Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
File: rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft (raw, json)
Hash identifier: sA0Kmqg1/2xtvzDZ8HIBLI+mVMxf/0TJcNwa6JFSsio=
Subject key identifier: 14:18:E1:FC:7E:91:B1:66:9B:D6:57:5A:89:77:CB:D1:CF:42:A1:1D
Authority key identifier: AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
Certificate issuer: /CN=acebf396c9adf94f84dc901656e255ce6d50660c
Certificate serial: 0196BF37DD4EAB967D46BC5F78CC615C010A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
Manifest number: 01AB
Signing time: Sun 11 May 2025 12:00:31 +0000
Manifest this update: Sun 11 May 2025 12:00:31 +0000
Manifest next update: Mon 12 May 2025 12:00:31 +0000
Files and hashes: 1: C4fkDspID27_2W7uJ0bDWTiMbsI.roa (hash: IPmvbCiP1dYquC+xxAe/aHEwDNf0L9S57sM644oyMl8=)
2: rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl (hash: /bl+b1NatNeoD6ZDzJH+74BclmpqTa7i0mNYE5YZ4b4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:37:dd:4e:ab:96:7d:46:bc:5f:78:cc:61:5c:01:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acebf396c9adf94f84dc901656e255ce6d50660c
Validity
Not Before: May 11 12:00:31 2025 GMT
Not After : May 12 12:00:31 2025 GMT
Subject: CN=1418e1fc7e91b1669bd6575a8977cbd1cf42a11d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fc:d6:a0:80:27:a5:13:6b:e6:b9:5f:ac:38:
6f:32:ce:2b:a1:ca:89:d1:05:67:56:0d:c0:14:d2:
e5:f1:9d:3d:15:e2:98:42:41:8e:7e:79:a7:30:95:
a2:ef:6b:4b:07:3c:b5:60:a6:e4:68:4e:4e:a6:83:
a2:2a:1e:6f:0b:e7:93:32:cf:6c:d6:7d:f4:43:9c:
4b:9c:18:f2:90:85:e3:55:15:b3:4e:76:3e:3c:ca:
da:2a:ec:ee:4e:51:d2:80:3c:8b:00:03:5e:60:43:
a4:c4:b4:06:ab:66:71:f4:f4:0c:a1:d2:81:d5:9c:
84:bd:95:4f:41:7a:08:25:63:70:3c:ea:bd:79:33:
81:27:d1:3a:38:5d:e6:ea:76:6d:68:5d:30:34:7f:
fd:ac:a3:73:8d:39:60:ac:6b:13:b1:df:c0:a2:d7:
9d:f0:9e:98:c1:aa:e2:09:f4:d3:2a:7b:90:cb:31:
2a:88:42:6d:ed:26:26:bc:ae:8d:c7:05:da:c2:0e:
65:45:41:d5:79:86:9e:36:0e:85:77:dd:c6:f3:d4:
e9:6d:75:16:77:3a:ac:c5:a7:9f:d8:01:b9:32:87:
91:da:14:ca:28:e8:79:87:fa:44:c6:17:78:55:cb:
51:71:15:60:8b:64:57:cf:6d:d4:cf:64:85:01:97:
ec:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:18:E1:FC:7E:91:B1:66:9B:D6:57:5A:89:77:CB:D1:CF:42:A1:1D
X509v3 Authority Key Identifier:
keyid:AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:f5:b8:fd:52:06:92:c8:bd:82:fc:a4:4c:ac:62:ac:f5:51:
c3:d5:94:95:1d:a8:79:62:18:cc:94:11:48:7a:c9:7c:44:76:
fa:3d:e8:c9:5b:e6:23:3a:94:4d:b5:33:4e:55:7c:39:67:c9:
7c:a6:95:88:df:ef:02:34:f0:52:f2:1c:5b:7d:50:60:e5:18:
20:0d:49:85:51:72:a6:8c:5c:45:a6:e3:43:57:9f:d8:05:c4:
ad:44:13:3b:35:c0:e6:d0:4b:c1:2e:8f:dd:b1:1d:f4:58:aa:
0e:86:5d:27:42:e2:2b:8e:a2:7a:16:5b:bb:54:06:f7:dd:b5:
f2:c1:79:50:d3:a3:f4:6c:f6:49:0e:a9:c4:9f:f3:8d:18:b1:
00:8b:ec:c8:17:77:ae:85:2d:57:47:36:89:c3:7e:b3:9f:d7:
ae:4d:b9:ba:6e:c2:01:0a:12:3c:14:08:b1:bd:59:26:40:34:
06:1d:24:34:2f:d6:ce:f6:cb:2a:6c:d7:fe:7e:7e:56:a1:0a:
30:0a:bf:33:01:f9:e1:f0:04:58:61:c3:44:ea:3f:b3:5a:61:
b4:9f:0c:01:ad:58:23:d6:1c:68:fc:7d:8f:18:a3:93:61:79:
88:d6:50:80:c2:05:89:df:0f:95:d7:d2:77:6e:ef:ec:a3:67:
a1:9b:a8:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 16:41:14 2025 by rpki-client