Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
File: _ORf1v09kyaEwMW8J_T6YVoQkOA.mft (raw, json)
Hash identifier: IfkoDfLVQEK5ZKDd63jm00FbwJdW0e9bXTZfyRYGJiI=
Subject key identifier: 1E:E7:51:3B:7E:61:57:30:95:47:80:45:1A:33:FF:BF:A7:5C:2D:B4
Authority key identifier: FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
Certificate issuer: /CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Certificate serial: 01967CB2FEA5073F357F87F0C1AB947916F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
Manifest number: 0B96
Signing time: Mon 28 Apr 2025 14:00:27 +0000
Manifest this update: Mon 28 Apr 2025 14:00:27 +0000
Manifest next update: Tue 29 Apr 2025 14:00:27 +0000
Files and hashes: 1: 0q3J-c3dMCcb0fEi4kT4_OFKaDo.roa (hash: GFF2i9DOD9iNc83o9PQkrJQokdzx6TTVi4lrSIyhIgE=)
2: _ORf1v09kyaEwMW8J_T6YVoQkOA.crl (hash: Dt5H1CT9cyxUssjiwuw/ZBNlR1jtY0KxokHFpul9XsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:b2:fe:a5:07:3f:35:7f:87:f0:c1:ab:94:79:16:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Validity
Not Before: Apr 28 14:00:27 2025 GMT
Not After : Apr 29 14:00:27 2025 GMT
Subject: CN=1ee7513b7e615730954780451a33ffbfa75c2db4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:92:6b:82:31:21:6c:bd:f0:26:c6:4d:bb:dd:
10:05:45:4f:9c:f5:8f:24:b9:36:d0:97:69:2e:0f:
fe:fc:0a:b2:ac:eb:c8:5b:1d:38:ed:54:f8:6d:c1:
89:5a:cd:0c:23:79:65:ab:3f:82:cf:90:3f:a7:66:
ea:e5:42:d6:71:b9:0f:fd:a8:89:f5:2c:81:49:85:
e0:a3:11:02:29:14:15:29:c5:02:3e:c4:7e:29:e5:
5a:e4:6a:39:3b:37:9f:11:ab:50:99:91:a4:ee:b6:
a3:bd:02:b2:13:16:37:79:89:2d:c7:50:ba:56:5d:
69:19:10:ba:f8:69:79:4a:a3:22:bf:56:c1:56:5d:
ca:f6:ff:b0:ed:26:3d:1c:75:cf:ca:b0:47:82:71:
46:59:41:fd:93:8a:a4:23:58:de:53:31:fc:f5:06:
bd:76:94:9c:63:5e:63:09:65:df:1b:ec:bc:1a:9a:
a5:a8:b7:b5:6c:5d:51:a8:81:65:05:32:37:d7:a7:
23:3a:dd:75:fd:ac:2f:ac:e6:15:18:11:ea:44:47:
d2:1d:d9:50:65:55:1e:34:c7:01:2d:36:a1:a5:c3:
62:f5:05:70:10:88:45:41:ce:81:4a:d4:1a:09:37:
55:5a:53:2b:fa:82:a8:1b:ea:f1:db:cf:c0:51:c0:
76:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E7:51:3B:7E:61:57:30:95:47:80:45:1A:33:FF:BF:A7:5C:2D:B4
X509v3 Authority Key Identifier:
keyid:FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:65:66:8b:af:b0:f7:49:3c:a1:a6:16:34:2f:c2:07:5c:6c:
73:1c:d5:72:d4:61:30:96:d6:97:8a:1c:94:1c:ab:0b:99:f1:
fb:7f:25:b8:87:97:f5:74:cd:10:18:c6:45:94:b6:17:d4:c9:
09:c9:92:27:1b:3d:ce:6e:5d:9b:1d:18:f9:b9:e6:40:2d:1a:
5d:1c:e3:94:3d:aa:8c:37:e0:68:ca:ed:c5:7a:4c:94:c2:65:
22:cc:d2:64:0b:3f:58:66:35:75:88:a4:08:78:c7:79:ed:64:
ac:12:e7:a1:09:85:9b:90:ed:d1:6f:1a:6a:2f:61:98:c9:d0:
4c:0b:52:b3:ca:c6:bf:5a:9d:5a:f5:f1:0f:0e:fd:a2:c9:45:
74:c4:46:50:4f:0c:4e:af:76:7a:40:06:c8:b2:b2:29:f2:b0:
db:08:1b:a0:83:ca:f3:61:64:fc:04:1b:05:59:93:6e:d3:d2:
a6:eb:56:ee:64:3c:bc:ec:bd:34:44:44:ff:f9:7b:77:b0:77:
28:df:db:55:3e:b5:a4:ed:0c:3a:f2:48:6c:21:52:f1:58:fa:
7e:2e:bc:a3:e9:f2:47:a3:47:c4:3f:84:ef:09:84:47:76:75:
7a:e0:b9:d8:60:57:83:0d:bf:1d:d8:96:49:e8:d6:9a:ae:e6:
e9:c0:f5:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:07:51 2025 by rpki-client