Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
File: 23DOek5uSrOk6p8IH1kupfbSuao.mft (raw, json)
Hash identifier: /MBWsfsqRFjA5arN/1DeBj/HKmgP74eC9unXHHzDieI=
Subject key identifier: 54:A4:26:8D:B7:BF:A6:00:C3:4E:1E:5E:E9:6C:A8:44:12:9A:FE:47
Authority key identifier: DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
Certificate issuer: /CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Certificate serial: 0196C98460D1616D4885488F07E3C67CFD7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
Manifest number: 057D
Signing time: Tue 13 May 2025 12:00:18 +0000
Manifest this update: Tue 13 May 2025 12:00:18 +0000
Manifest next update: Wed 14 May 2025 12:00:18 +0000
Files and hashes: 1: 1-zGyc8-sNFoNd9jrRwy0ohv-lr8.roa (hash: X6damPmptp3XphV2HfGbEnZgUQ5Ok8UVDdDjwWdsAA0=)
2: 23DOek5uSrOk6p8IH1kupfbSuao.crl (hash: VzSO/QTpPqG7lzQ3YNaULH5Wz8kBpBB1665ICsFdlBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 12:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:84:60:d1:61:6d:48:85:48:8f:07:e3:c6:7c:fd:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Validity
Not Before: May 13 12:00:18 2025 GMT
Not After : May 14 12:00:18 2025 GMT
Subject: CN=54a4268db7bfa600c34e1e5ee96ca844129afe47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:40:a3:9d:ac:15:03:1d:29:39:ff:a7:ff:0b:
87:35:7b:af:74:33:9a:60:42:da:d1:5a:66:4a:f0:
b2:e6:ac:6d:48:f0:98:44:97:a0:bc:9f:3a:06:bc:
2d:67:5c:d9:e9:8c:a0:bc:60:b7:92:d2:2b:b6:81:
72:de:95:e6:17:e9:31:33:20:39:ea:27:60:44:09:
d8:73:5a:39:77:1d:51:00:76:e4:b9:b5:97:8f:e4:
d5:44:d8:3e:ab:68:de:18:5e:47:ea:2c:f6:cc:e4:
c6:a2:ab:f9:9f:55:bb:ea:28:f6:14:3b:9e:f9:fc:
2a:ed:f3:cb:84:57:52:fc:ed:d9:89:91:50:58:1c:
f6:2a:45:3d:0c:9c:92:5e:9a:cc:27:7c:f1:71:93:
47:80:cc:55:81:7d:bb:b6:23:4c:1f:20:76:92:d7:
bb:ff:6a:87:34:89:04:25:76:8f:7c:c8:6b:95:19:
25:fd:ba:fb:46:d9:8a:80:7a:f6:6f:2a:db:36:55:
a7:27:c3:a1:fc:86:a4:f6:ae:61:48:38:06:99:63:
e8:7a:69:21:b5:ac:5a:61:58:47:d1:8d:60:58:6c:
db:40:fd:42:a1:13:92:a5:5b:de:5b:6e:62:5c:f0:
3d:2f:4e:51:19:98:1f:c0:e8:fa:03:2c:85:d2:8f:
c3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A4:26:8D:B7:BF:A6:00:C3:4E:1E:5E:E9:6C:A8:44:12:9A:FE:47
X509v3 Authority Key Identifier:
keyid:DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:8d:50:86:dc:b5:78:32:f4:53:c9:fc:44:6c:99:c9:fe:2a:
9f:02:d9:9d:69:38:34:a1:27:81:e0:89:08:5d:3f:55:f4:0b:
ab:d1:fb:f5:6b:a0:29:b6:56:b8:54:2a:38:40:9b:05:6c:ae:
40:f3:aa:d4:86:bf:da:0b:dc:55:bc:da:1d:b9:01:c0:f1:59:
8e:5e:ad:06:d0:b6:0e:ff:48:d8:1a:33:1e:58:12:a5:c9:1b:
4a:ce:8b:ad:fe:39:2e:33:18:2c:83:67:55:51:36:50:18:d4:
c0:6f:1e:47:90:a2:5c:51:ac:8d:b0:a9:a6:ce:c4:e0:59:c4:
e4:c0:be:37:e5:70:ac:b8:9d:f6:cf:22:01:7d:9d:1b:de:a7:
a6:a9:4f:94:d5:92:5b:32:35:ff:e6:cd:11:7d:7c:1a:cf:f8:
ec:25:ca:7a:9c:4e:22:1c:22:7c:dd:56:25:0e:e2:0c:db:2e:
0b:f9:e6:99:55:3f:28:bd:09:ee:b9:65:4b:5a:05:d9:2e:2b:
0f:bc:33:e0:d0:d7:c8:4b:61:d3:b1:6d:a6:4a:77:31:b4:53:
05:80:7c:36:44:3f:06:4c:fe:05:f1:bf:3c:1a:6a:19:c2:6f:
9c:3a:7c:60:53:09:03:99:4d:91:82:27:fd:e6:b8:cc:f7:6b:
75:e3:77:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 20:45:06 2025 by rpki-client