Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
File: pOuetVR8f18ar8CtoUCAVBlhhyY.mft (raw, json)
Hash identifier: 6dHany+BYXyke4jwetrTVhlqBqObQuPSgB6dZ8DqLWc=
Subject key identifier: E9:F3:42:7F:4D:9E:26:3C:C0:44:EF:E6:D4:B6:43:0D:79:B2:88:E0
Authority key identifier: A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
Certificate issuer: /CN=a4eb9eb5547c7f5f1aafc0ada140805419618726
Certificate serial: 0196B2FCC7B7FA96D770A64F6FB95C845BDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
Manifest number: 091F
Signing time: Fri 09 May 2025 03:00:32 +0000
Manifest this update: Fri 09 May 2025 03:00:32 +0000
Manifest next update: Sat 10 May 2025 03:00:32 +0000
Files and hashes: 1: J_w-klg8Fz7usxtg6f6kBplmW2Q.roa (hash: wSUiP/GQT3afkhYb4zAVk2weNrXx80BBBUvY2crSbB8=)
2: pOuetVR8f18ar8CtoUCAVBlhhyY.crl (hash: BQHHByVM9nhDytvC/D3eMJMk+ITKiAFOxMd3FVOxM00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b2:fc:c7:b7:fa:96:d7:70:a6:4f:6f:b9:5c:84:5b:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4eb9eb5547c7f5f1aafc0ada140805419618726
Validity
Not Before: May 9 03:00:32 2025 GMT
Not After : May 10 03:00:32 2025 GMT
Subject: CN=e9f3427f4d9e263cc044efe6d4b6430d79b288e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9a:2a:97:72:85:7f:3e:c8:04:31:9b:65:42:
bb:1b:ac:12:1a:e1:00:29:b2:ed:97:fc:d6:db:a5:
43:10:8c:f9:e2:ea:a5:78:b7:62:e2:ea:a5:df:05:
39:1b:53:24:8b:f3:74:bb:55:1f:10:51:b9:c9:46:
f1:97:6a:2a:b5:92:34:63:dc:4d:c2:01:dc:b6:ce:
a2:87:bc:d2:55:21:a1:d5:06:ee:ee:76:f8:25:88:
1c:74:96:02:ca:d3:28:59:73:74:07:74:74:1c:c4:
3f:68:e7:e8:44:7b:fd:ca:3b:bd:dd:5f:97:65:f3:
3a:bf:26:4b:28:cb:7c:04:e8:fd:49:22:ae:b0:51:
78:c7:02:f3:d3:74:42:3e:b3:80:fa:2b:a2:1e:45:
12:07:cf:38:bf:80:51:e9:1c:40:28:13:b8:ed:dc:
1c:dc:51:31:5a:6b:d1:ac:1e:b4:06:2c:24:2d:ba:
fe:60:dc:c0:04:4c:a2:4a:04:f5:73:e4:2f:63:39:
d4:1e:a6:34:e8:52:be:65:ce:f1:9f:a1:5e:eb:92:
e9:2e:39:f6:cd:24:eb:31:35:8f:ee:92:03:62:7b:
48:4c:10:68:6c:69:d0:e3:20:23:9e:33:f8:2a:b3:
e5:20:5f:d1:73:64:1a:4e:5a:87:19:44:dc:3d:bb:
bc:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F3:42:7F:4D:9E:26:3C:C0:44:EF:E6:D4:B6:43:0D:79:B2:88:E0
X509v3 Authority Key Identifier:
keyid:A4:EB:9E:B5:54:7C:7F:5F:1A:AF:C0:AD:A1:40:80:54:19:61:87:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOuetVR8f18ar8CtoUCAVBlhhyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/4cd72d-d8a5-46ce-8674-0d22232c34a0/1/pOuetVR8f18ar8CtoUCAVBlhhyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:37:50:cb:6f:ae:7b:87:5a:a3:bd:e5:26:da:77:b9:7c:a2:
b4:29:6b:de:ff:1e:80:00:6f:7c:66:0e:ad:28:8a:87:29:eb:
3c:df:c0:be:fa:dc:b2:92:3b:87:8a:f1:7d:c8:08:21:1e:de:
72:67:34:9f:77:60:cf:b7:a3:3d:1f:cb:59:bb:91:43:f7:c8:
df:25:3d:e0:45:8f:67:d1:3b:41:69:a4:a9:8a:d1:48:9f:3a:
2d:8b:f1:01:3e:5a:fb:77:30:16:32:44:a2:e3:74:cf:f5:03:
1f:41:46:e2:ea:e4:08:e8:5b:20:72:9a:b7:ba:4b:5f:bd:ce:
0a:4f:27:e7:bc:3e:ab:4f:1f:40:bb:88:a9:d3:80:65:f1:f7:
c8:c9:3f:1b:1c:3f:26:ce:81:60:fa:c1:e9:cf:03:0d:9d:07:
1d:1f:03:a0:4a:12:83:b3:9f:5c:f4:80:8e:23:c6:46:2f:37:
0a:ab:0d:ad:ba:39:b7:b2:76:4d:00:59:5b:dd:48:7f:c2:4b:
0f:45:4e:b6:d2:fe:18:4c:cb:e9:ba:58:2f:36:d3:91:37:bb:
d4:fe:3d:6b:f7:78:e5:8e:16:28:6e:33:20:87:41:db:42:72:
55:98:06:a2:5a:90:73:f6:31:8d:25:4b:86:51:a4:b3:da:8e:
a2:15:64:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 07:16:39 2025 by rpki-client