Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
File: 0tiRsOMo58hWrUt6B2TYLYVgltY.mft (raw, json)
Hash identifier: DAiApXiKcry888yHD3JKO7pFl0y/t/9cVxtb4NjHYfI=
Subject key identifier: 3E:6B:94:40:72:50:B1:03:32:F4:D3:78:A3:85:03:C5:9E:07:64:B2
Authority key identifier: D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
Certificate issuer: /CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Certificate serial: 01967831794B2462EC8D00E21A3871585F26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
Manifest number: 0163
Signing time: Sun 27 Apr 2025 17:00:30 +0000
Manifest this update: Sun 27 Apr 2025 17:00:30 +0000
Manifest next update: Mon 28 Apr 2025 17:00:30 +0000
Files and hashes: 1: 0tiRsOMo58hWrUt6B2TYLYVgltY.crl (hash: V5gXrpyX2A21jw4d3uj7l/fd8ZSdja7FND/P9lfsi60=)
2: LL8JcAdqtBuww975zCJ3NT8wbIo.roa (hash: OazqFiciLO+01js5WnVLTxcyLBf+8JShIpJGoJGbyKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:31:79:4b:24:62:ec:8d:00:e2:1a:38:71:58:5f:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2d891b0e328e7c856ad4b7a0764d82d856096d6
Validity
Not Before: Apr 27 17:00:30 2025 GMT
Not After : Apr 28 17:00:30 2025 GMT
Subject: CN=3e6b94407250b10332f4d378a38503c59e0764b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:15:18:04:26:7d:bc:28:9a:48:bb:6e:d7:c9:
8f:2c:92:9d:08:75:b2:30:d5:f2:c0:6c:ea:02:00:
b3:23:73:77:ad:63:e2:95:38:81:91:ee:0a:59:88:
3b:c7:c4:11:05:3e:a5:e5:47:57:53:41:01:18:18:
41:23:ac:40:df:70:61:55:95:8d:69:3b:59:e9:42:
cd:4b:e4:56:0d:72:31:67:fb:61:f5:f3:2e:7b:d1:
9a:19:5f:11:39:cb:3e:b3:d8:e4:f1:7a:fe:b2:d8:
fd:e6:65:8f:91:87:e7:32:e5:d2:36:a7:61:7d:b7:
3c:20:93:73:9e:64:d2:33:a4:98:fe:67:70:d7:13:
04:7f:2a:27:e1:e1:0e:b7:8c:4d:35:af:de:22:ef:
f6:34:ce:bb:0b:a6:4f:b6:fa:8c:2e:4a:18:8f:4d:
cc:6d:ff:51:c8:d1:c0:a0:83:b3:33:ae:c5:1e:24:
2a:11:e5:9f:6f:d7:8a:f0:ef:6e:08:75:61:c2:06:
a3:17:fc:d9:91:da:9a:9c:05:cc:90:8e:82:d8:b1:
ca:23:a4:9f:3b:48:f5:48:74:be:cb:fa:15:ce:b0:
15:35:e6:e4:28:3a:94:85:92:9f:98:29:1e:84:c3:
10:53:6d:a3:a8:23:47:4a:9e:8a:3f:57:98:47:a0:
27:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:6B:94:40:72:50:B1:03:32:F4:D3:78:A3:85:03:C5:9E:07:64:B2
X509v3 Authority Key Identifier:
keyid:D2:D8:91:B0:E3:28:E7:C8:56:AD:4B:7A:07:64:D8:2D:85:60:96:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0tiRsOMo58hWrUt6B2TYLYVgltY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7fd85d-0152-4ef2-9ebf-1e240b97d2c4/1/0tiRsOMo58hWrUt6B2TYLYVgltY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:6d:64:ed:38:3b:71:1d:05:19:c6:00:8a:43:c7:f1:bc:ad:
fe:f2:97:47:0a:4c:c2:01:cc:fc:2a:03:7f:d0:ef:76:b4:72:
87:4d:4a:39:08:fa:f0:4d:03:88:a7:77:49:a9:33:6d:0f:ea:
e0:be:4a:9f:a2:58:e1:34:65:7f:5e:08:26:68:ed:5a:4e:9f:
5e:e6:2a:b9:47:da:d5:9c:8d:95:32:74:6d:95:be:d6:61:b0:
95:47:f1:52:f5:da:5d:7a:08:69:c5:94:27:b4:aa:f4:97:7a:
76:a6:82:a1:f1:f9:0b:cf:bb:ff:1a:63:48:91:79:b2:0c:c1:
ab:25:3e:8c:ff:c6:96:39:f3:ef:28:b4:97:ac:ba:b9:ad:41:
ec:24:82:7e:3e:7b:8d:60:49:6d:64:92:65:f2:ab:06:d8:2f:
41:7e:73:95:62:3c:bd:2f:d0:96:65:45:79:af:33:bb:a7:d1:
ea:81:89:f4:26:59:2a:7a:ff:5b:c0:6e:db:20:8e:60:88:20:
1b:81:5a:cf:00:0f:13:16:3d:6a:07:e1:54:40:f3:b0:55:96:
d8:20:78:a2:6c:db:c8:af:87:ed:33:0f:53:74:8c:58:21:fd:
7a:b8:d3:24:7c:27:d5:c6:36:70:18:ad:b1:b7:3f:6f:d6:4e:
e3:e1:f0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 18:38:20 2025 by rpki-client