Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
File: d_u84sIID4H1oPmPJ5Ipgm3khQs.mft (raw, json)
Hash identifier: ZS6s0FnkHFTwtYt9UkNfPPA9kaeWdw9V8fkn2zSj0Fw=
Subject key identifier: 06:83:96:86:70:5A:F9:D7:CD:82:9B:54:99:18:15:A9:71:22:7C:7A
Authority key identifier: 77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B
Certificate issuer: /CN=77fbbce2c2080f81f5a0f98f279229826de4850b
Certificate serial: 0196CBE11ABDC54A20E038BE372AC6D27B3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
Manifest number: 0C60
Signing time: Tue 13 May 2025 23:00:49 +0000
Manifest this update: Tue 13 May 2025 23:00:49 +0000
Manifest next update: Wed 14 May 2025 23:00:49 +0000
Files and hashes: 1: AOhn7xhM2kSUfRAFFhvDCxU-O20.roa (hash: 1VAhBGtFhGjWFmWSsORfWNgJJ1LUT2F54ZQ/3ep5zho=)
2: d_u84sIID4H1oPmPJ5Ipgm3khQs.crl (hash: qnsElzHJI0bmiqhtR58lhkNxRN+Hed8934M5mTj+lHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 22:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:e1:1a:bd:c5:4a:20:e0:38:be:37:2a:c6:d2:7b:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77fbbce2c2080f81f5a0f98f279229826de4850b
Validity
Not Before: May 13 23:00:49 2025 GMT
Not After : May 14 23:00:49 2025 GMT
Subject: CN=06839686705af9d7cd829b54991815a971227c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d5:52:23:b7:09:b7:05:fc:1c:5d:59:81:20:
13:ce:48:23:c7:68:25:fb:73:9a:99:59:ad:18:6b:
a1:47:00:b3:5a:81:15:7a:62:65:f7:b2:86:5d:60:
e9:5f:bf:4a:7e:09:cd:a3:ab:b0:ad:2a:b7:33:44:
2d:63:01:bc:1e:d6:f9:46:72:e5:ab:31:56:8d:5e:
20:6a:a3:b2:04:f4:56:03:5d:fc:3a:18:16:89:c4:
68:eb:76:7e:73:7f:b8:59:08:aa:c3:f3:49:c3:be:
ca:1d:83:c9:c3:bd:bd:c6:14:3b:de:b0:dd:84:80:
19:ca:2a:28:13:3d:8b:88:86:57:59:09:06:ce:65:
75:f4:cf:98:3d:a1:f9:79:11:69:d8:f9:7c:8e:53:
e2:76:f3:5a:6b:fa:aa:f6:c3:ed:8b:26:a6:19:00:
25:11:c4:e3:ea:20:e6:34:a6:90:46:66:d2:9e:73:
4b:90:58:e5:f3:99:b9:0a:a6:41:be:49:93:53:d3:
43:c2:96:d4:dc:c2:72:17:79:66:1f:16:16:fb:57:
29:f0:07:57:4c:8c:d2:c0:86:7a:2d:1f:d6:23:f8:
cd:ec:a1:1c:cf:fd:cb:56:2e:23:08:e4:e4:68:1d:
cb:0c:75:3f:bb:77:50:1d:52:e1:b8:70:7a:d0:34:
f7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:83:96:86:70:5A:F9:D7:CD:82:9B:54:99:18:15:A9:71:22:7C:7A
X509v3 Authority Key Identifier:
keyid:77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:91:ed:78:76:4b:23:e5:97:1a:34:40:db:88:9a:c4:49:12:
cc:ef:e4:df:4b:35:56:d9:5e:be:a3:ae:83:6f:6a:a0:13:f9:
21:27:3a:5e:4e:72:92:af:53:48:6a:e4:8e:ce:19:1b:43:ad:
c9:26:f6:d4:ee:1e:40:33:ea:6a:f2:2c:8e:d7:e7:a5:f1:a2:
84:10:f4:50:75:88:8f:3d:b0:65:05:bf:78:4c:7a:1d:79:39:
e8:5f:69:69:97:a3:4a:0a:5d:ce:ad:da:3c:d2:72:24:27:c2:
37:c0:25:22:8b:d6:71:e6:fb:c5:b1:cb:c5:32:79:81:23:a0:
ce:b0:f1:d8:0f:c2:da:a6:94:77:10:9f:27:c6:eb:d3:ae:30:
50:63:2e:6c:22:e2:ad:6f:10:29:0b:d9:a3:83:ee:e5:25:ea:
f6:eb:df:e7:3b:50:41:c5:b2:8a:c9:d2:3a:76:f7:e8:12:c5:
5e:02:48:07:a2:06:79:ef:ba:fa:b1:48:43:b4:8d:f2:9a:c4:
c8:fe:e8:a1:f9:9b:c9:d0:1d:d5:e2:28:1b:88:c3:b6:0e:6d:
ac:0e:96:8d:32:56:37:80:3d:5d:7b:63:dd:c1:e0:75:5b:07:
61:f9:2d:bb:7e:b1:4a:9f:2d:75:39:98:ed:f9:cc:0f:a7:b0:
02:87:72:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 02:48:09 2025 by rpki-client