Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
File: Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft (raw, json)
Hash identifier: dtnDvTpeFKzYDhF2qGQr3YT2zkexYK2bY4iKlXoT4bs=
Subject key identifier: 89:D1:3C:06:1D:42:46:67:40:37:80:9C:BE:BF:C1:CB:BD:8E:99:DF
Authority key identifier: 0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
Certificate issuer: /CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Certificate serial: 0196857F510F2A46F4D457F7041922C4C1B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
Manifest number: 1516
Signing time: Wed 30 Apr 2025 07:00:35 +0000
Manifest this update: Wed 30 Apr 2025 07:00:35 +0000
Manifest next update: Thu 01 May 2025 07:00:35 +0000
Files and hashes: 1: 8GPy1nq-d8qyd5DzcEoD7_wmnRk.roa (hash: VU25KKsH1DHg8pytMPBtSMEdGMuo9BZsAecAtygfZnk=)
2: Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl (hash: M+cTC+X7of6sTzuneVCgSg+hMvvx7H0XLQx4u6fYiqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:7f:51:0f:2a:46:f4:d4:57:f7:04:19:22:c4:c1:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c
Validity
Not Before: Apr 30 07:00:35 2025 GMT
Not After : May 1 07:00:35 2025 GMT
Subject: CN=89d13c061d4246674037809cbebfc1cbbd8e99df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1b:5d:d8:55:1a:02:64:60:34:cc:02:34:8e:
7a:87:ab:5c:4f:27:2a:79:3d:21:13:5c:9e:07:4c:
c4:5c:ef:1f:98:13:91:db:7d:8c:4a:f6:e0:9f:c4:
08:4a:65:3b:2f:0f:cf:0e:7c:bf:a1:36:f1:9f:d9:
56:32:69:89:63:ab:8e:f6:01:7b:c9:b5:42:96:8c:
04:b2:57:7b:e3:b4:dd:da:c7:b5:dd:61:37:59:c9:
a7:a7:c3:74:32:8f:3a:80:73:6b:76:f6:76:6b:68:
12:8e:d0:a7:6a:80:b8:65:99:39:81:67:5c:76:b6:
4f:b4:0e:3e:fd:75:c5:31:9d:21:33:b3:96:38:51:
d4:49:0d:e5:c0:dc:b0:1c:c4:ec:3e:05:ea:4d:cf:
15:7e:3d:04:87:a4:86:67:98:df:da:cd:cd:7a:2c:
8f:64:1b:c2:a5:ca:ac:e4:14:e8:14:ff:51:7d:d5:
39:63:28:a7:43:23:27:ca:3f:41:dd:26:36:c7:bc:
ad:3c:0f:b4:a6:5a:b7:5e:18:10:ee:61:4b:d6:a6:
5e:b7:d0:84:66:34:0c:1d:e3:e6:42:23:12:22:81:
cd:a4:19:e0:59:80:e3:b2:e1:a1:5b:a1:18:8c:8d:
8c:06:a4:86:88:5f:cf:ed:d4:73:1b:b4:65:db:f9:
f3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D1:3C:06:1D:42:46:67:40:37:80:9C:BE:BF:C1:CB:BD:8E:99:DF
X509v3 Authority Key Identifier:
keyid:0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:71:d6:21:12:71:57:04:e6:f0:d0:2c:c1:31:27:44:8a:43:
e2:28:2e:f8:9a:c6:65:c6:35:50:c1:c5:6a:c0:9c:3d:c4:76:
6b:44:7a:b1:05:66:ed:5a:90:42:96:df:32:d4:91:ff:e7:89:
69:da:fd:63:dd:8d:41:31:da:ed:72:0f:d6:32:31:a0:a5:dc:
ce:a4:3d:00:02:99:f2:10:0d:44:e3:f5:8e:f8:96:fd:85:56:
9b:e6:95:55:1a:00:27:e6:8d:d0:18:9b:74:49:31:0a:f4:4d:
6d:18:fc:2e:34:f2:5d:24:28:3a:68:37:2d:5a:aa:51:22:f8:
6f:e6:42:49:ee:35:3e:06:46:6a:a1:b0:fc:21:b0:eb:f7:1e:
b5:56:78:1e:92:10:9d:65:11:be:27:79:b6:2c:3e:11:97:07:
9b:4b:a5:f7:cf:fe:6d:7e:32:a1:f7:be:56:a4:a5:77:6b:7e:
cd:df:3f:d2:38:3f:92:03:bb:71:da:64:b1:ba:f6:97:ee:9e:
b6:15:08:a4:75:be:39:46:09:ed:ff:57:69:24:d4:00:19:90:
7f:42:d4:94:3c:cc:29:7c:45:4b:b4:0f:85:1f:26:2d:be:f1:
af:74:10:43:79:43:e8:87:ac:92:9e:07:3a:b3:6d:18:06:d2:
31:19:aa:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 11:05:44 2025 by rpki-client