Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
File: 95d69YDIUMyL-QZJ-b2opqSL85Y.mft (raw, json)
Hash identifier: s3eF3ku3MeQKMIRInz2UlbCV0mjZcg9MJgpR+3gK/TY=
Subject key identifier: 3E:B1:70:DC:E0:D2:27:EC:C3:88:B8:1F:96:86:3E:BA:90:3A:7C:53
Authority key identifier: F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96
Certificate issuer: /CN=f7977af580c850cc8bf90649f9bda8a6a48bf396
Certificate serial: 01967831ABC420655A2E1DC9B9FF33AC35A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
Manifest number: 0B93
Signing time: Sun 27 Apr 2025 17:00:43 +0000
Manifest this update: Sun 27 Apr 2025 17:00:43 +0000
Manifest next update: Mon 28 Apr 2025 17:00:43 +0000
Files and hashes: 1: 95d69YDIUMyL-QZJ-b2opqSL85Y.crl (hash: /z6m9xTWVRDKNuwN4KWMLSowLBppKC/cga2Ps+5dYVA=)
2: xNx96Q3CalEzxDDmWGhbb3xTorI.roa (hash: gvLi2++gvNdVJ+GZ37QZOorhQSEvCo36oQwUoZic47Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:31:ab:c4:20:65:5a:2e:1d:c9:b9:ff:33:ac:35:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7977af580c850cc8bf90649f9bda8a6a48bf396
Validity
Not Before: Apr 27 17:00:43 2025 GMT
Not After : Apr 28 17:00:43 2025 GMT
Subject: CN=3eb170dce0d227ecc388b81f96863eba903a7c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:41:b5:12:dc:d6:d9:55:6c:2c:4a:d5:91:a8:
d2:7b:7e:30:29:c7:f0:19:47:95:b0:83:8a:3e:e3:
42:ed:b4:bc:87:df:00:e3:db:c8:1f:f6:ef:79:a4:
9d:22:11:2a:7c:0a:66:0e:52:c5:b4:80:b6:8b:e0:
03:a0:0c:4e:a3:84:9c:97:75:c5:bc:40:7b:0f:e4:
6d:66:b1:eb:3e:3f:67:09:48:73:79:01:c3:16:cb:
4a:2f:67:ff:b0:d6:19:16:ad:cb:9a:13:a4:c0:82:
77:9c:4e:a8:38:cc:cb:85:b6:46:18:f6:c2:ef:13:
10:83:40:ca:d2:70:b6:98:f4:54:3c:bb:a6:2b:67:
54:0f:0b:0e:06:fe:f0:24:09:57:db:3c:8e:77:69:
c6:0c:9f:c8:c0:53:74:2e:48:86:a2:4b:16:a7:92:
55:63:5a:32:cc:16:95:b1:cb:b1:43:f9:99:e5:8c:
14:13:4a:43:84:75:c6:f6:ed:91:3e:90:d4:cd:d7:
54:bf:b6:78:59:39:da:0d:11:87:7e:90:f1:cd:7f:
09:54:8c:52:66:25:9f:15:20:18:45:d7:30:18:06:
25:cc:95:25:88:3d:36:52:f4:95:7a:45:24:63:6f:
d5:15:3b:31:b7:b7:5c:58:3b:2f:24:d4:8d:c6:3a:
f7:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B1:70:DC:E0:D2:27:EC:C3:88:B8:1F:96:86:3E:BA:90:3A:7C:53
X509v3 Authority Key Identifier:
keyid:F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:b7:56:1c:ef:25:48:c1:bb:95:00:46:ca:ff:0e:92:aa:c3:
2b:0a:19:e8:76:be:5a:df:77:be:08:99:72:20:50:86:c2:43:
b9:18:73:b0:7c:0d:73:20:f1:1c:42:d2:3f:71:4c:04:3a:48:
84:1a:9c:fd:86:97:c8:ae:7b:5b:32:bc:f1:e0:a4:a9:e8:ea:
fb:ab:06:b1:e7:f8:9a:ac:6c:cc:dc:d3:b3:ab:db:cf:8e:5b:
bb:e7:30:46:34:69:ec:5f:4e:b0:a8:10:a0:c0:8a:cd:05:dc:
02:1e:6b:a8:bd:e5:74:c5:93:d6:a0:79:74:2e:76:c1:cf:06:
55:7e:2c:21:92:03:f2:ae:eb:88:97:c2:91:6c:2c:2c:2a:a9:
af:8b:5c:c9:81:9b:1a:f9:cc:85:2c:45:ba:70:ad:42:4e:f5:
0c:ee:ab:8c:74:f5:03:40:3a:2e:02:be:d4:5f:b8:6a:28:50:
5b:44:26:2d:79:35:b4:3e:e7:6d:d7:c0:f8:95:b0:61:79:20:
b1:74:34:c8:ab:fe:53:bc:36:54:d1:e1:33:21:5b:4b:fd:80:
46:85:5e:43:5d:4b:ae:46:b7:9a:1a:da:7f:51:f4:65:29:c6:
9b:33:39:4b:ce:c5:ee:ae:e2:64:29:6e:d1:3e:b3:6c:47:06:
7c:6b:80:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:08:15 2025 by rpki-client