Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
File: 8uOrazEY4L3g5kiOa-1slpQeDoQ.mft (raw, json)
Hash identifier: iib2RqN7+C3pPVtj6uUzW3nKofO25pl2ycJF9Rs5u7c=
Subject key identifier: 12:A8:F5:02:CE:E6:B5:9C:CF:2B:40:24:36:40:5F:11:13:B0:D0:77
Authority key identifier: F2:E3:AB:6B:31:18:E0:BD:E0:E6:48:8E:6B:ED:6C:96:94:1E:0E:84
Certificate issuer: /CN=f2e3ab6b3118e0bde0e6488e6bed6c96941e0e84
Certificate serial: 0196865AC3E463EC0672BE2531E5A4698FD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
Manifest number: 09AD
Signing time: Wed 30 Apr 2025 11:00:17 +0000
Manifest this update: Wed 30 Apr 2025 11:00:17 +0000
Manifest next update: Thu 01 May 2025 11:00:17 +0000
Files and hashes: 1: 8uOrazEY4L3g5kiOa-1slpQeDoQ.crl (hash: id9FJvPmlwXOpMHaBFYXoFWU6onX17x+qSZcCgEPEGM=)
2: TwUAmEwQxO2jeeE0IG7nOUuBRU8.roa (hash: 5uZF7JHC6Cu/tuWa9kusO7lA0+dh5OGQEqs1E5VZ/5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:86:5a:c3:e4:63:ec:06:72:be:25:31:e5:a4:69:8f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e3ab6b3118e0bde0e6488e6bed6c96941e0e84
Validity
Not Before: Apr 30 11:00:17 2025 GMT
Not After : May 1 11:00:17 2025 GMT
Subject: CN=12a8f502cee6b59ccf2b402436405f1113b0d077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e1:e0:2c:62:08:6b:77:2e:bc:16:b9:20:4d:
43:c5:7e:6a:84:72:5f:cc:d9:bf:3e:aa:ab:f6:81:
7c:c9:03:f6:e4:7e:16:9e:28:f4:76:c4:45:be:de:
c9:e3:a8:59:05:85:12:92:1c:19:18:88:ff:2a:dd:
3c:5c:eb:d1:80:04:29:89:a0:a9:d0:28:2b:e6:12:
7c:26:33:ef:18:d8:81:42:8f:66:d7:02:f1:bf:fd:
66:b9:51:5a:05:19:5b:f7:7e:84:4a:78:3c:bd:34:
05:a3:db:3b:c9:8a:3e:cf:7e:0c:ae:70:fc:a7:7d:
47:bd:49:15:4f:7f:a6:12:12:1d:1e:86:ff:b8:2d:
c6:7d:5e:81:3b:10:c5:40:f8:62:d0:0a:88:bb:af:
0f:f1:4e:93:cd:76:c0:60:14:15:db:9c:f7:ea:ae:
73:99:ea:dc:53:1b:13:39:3c:5b:1d:fd:e3:0d:b0:
51:a0:1f:d0:93:d3:f3:38:37:5e:b7:5d:20:56:6f:
b3:6f:60:9c:66:ca:55:4b:93:39:e6:66:3c:93:9d:
7b:c4:2a:a1:c5:67:f1:04:77:d9:6d:31:3a:c7:c4:
b5:37:66:36:be:66:04:49:45:b8:57:f4:7c:ab:2c:
fa:38:97:f2:57:73:d1:52:e6:f0:d3:cf:40:92:48:
71:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A8:F5:02:CE:E6:B5:9C:CF:2B:40:24:36:40:5F:11:13:B0:D0:77
X509v3 Authority Key Identifier:
keyid:F2:E3:AB:6B:31:18:E0:BD:E0:E6:48:8E:6B:ED:6C:96:94:1E:0E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:d3:f1:62:01:0c:70:a0:2c:96:92:f0:f7:b6:55:36:2e:48:
b6:1b:f5:26:be:4a:dd:22:e7:94:47:4a:76:1b:4b:dc:6a:a5:
2d:76:8b:dc:f0:c3:d2:0c:da:48:21:ce:15:d7:7f:7d:f5:d0:
24:d5:69:7e:4e:92:59:9c:16:c3:f4:cf:c5:80:43:c7:e3:a2:
48:a2:6c:c3:1e:2d:38:72:d0:85:eb:47:f7:3f:44:11:f4:ab:
05:78:11:b3:16:13:eb:8b:10:b8:08:bb:6c:66:48:ae:f9:e3:
37:d3:a8:6a:46:02:54:bc:8a:dc:2e:16:63:f3:93:99:51:21:
e8:b0:00:7d:65:5a:7b:4f:29:94:82:60:c3:df:4d:c2:26:8a:
8d:12:cd:d5:1f:d7:09:9d:b7:1f:20:85:5c:36:d4:cd:f7:b6:
1f:3e:d6:35:74:50:b9:1c:63:28:fd:9f:cd:1b:68:07:16:b4:
21:1d:d1:aa:0b:4b:4c:d2:50:74:72:65:b2:ba:7a:a8:e1:95:
73:d9:bb:3b:d6:53:d0:30:50:3b:ca:38:86:28:b6:41:16:fe:
f6:75:7b:50:52:97:7c:7f:9a:32:94:dd:ac:d3:69:5b:c6:98:
aa:8e:c7:e4:a5:02:5d:9e:66:b4:28:4d:cc:e0:98:bc:55:d3:
ce:74:91:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 13:39:21 2025 by rpki-client