Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
File: 0DjDOLEo-Drewvadk8MsU1PKA5g.mft (raw, json)
Hash identifier: mCBboRomvW0HZ5dkbX445iiJ/iwIsjOeBDrLun5Gank=
Subject key identifier: 39:62:B8:D1:11:11:41:78:16:06:4D:06:CF:B5:29:9B:69:D6:0A:54
Authority key identifier: D0:38:C3:38:B1:28:F8:3A:DE:C2:F6:9D:93:C3:2C:53:53:CA:03:98
Certificate issuer: /CN=d038c338b128f83adec2f69d93c32c5353ca0398
Certificate serial: 0196775589629F131BBDCD7D90AB92583516
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
Manifest number: 11AC
Signing time: Sun 27 Apr 2025 13:00:16 +0000
Manifest this update: Sun 27 Apr 2025 13:00:16 +0000
Manifest next update: Mon 28 Apr 2025 13:00:16 +0000
Files and hashes: 1: 0DjDOLEo-Drewvadk8MsU1PKA5g.crl (hash: ekZNui101n2N3vPOJKYbCT5Axt9hqgN4O7QMimGndec=)
2: 7PD1wIgjrZ9T9-fQhjLFUrZGUJE.roa (hash: 8HGos2aeHkG0saEvUQyEseTwmsTJnTnE4JuY9jxzUVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 13:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:55:89:62:9f:13:1b:bd:cd:7d:90:ab:92:58:35:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d038c338b128f83adec2f69d93c32c5353ca0398
Validity
Not Before: Apr 27 13:00:16 2025 GMT
Not After : Apr 28 13:00:16 2025 GMT
Subject: CN=3962b8d11111417816064d06cfb5299b69d60a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a7:1d:5a:fa:ac:79:a1:11:3f:b0:ca:bb:07:
8a:d0:66:71:35:f0:36:b5:f5:47:f5:78:c9:a5:05:
33:bc:eb:ae:d5:33:78:18:37:89:1f:5f:c5:27:7a:
b5:7b:50:d1:1e:e4:a0:20:af:f3:9e:ae:56:51:58:
b3:ec:5f:03:10:81:e5:31:35:8a:ac:0a:03:80:f7:
1c:15:c4:86:3a:36:c5:0d:10:88:ca:ad:81:47:a4:
33:b1:ac:2a:33:a0:4b:d4:d4:51:c7:a5:4b:ed:48:
00:1e:3c:d4:84:04:8b:3b:99:09:4d:76:3b:ca:0b:
09:37:73:28:b9:f8:1c:57:cb:28:0b:b3:ee:fc:3e:
b9:65:aa:8e:c5:b7:3f:7c:4e:17:4c:11:4b:f4:3c:
ec:95:fb:54:d0:d4:15:4a:cf:39:ff:f3:96:8a:d7:
3f:f1:ca:e2:b7:21:77:31:02:79:db:8c:3a:67:3b:
83:61:06:68:e3:4e:9b:28:13:07:61:80:e4:ae:0f:
16:3f:95:9a:f5:44:32:3d:bb:f3:4a:4c:8e:d1:46:
11:ea:90:7d:6e:42:91:8d:79:87:bf:51:2c:68:8e:
7e:42:14:47:c1:f9:42:88:72:29:ec:fd:45:9a:d7:
13:b7:ea:c9:b8:e4:15:ab:42:91:96:2f:95:06:2f:
3e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:62:B8:D1:11:11:41:78:16:06:4D:06:CF:B5:29:9B:69:D6:0A:54
X509v3 Authority Key Identifier:
keyid:D0:38:C3:38:B1:28:F8:3A:DE:C2:F6:9D:93:C3:2C:53:53:CA:03:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0DjDOLEo-Drewvadk8MsU1PKA5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/925f91-30c5-4a6b-a149-9bf8b1ef2e96/1/0DjDOLEo-Drewvadk8MsU1PKA5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:37:ac:9f:68:28:1e:08:93:a5:cd:5e:96:f1:c2:87:3e:d3:
0f:f3:4a:36:51:a1:10:b4:a1:a6:93:e4:6e:cb:c1:ed:a0:16:
67:44:28:ff:9f:fa:a4:e7:0e:16:94:cb:7e:42:1b:ff:67:2c:
bf:fe:44:2d:64:e2:9d:cd:a0:19:de:17:73:42:5c:15:fc:54:
86:45:c8:7e:00:e2:16:8e:bc:18:fd:88:bd:fe:7f:e4:91:23:
3d:c7:8e:f6:d4:3f:6f:df:99:8d:e2:7a:b0:3d:49:47:da:4e:
21:c9:94:b5:66:61:c7:7c:10:03:27:96:90:72:67:66:fc:f9:
36:f2:a2:0e:3e:4f:94:ed:29:e0:b9:03:6b:2d:2a:70:c1:17:
73:18:7f:13:0f:a8:54:97:87:aa:db:f5:a7:62:e8:b3:1a:52:
42:12:65:d4:70:e1:20:33:f3:36:13:4b:95:7a:93:ee:89:7e:
74:27:cd:3d:7a:c2:2a:5e:e8:2f:a2:8b:1e:aa:a1:67:81:7f:
88:9e:b8:72:20:c5:46:d2:67:e9:55:11:0c:7b:13:5d:a4:06:
de:96:33:3f:42:66:29:2e:38:94:4c:02:bf:1f:6e:92:e4:af:
96:bc:42:6a:d9:fe:cc:75:32:1f:18:d5:2b:a4:2a:8a:37:3b:
1c:59:07:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:52:19 2025 by rpki-client