Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.mft
File: D-qK4ZBhrMVImsJxkIKs6lovxdM.mft (raw, json)
Hash identifier: rq3C7HJBbmwNfpD7gw95E6NdnPDVQFzFDAjCAgoIvy8=
Subject key identifier: BF:52:D9:FD:57:4F:85:71:E6:69:82:D6:DE:81:D4:7A:2E:01:95:42
Authority key identifier: 0F:EA:8A:E1:90:61:AC:C5:48:9A:C2:71:90:82:AC:EA:5A:2F:C5:D3
Certificate issuer: /CN=0fea8ae19061acc5489ac2719082acea5a2fc5d3
Certificate serial: 01967FB3CE830E25CF2DB6BF5FD1F3B775B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-qK4ZBhrMVImsJxkIKs6lovxdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.mft
Manifest number: 07DD
Signing time: Tue 29 Apr 2025 04:00:12 +0000
Manifest this update: Tue 29 Apr 2025 04:00:12 +0000
Manifest next update: Wed 30 Apr 2025 04:00:12 +0000
Files and hashes: 1: D-qK4ZBhrMVImsJxkIKs6lovxdM.crl (hash: sxVsI1YG0GEO6zliBgQ7bU3YpsiT6fTgoIIGeWOxwnU=)
2: M10vf4QxH5-zWTvsa4ILhkuyN0k.roa (hash: ddpmJOxtLixoYeVKM1qcWIIFhN7ghewh8wxesIUHdzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.mft
rsync://rpki.ripe.net/repository/DEFAULT/D-qK4ZBhrMVImsJxkIKs6lovxdM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 04:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:b3:ce:83:0e:25:cf:2d:b6:bf:5f:d1:f3:b7:75:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fea8ae19061acc5489ac2719082acea5a2fc5d3
Validity
Not Before: Apr 29 04:00:12 2025 GMT
Not After : Apr 30 04:00:12 2025 GMT
Subject: CN=bf52d9fd574f8571e66982d6de81d47a2e019542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:dc:7a:25:91:00:21:68:6f:cc:a6:ea:df:cb:
09:ca:de:c0:84:b9:fe:35:e8:9c:c2:f9:98:3d:fe:
a3:9e:4f:dd:ae:d9:f8:5a:3b:37:81:81:9d:b5:cb:
f0:a1:e6:f5:77:e7:03:cd:c0:71:84:da:15:07:fc:
88:5c:68:d9:3c:34:5f:1e:d2:47:be:ec:8f:cb:c5:
2f:16:97:57:ea:56:ff:54:ef:ae:90:c9:3d:f6:91:
a6:47:30:56:64:26:76:9d:2e:32:97:69:0c:77:94:
99:08:9e:1c:ad:30:b2:1d:63:1d:3d:f9:40:a2:62:
9b:a4:57:64:00:e1:a3:2b:7d:21:39:a4:36:25:71:
e3:7f:fc:8e:e8:6d:29:31:f3:34:22:ee:bf:25:08:
98:19:aa:cd:b1:3c:f3:17:fd:b9:82:97:61:70:1d:
d5:92:e0:ad:08:fe:99:d7:29:a2:f5:6c:e9:96:70:
5d:da:0d:83:77:0c:f5:fc:8e:5f:ac:c6:af:a7:f7:
53:0c:9d:70:e1:49:ac:45:de:b3:8d:7c:39:7f:ac:
47:3a:fe:7a:ac:c3:da:83:f5:c8:b2:53:d3:8e:de:
62:1f:1d:51:b3:b5:ed:8e:06:cc:4a:b2:a2:54:fd:
7a:19:74:77:d2:51:7b:c5:c2:61:a0:62:cd:cc:a9:
79:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:52:D9:FD:57:4F:85:71:E6:69:82:D6:DE:81:D4:7A:2E:01:95:42
X509v3 Authority Key Identifier:
keyid:0F:EA:8A:E1:90:61:AC:C5:48:9A:C2:71:90:82:AC:EA:5A:2F:C5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-qK4ZBhrMVImsJxkIKs6lovxdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:91:ad:bc:8e:fb:d7:74:63:5a:7a:cb:7a:39:32:45:29:3a:
71:9f:5a:2c:85:38:f4:a7:eb:0e:ab:e2:f7:91:75:ca:b8:f7:
26:66:b7:64:6f:21:54:57:9c:a4:4d:32:e4:2f:2b:c9:97:3a:
e5:c9:25:77:e1:92:6d:1e:34:dc:0b:bb:67:ce:0f:74:2e:37:
54:5d:fa:03:1e:1e:29:7e:0e:f1:7f:54:58:85:04:9a:41:22:
60:31:ce:50:79:5c:1b:ae:74:fe:2c:d8:51:7c:5e:66:30:2e:
67:f6:b0:eb:0d:58:e1:5c:dc:39:ec:11:3f:4e:64:7a:c1:83:
52:2c:36:65:0b:69:24:10:18:f1:8d:74:f5:47:05:c3:69:17:
b1:0b:7a:f5:c9:31:03:8c:fa:a8:43:c9:b8:39:8d:a5:33:11:
ff:b1:9a:f3:cb:5e:13:97:2e:20:79:df:21:4a:49:55:b5:75:
db:04:b7:7f:4e:5a:03:ec:d0:ad:1b:e8:bb:09:6c:48:53:42:
3a:b5:90:0a:a2:47:13:f1:02:37:04:da:c7:5a:64:4c:4c:13:
e7:d9:44:da:dd:5c:ea:a3:93:18:c6:78:86:42:35:45:17:ab:
7d:e6:b3:b9:39:cd:03:34:13:86:04:87:13:08:f0:5e:5f:39:
89:a1:77:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 12:46:14 2025 by rpki-client