Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
File: _pLvNTIb-Pcic0v_nfpj-9DwaQo.mft (raw, json)
Hash identifier: Zz6hlBJT54PGkzDf0dk3AK//plQ8VtDG+m6xXtcGKpA=
Subject key identifier: B6:FF:5D:EF:B3:09:AE:5D:E5:F8:DC:A9:51:DF:6A:9C:73:FD:D1:5F
Authority key identifier: FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
Certificate issuer: /CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a
Certificate serial: 01968391E0D2C64A1C0CDD6FFB45DECDE495
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
Manifest number: 0E81
Signing time: Tue 29 Apr 2025 22:01:37 +0000
Manifest this update: Tue 29 Apr 2025 22:01:37 +0000
Manifest next update: Wed 30 Apr 2025 22:01:37 +0000
Files and hashes: 1: FsJZX9GGj2A1me0tekd7HmtKIf4.roa (hash: wa9LmtrA5IFHkOGKHcF70x4E1HktC1RNDhObryrXOsE=)
2: _pLvNTIb-Pcic0v_nfpj-9DwaQo.crl (hash: pYyd0UWn3VeWPRISE77mnCkS60Gjf8nYR5ZUBtueDAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 22:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:91:e0:d2:c6:4a:1c:0c:dd:6f:fb:45:de:cd:e4:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a
Validity
Not Before: Apr 29 22:01:37 2025 GMT
Not After : Apr 30 22:01:37 2025 GMT
Subject: CN=b6ff5defb309ae5de5f8dca951df6a9c73fdd15f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:68:09:ce:02:05:9a:e8:b6:0b:a5:b9:7d:91:
9a:d8:9d:be:99:ac:fb:12:2c:63:cc:32:b2:25:84:
64:c1:ef:21:5e:1c:21:df:90:ed:13:75:82:e2:de:
07:eb:e0:32:95:05:be:2f:8f:42:b8:ce:d2:04:09:
d9:cc:5b:a8:2d:45:ae:9e:49:d6:36:bf:d2:4b:a2:
5a:0b:3f:2b:65:0f:af:d9:6a:cb:30:10:b9:65:7d:
01:f0:ea:93:08:70:6f:ec:5e:ed:90:99:92:a5:71:
c9:1a:cf:08:23:78:17:27:39:1d:8b:2f:29:91:00:
63:f7:25:6a:83:91:77:7c:96:02:f7:7b:29:a3:26:
df:a1:38:65:23:ab:56:38:3a:03:c3:2b:9a:62:30:
a4:d8:98:4d:83:12:7a:b6:51:bc:1c:b7:74:1d:aa:
3a:0e:9a:04:d8:1d:ba:d0:ba:56:83:76:ae:05:e9:
7c:d6:ba:c7:4a:53:4e:cd:3c:d9:e4:f8:6e:b9:6e:
fa:66:8f:b9:a5:66:d2:f8:b5:60:60:9f:36:ce:ef:
73:5e:c8:7b:72:04:c2:b8:e2:c7:23:36:b6:95:ca:
0f:38:69:e4:a6:78:7e:06:c5:ae:ba:fe:6f:3f:7c:
d1:76:3a:60:f8:4a:29:df:9d:91:e7:4f:fc:10:42:
ad:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:FF:5D:EF:B3:09:AE:5D:E5:F8:DC:A9:51:DF:6A:9C:73:FD:D1:5F
X509v3 Authority Key Identifier:
keyid:FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:98:81:23:a6:c5:af:2e:2f:d1:68:91:3b:4d:8e:d1:85:24:
ab:b5:fd:98:3f:10:99:ff:82:bf:92:a2:50:be:83:29:b5:51:
0e:36:7a:19:70:9f:f9:ac:7f:b4:58:ad:9a:86:34:ce:70:7c:
dc:69:1c:00:d9:83:6b:11:cd:b9:99:44:15:25:e1:fc:d2:ce:
a2:1b:58:1e:e8:61:b6:fc:11:cb:51:08:75:1c:b5:17:5e:85:
fe:9e:cd:00:72:fc:0a:00:8e:51:3f:f3:48:9b:f7:e8:88:a5:
9b:54:69:c9:27:c0:eb:de:21:a1:94:06:b5:5d:99:c7:af:39:
f6:bf:89:3b:70:de:92:dd:eb:d3:2c:e5:59:d8:5c:2f:52:10:
b1:bf:62:46:56:91:1e:e1:99:b5:30:d4:5f:ad:fb:74:4d:1f:
a0:67:8b:0f:8e:c6:17:3f:21:d0:43:94:a7:13:cf:04:a3:4c:
71:c3:12:62:16:ff:a3:8a:a4:b9:aa:e5:a5:11:40:95:71:4c:
dd:32:38:c7:78:d8:40:23:2a:c0:f1:5b:d7:38:85:7e:87:37:
6d:4a:61:84:36:4b:f6:94:15:de:a1:a5:ca:93:2c:0c:af:16:
75:e7:c9:f5:5b:2d:c3:d1:35:87:0a:7f:f8:62:bd:78:5b:a1:
b2:9c:c9:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 05:52:54 2025 by rpki-client