ea:7b:58:
ab:f4:e1:54:79:60:d7:80:f7:14:b1:bb:e4:16:d0:
aa:a5:df:92:d0:7c:5c:c4:54:47:e8:e4:00:c8:25:
c1:2d:ab:de:b9:f8:4a:78:75:79:99:ee:af:ca:b3:
d0:1b:81:4f:66:5b:f2:42:8b:ef:48:36:f7:a8:36:
d0:c8:f5:77:ee:bd:4c:c2:b1:9c:00:40:db:58:25:
cc:8b:61:a0:91:66:8e:29:25:0a:91:ec:98:96:5c:
d8:de:94:8f:9d:6f:2d:3a:cc:05:e2:f2:fb:4d:05:
fc:b4:43:a6:c4:cd:28:4f:53:12:64:22:89:d6:aa:
63:1e:8c:22:11:60:1b:a2:8e:6b:f7:6e:70:f5:9c:
8d:9d:0a:f3:bf:76:15:6a:0a:e5:30:15:3b:9e:c7:
f6:1f:af:53:fc:53:8b:55:9a:44:67:00:50:9b:45:
ee:6b:d5:fd:b1:36:ee:40:b5:b6:45:6f:6d:98:91:
58:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:66:3C:3E:5E:74:63:9A:F2:C4:45:23:36:96:44:FB:01:6A:20:CC
X509v3 Authority Key Identifier:
keyid:59:D3:6A:21:E9:B3:68:D7:48:BA:B8:C7:7B:EB:DD:E2:C2:27:C6:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WdNqIemzaNdIurjHe-vd4sInxsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:2a:d0:62:2b:47:7c:c3:78:6c:86:34:d8:1a:91:29:c5:19:
6e:c2:28:bb:11:27:46:e7:e7:e2:bb:61:d5:08:2d:e0:72:ed:
76:f3:9f:a8:77:4c:84:15:42:c3:8a:ff:ac:8f:28:19:f7:b4:
80:04:b7:ac:46:53:01:d0:9e:53:a3:10:8c:0e:57:b3:90:1d:
94:a5:c0:91:6d:6d:19:3c:a5:3d:f3:5b:1d:8f:e6:73:86:2f:
31:94:b2:d1:51:7c:b9:10:d8:9f:2c:a3:65:21:51:00:40:9a:
fd:7a:01:88:c3:4a:1d:2d:3a:d0:93:dc:84:f4:46:5c:72:8d:
5f:d1:86:9c:d6:c9:6c:f4:c2:f8:3b:37:ad:79:47:4e:33:de:
7b:a6:1a:16:a0:10:83:29:0f:e5:1d:ed:92:40:a5:6e:47:74:
fc:3c:2e:e5:ab:d4:5b:f2:5a:f4:19:c2:b0:04:1e:29:24:ad:
c4:08:ba:ae:40:91:9a:5a:cc:43:99:3f:55:85:ed:68:03:f6:
a7:bb:d9:c8:c5:e7:a5:07:1d:f6:49:ce:06:a2:7d:f2:44:04:
76:d9:1b:41:f4:41:2c:f0:6d:0a:67:da:0b:8b:a1:08:51:63:
bf:d4:bb:ae:72:9d:f2:bb:fd:46:4f:13:74:b3:a6:0d:77:9e:
a3:1e:dc:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 04:14:49 2025 by rpki-client