Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.mft
File: C0ojfRF9934LiqUS9vJfsgf5orE.mft (raw, json)
Hash identifier: 22XPuuEmFStphOirxduNADRBhUTBgglWTXMVdzoXArY=
Subject key identifier: 5B:13:E4:77:72:77:39:1C:50:BA:86:FE:7E:1D:AF:2E:40:83:6F:4A
Authority key identifier: 0B:4A:23:7D:11:7D:F7:7E:0B:8A:A5:12:F6:F2:5F:B2:07:F9:A2:B1
Certificate issuer: /CN=0b4a237d117df77e0b8aa512f6f25fb207f9a2b1
Certificate serial: 0196767A4CAB5842C5314BF1495270064F7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C0ojfRF9934LiqUS9vJfsgf5orE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.mft
Manifest number: 10AA
Signing time: Sun 27 Apr 2025 09:00:48 +0000
Manifest this update: Sun 27 Apr 2025 09:00:48 +0000
Manifest next update: Mon 28 Apr 2025 09:00:48 +0000
Files and hashes: 1: C0ojfRF9934LiqUS9vJfsgf5orE.crl (hash: jkJv53ZLU1ZDAk8gfgduP9KJ8NvV8r1n+qxKhpuPThI=)
2: ubaYGhsK3un9FzpeOuJImEsVY0k.roa (hash: GKSurghCGTsvWWfo6kF8DtoCXANGJM6Q52lyK44WE3w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.mft
rsync://rpki.ripe.net/repository/DEFAULT/C0ojfRF9934LiqUS9vJfsgf5orE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:4c:ab:58:42:c5:31:4b:f1:49:52:70:06:4f:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b4a237d117df77e0b8aa512f6f25fb207f9a2b1
Validity
Not Before: Apr 27 09:00:48 2025 GMT
Not After : Apr 28 09:00:48 2025 GMT
Subject: CN=5b13e4777277391c50ba86fe7e1daf2e40836f4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:aa:b8:2f:5f:30:a8:1b:f7:f7:d4:f6:ec:70:
20:9b:13:7f:ba:6f:f4:6f:96:c7:bd:96:61:6d:14:
4e:bc:a4:a4:76:de:cd:5f:67:93:70:d0:e9:0f:ff:
c3:0d:c4:5f:a7:8e:2b:91:de:62:86:86:56:42:75:
fd:56:0e:f3:02:58:95:6a:b6:05:9c:71:41:a2:19:
20:9e:df:a5:fc:fa:1b:d7:12:81:6e:1f:29:4b:7e:
63:0f:e5:70:f8:fb:71:75:f4:3f:98:4c:12:29:65:
20:44:ba:c1:a2:4d:c1:86:c2:bb:8a:0f:8f:fd:70:
52:03:44:e5:f7:f7:8d:ab:ba:6b:bd:c4:ec:fa:1d:
15:07:f3:0d:ec:1b:fb:70:e1:61:c1:d7:2f:b0:da:
f5:e1:e9:c7:73:09:ff:f5:55:20:3a:8d:0b:39:db:
20:01:60:46:0d:44:cc:b6:d5:6d:0f:de:fd:53:9a:
50:6d:04:4a:18:65:86:ac:9b:70:52:06:22:72:7f:
3f:d1:6b:38:38:98:68:51:ec:4f:7b:f7:ba:c6:9a:
cd:67:ff:14:e3:18:e8:ac:25:d3:7a:89:c7:6f:13:
18:5a:e7:69:25:00:64:2f:86:e4:39:70:46:f4:0a:
6d:d0:df:2a:b2:0b:51:1d:fc:c0:41:b6:68:df:ba:
4b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:13:E4:77:72:77:39:1C:50:BA:86:FE:7E:1D:AF:2E:40:83:6F:4A
X509v3 Authority Key Identifier:
keyid:0B:4A:23:7D:11:7D:F7:7E:0B:8A:A5:12:F6:F2:5F:B2:07:F9:A2:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C0ojfRF9934LiqUS9vJfsgf5orE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:76:a7:0d:a3:c2:8b:1b:a6:5f:1b:03:3b:58:58:78:20:a6:
81:37:ad:2a:67:be:32:9f:2a:0e:52:f4:78:98:22:05:36:d9:
1e:13:93:22:8b:62:2b:03:7b:79:be:7e:48:1c:4a:99:44:7d:
57:8b:c6:80:44:71:06:53:59:70:5f:19:c1:c1:8c:69:21:fa:
89:18:e6:1b:ba:f0:60:53:03:c9:8b:94:4a:a8:43:4c:a0:75:
c0:58:d2:da:81:a4:e5:4b:0f:e1:8f:dc:c5:d4:22:94:6b:d4:
b6:f8:78:93:b9:f0:fe:81:70:25:f5:9e:a7:b3:ef:0c:ff:dc:
c1:ec:39:f7:e9:0d:17:06:55:e5:de:b4:c8:a6:47:8c:d7:e1:
35:93:2f:b2:83:a6:22:1d:53:b1:c1:e3:3b:eb:d8:0f:44:6e:
fc:ac:f5:40:67:c1:f0:10:cc:d2:80:c3:56:94:cf:15:10:17:
d2:aa:b6:49:89:03:0c:ef:06:96:16:89:6d:2d:19:81:f4:92:
4c:7a:43:33:f0:5e:c4:c4:29:f3:42:ce:14:36:0b:bd:c4:d9:
c2:78:ed:8a:d4:b9:76:fd:f0:e3:b3:e4:da:33:c9:3d:be:4f:
09:7a:7b:36:a7:da:1c:d7:a7:be:0d:62:0e:a0:0c:06:e0:b7:
25:16:ff:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 11:23:54 2025 by rpki-client