Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
File: sO8ZvLI6LwTFhqwTEakbx8oql2U.mft (raw, json)
Hash identifier: XDZQzOTlQzGTfJ9YaRYoP02CrS4Wi3L0uHGzksscVmc=
Subject key identifier: 75:F9:67:52:8E:98:21:F3:3C:D1:9B:7C:8D:68:F0:4B:75:22:CB:86
Authority key identifier: B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65
Certificate issuer: /CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765
Certificate serial: 01967BA0702299B3EFEB09E0CC5DF99E5A35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
Manifest number: 0901
Signing time: Mon 28 Apr 2025 09:00:33 +0000
Manifest this update: Mon 28 Apr 2025 09:00:33 +0000
Manifest next update: Tue 29 Apr 2025 09:00:33 +0000
Files and hashes: 1: E6bot_tKJqCzADpBxFeKtsutgCs.roa (hash: IzVVajCV/IB0bxI8d5Bqo7CZjFjDagAuPrwaJPvu9o8=)
2: sO8ZvLI6LwTFhqwTEakbx8oql2U.crl (hash: aCqb5O6nSPJvtMVhuA8blLgGyrIkPvwtgsEQwcy2MX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:a0:70:22:99:b3:ef:eb:09:e0:cc:5d:f9:9e:5a:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0ef19bcb23a2f04c586ac1311a91bc7ca2a9765
Validity
Not Before: Apr 28 09:00:33 2025 GMT
Not After : Apr 29 09:00:33 2025 GMT
Subject: CN=75f967528e9821f33cd19b7c8d68f04b7522cb86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:10:ab:e7:cb:d7:7e:d1:38:e2:48:09:99:61:
7c:f5:64:3a:3d:46:b3:4a:d6:aa:f0:d8:03:82:f8:
89:b9:7d:b3:76:19:99:2b:97:f8:f9:41:f8:ae:56:
6c:8a:4a:be:98:d6:11:5e:28:42:dd:3a:a0:8b:6d:
b5:3e:de:1b:ae:11:1b:cc:9f:fc:45:9e:67:0e:49:
da:14:e7:7b:a5:f4:42:36:09:fe:bc:db:e3:87:f7:
9b:ed:ca:a8:f3:a3:7c:e8:5c:6b:12:2a:fd:42:bc:
a1:93:ef:0b:31:07:d4:47:a3:60:69:c1:aa:3f:1c:
ad:03:57:1e:03:17:f1:58:33:b2:6e:87:7b:ba:86:
cd:e9:51:1a:46:f2:83:ce:05:e7:30:c2:a9:7a:f3:
23:e3:df:60:23:68:17:a4:77:5e:00:b0:3a:fc:36:
c5:ce:96:7f:2f:55:ce:d8:1c:f4:41:07:5e:79:72:
39:9c:6a:31:3c:85:35:60:dd:64:50:50:31:27:38:
99:a5:e5:81:e1:b6:ac:8c:34:c8:eb:63:76:c9:ea:
4a:00:e6:f8:6e:2f:fd:bd:06:95:6a:c9:88:45:e4:
a5:77:42:76:c8:fc:83:9e:c2:67:ef:8e:60:8b:6a:
82:0f:d2:95:75:1d:62:54:3e:ee:4a:91:ec:f1:92:
eb:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F9:67:52:8E:98:21:F3:3C:D1:9B:7C:8D:68:F0:4B:75:22:CB:86
X509v3 Authority Key Identifier:
keyid:B0:EF:19:BC:B2:3A:2F:04:C5:86:AC:13:11:A9:1B:C7:CA:2A:97:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sO8ZvLI6LwTFhqwTEakbx8oql2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/af3e51-79d6-4078-a569-d0003a6b5224/1/sO8ZvLI6LwTFhqwTEakbx8oql2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:21:3f:c7:4b:80:70:b4:f6:3d:cf:81:21:67:8c:95:3f:0b:
2e:a4:7b:87:28:3c:c2:b6:44:b8:5a:d4:a3:e1:54:3f:0f:0c:
79:73:c4:80:62:3d:f0:19:1d:4e:93:67:28:b4:64:0a:f0:d4:
71:2c:94:95:0a:4e:c0:56:10:c3:ff:6a:8d:04:b7:bd:d2:a4:
68:bd:bc:16:89:e2:a0:5a:c5:6e:ac:f8:e8:5b:e7:bb:e9:3d:
58:a8:b2:5e:ea:af:e7:d2:82:30:54:ce:e5:83:ac:21:e5:ff:
42:cc:56:f5:2b:7e:b5:51:66:61:96:2c:3e:96:91:22:a3:fc:
16:d5:1c:0d:ba:e5:18:7e:1f:aa:c5:1a:dc:04:b0:0e:a9:ba:
7e:75:20:8d:69:29:38:ba:33:e7:06:02:e7:fe:dd:e2:f7:5a:
74:78:9e:3a:f0:1a:88:41:95:be:f4:20:34:d7:88:8b:50:d2:
98:68:02:6b:cb:87:53:aa:d3:9a:45:32:f0:bc:ec:de:72:62:
40:86:08:4b:3e:cc:3e:f7:1a:79:d5:bf:03:09:de:04:20:ea:
62:23:9d:42:70:04:28:96:10:c9:d8:36:0f:0e:04:05:3c:67:
95:a0:d7:d2:e7:e9:8f:d4:6f:69:b3:74:1b:4d:98:9b:c5:7e:
45:73:76:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 15:25:12 2025 by rpki-client