Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
File: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft (raw, json)
Hash identifier: yGtvDieSQGIzvzNPnalJJ1oL2KySdO1/4lchfWsRmyk=
Subject key identifier: 18:53:46:7F:4E:70:8B:B6:57:14:C7:51:9D:FB:03:97:E1:52:79:E1
Authority key identifier: D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
Certificate issuer: /CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Certificate serial: 01967EA1960D06DEDB87D92AEF75C3BBE0DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
Manifest number: 0DC5
Signing time: Mon 28 Apr 2025 23:00:40 +0000
Manifest this update: Mon 28 Apr 2025 23:00:40 +0000
Manifest next update: Tue 29 Apr 2025 23:00:40 +0000
Files and hashes: 1: 0E7XqwXvQw8zGg6cfEDvAxEUfw4.roa (hash: GEurlnwNp4FPEWbJDU+gHsQep+536ZgKzEj3iyCeYrM=)
2: 0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl (hash: gmGYLwxi9YbXC+gZWRXD74dgxXAi1k9g0Rb3W8RHF8o=)
3: 5YRtqk6Jp7Zam_D7fc_X7XfH8s4.roa (hash: X5F/YiS9H2WE1ZFG9REO1WI3BKWNsouj5lZWL1J+hoo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 22:36:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:a1:96:0d:06:de:db:87:d9:2a:ef:75:c3:bb:e0:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6
Validity
Not Before: Apr 28 23:00:40 2025 GMT
Not After : Apr 29 23:00:40 2025 GMT
Subject: CN=1853467f4e708bb65714c7519dfb0397e15279e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d9:9d:a2:4d:67:2b:43:38:07:71:2f:62:a6:
9b:a6:16:9d:e6:1e:95:aa:21:3d:eb:7a:0f:08:08:
24:ea:8a:e0:08:0a:6a:12:a1:f6:ea:e5:51:19:a9:
a0:a0:13:25:14:24:54:cf:c0:b9:0e:57:9e:d7:50:
99:fd:a3:da:3f:f1:43:0d:f2:15:86:13:1c:13:99:
b9:a5:57:d4:54:14:ad:e6:d4:a6:d6:75:87:30:71:
cd:f1:d7:e7:73:d5:cb:9a:8c:71:cc:98:0d:8b:f2:
9c:10:00:0d:1b:07:53:44:10:7f:dc:aa:cd:9d:d0:
0f:ea:63:24:f3:fa:5f:6f:41:55:c1:03:93:9c:92:
44:13:ae:d4:0d:07:c4:5e:d7:e8:41:1f:16:fb:f5:
4a:73:73:b8:6b:b4:e2:8a:d8:8b:9b:06:21:41:79:
6b:76:58:eb:5c:30:23:68:97:ac:e3:5e:4a:5f:18:
51:99:1e:b4:de:fd:04:c4:25:c3:64:e9:1b:5f:82:
5c:00:31:31:18:83:e1:15:ca:02:ed:84:b8:20:33:
f9:81:89:47:a1:2d:15:a4:3b:1e:98:37:89:18:f7:
31:b3:8c:54:2b:df:29:53:ef:55:75:ec:de:fa:00:
23:48:7b:e2:17:f0:80:c5:a6:2b:5a:d2:3d:6c:19:
7e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:53:46:7F:4E:70:8B:B6:57:14:C7:51:9D:FB:03:97:E1:52:79:E1
X509v3 Authority Key Identifier:
keyid:D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:7f:97:df:5a:e9:a6:81:ec:b7:42:78:2a:3a:b1:70:52:5c:
fc:bf:6c:4c:bb:82:af:93:67:f3:dd:0c:6c:3e:28:7b:5e:d5:
d6:96:c8:1b:ac:8e:e4:c0:e5:ec:e7:60:de:4d:54:3c:b2:1e:
6c:96:b9:4a:78:cf:57:92:9b:6c:86:8f:67:8c:a7:93:18:f3:
c9:66:df:c9:0c:21:ca:49:ba:8b:c7:2b:8b:7b:42:44:f8:86:
31:05:77:e4:81:f5:40:e8:8e:1b:7c:2d:20:18:f4:52:65:69:
f6:81:5a:bf:9e:c8:31:a5:e1:59:d1:63:bc:ba:7c:6e:fb:cf:
ef:5f:bf:f2:45:4c:f2:a3:52:8e:b0:80:52:2c:2b:09:e6:2e:
dd:99:14:d7:04:cb:48:9f:a7:c0:24:d6:e9:f4:69:a1:8f:1e:
8f:d4:0f:f0:ed:66:77:6c:38:98:c9:4a:92:fe:b8:b4:50:23:
90:38:bb:91:51:36:ce:41:77:5b:c0:b1:82:23:5f:9c:40:a1:
27:64:82:4f:f1:91:35:c9:6e:d3:cb:91:5b:87:b2:3d:ef:a1:
32:32:cd:88:55:c8:63:f1:d4:e8:81:4d:c7:03:3a:68:87:e6:
39:a3:39:bd:33:7e:43:d8:04:ae:7f:99:ce:83:e6:ad:72:d0:
77:d2:28:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 03:46:18 2025 by rpki-client