Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.mft
File: dkkoqXvpVTdwE9OCxilA6VDdISs.mft (raw, json)
Hash identifier: d5Lfc+toF9hi4WehSuMEbvpWdGHnfXJkaCoWezGLGgY=
Subject key identifier: E8:FA:95:E6:6A:67:9C:B4:CC:78:B2:0D:7F:7C:AD:1A:45:A4:0A:44
Authority key identifier: 76:49:28:A9:7B:E9:55:37:70:13:D3:82:C6:29:40:E9:50:DD:21:2B
Certificate issuer: /CN=764928a97be955377013d382c62940e950dd212b
Certificate serial: 0196759E7CAA0FDFE660AB38EAE2EDFDD5FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.mft
Manifest number: 0FEA
Signing time: Sun 27 Apr 2025 05:00:42 +0000
Manifest this update: Sun 27 Apr 2025 05:00:42 +0000
Manifest next update: Mon 28 Apr 2025 05:00:42 +0000
Files and hashes: 1: FcY_QKqq9c1xfH6rECvdKY1Kcu8.roa (hash: Ju8mYMjl2LUkVKbzqtiMt1rTH2nwPvl1R7kMAYH3RPc=)
2: IeAOnvbZbd0JxF7ran2IKsJXZmY.roa (hash: a22ZpV1PraD9QyqLIF4t6hPyMcIcLe+GxaE9NUf90hg=)
3: LS7cmX4hkxBo29n9xBMkazlGUQA.roa (hash: LcZigv6OQHpGmVW5BHzHMIZtI+TTJsjlraR4mOoxOrA=)
4: bHETVGvggsNe0a6WvXBELNSVwc4.roa (hash: ghxBEvOC//7xSO8+ytfjs+nd2Bn+dpSbYc1UKClOMyw=)
5: dkkoqXvpVTdwE9OCxilA6VDdISs.crl (hash: Y04YYEPg22ji26bUcmclNSLZQEJYXxQAomryjY9gmtc=)
6: qJx6x_1Si80i7zgxLEJabwqPPdM.roa (hash: VSNbxo3HViYCFTqzC6xV6bqWlabz9RKcmoeLCtu/aVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.mft
rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:9e:7c:aa:0f:df:e6:60:ab:38:ea:e2:ed:fd:d5:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764928a97be955377013d382c62940e950dd212b
Validity
Not Before: Apr 27 05:00:42 2025 GMT
Not After : Apr 28 05:00:42 2025 GMT
Subject: CN=e8fa95e66a679cb4cc78b20d7f7cad1a45a40a44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c8:33:4a:76:ab:79:2c:fb:3d:63:93:89:f6:
98:fa:d9:8f:d7:25:5e:ca:ba:a4:a1:7e:bf:fd:08:
97:81:ed:20:64:bf:f1:f3:7e:93:b5:b4:6f:d3:3f:
fe:05:3b:2c:6f:ba:be:05:f8:86:c4:5b:90:f7:3f:
a5:2d:9e:5e:bb:ce:60:ce:da:e0:af:c4:0d:00:e3:
a4:1b:57:ed:fe:88:42:6a:db:ca:aa:a8:91:62:8a:
d8:0c:93:e4:eb:aa:13:30:6e:d1:da:e6:d8:a0:3d:
a5:b3:c0:54:a1:51:6d:fd:d3:26:1a:e0:8c:30:13:
01:75:e0:91:57:64:2b:5b:53:21:a8:4f:41:79:79:
c8:1c:42:58:4c:47:f5:51:a0:f3:9f:c0:dd:f3:84:
55:6f:2d:eb:87:9a:eb:b8:00:86:c8:9f:df:ac:4f:
7f:f4:b4:91:00:82:c1:5e:2e:0b:ca:0b:1e:93:b5:
aa:cd:f8:b1:48:5b:33:4e:54:7f:f4:c1:69:5c:78:
99:53:05:10:ac:34:20:0e:f8:de:a3:63:59:9e:48:
54:9e:7e:39:25:da:a2:ba:90:55:90:bc:f9:80:1f:
99:48:a3:60:fa:10:85:e8:69:f9:99:c8:04:cd:c9:
b0:fb:c2:ed:9d:83:69:f6:8d:cd:43:11:14:3d:af:
22:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:FA:95:E6:6A:67:9C:B4:CC:78:B2:0D:7F:7C:AD:1A:45:A4:0A:44
X509v3 Authority Key Identifier:
keyid:76:49:28:A9:7B:E9:55:37:70:13:D3:82:C6:29:40:E9:50:DD:21:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dkkoqXvpVTdwE9OCxilA6VDdISs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9536f5-f566-4c80-a7d9-bc1522789d3b/1/dkkoqXvpVTdwE9OCxilA6VDdISs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:07:8e:08:51:1d:08:a5:4f:e5:fa:88:97:ac:38:70:d8:d3:
2b:92:3b:c4:4d:81:23:84:e4:30:3f:67:d6:0c:0d:de:7d:f9:
8d:97:62:78:57:f3:b9:63:73:da:41:7a:58:02:b3:2a:33:db:
e3:e4:07:68:bb:28:46:37:ad:51:72:3d:8c:5c:ca:d4:db:1c:
d0:79:20:74:9e:90:83:c5:63:fa:3e:c2:0d:39:f0:b9:8a:f8:
0c:db:8e:30:b5:6f:80:62:f3:dd:16:f5:1e:e9:b7:8d:4a:c4:
c9:d5:62:24:e2:81:7d:02:35:87:02:00:5b:ca:4c:4b:e3:f2:
a0:49:8a:72:bc:d8:ed:5d:70:6f:90:14:13:28:f2:4c:50:68:
45:4b:09:04:75:90:6a:b3:59:e9:c1:d0:63:0c:19:59:ea:7e:
93:51:68:2b:42:6c:18:40:de:19:95:d8:c5:84:e5:35:0c:84:
41:d6:47:b8:4e:70:33:f8:f6:a2:b3:73:f6:32:35:64:d0:e3:
a8:97:6c:12:f3:8e:3d:86:84:8c:23:b3:af:ed:0e:25:30:8e:
e7:80:fa:1c:d6:5b:05:d2:95:a2:e2:54:9c:d7:7b:93:e9:b8:
04:d2:62:ec:6e:da:c6:1c:b2:29:5d:00:4e:c9:e9:17:4e:14:
44:ec:68:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:15:41 2025 by rpki-client