Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
File: 24P1T0UTHZIHwhWgmKKmvNb_BQs.mft (raw, json)
Hash identifier: 0BDS3gLO2381JmUzJ6AF+aftateuF09tio31RrbaRco=
Subject key identifier: 77:A3:D1:A7:2A:0B:66:B0:53:0F:97:23:1B:09:04:07:D8:9C:3D:44
Authority key identifier: DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B
Certificate issuer: /CN=db83f54f45131d9207c215a098a2a6bcd6ff050b
Certificate serial: 0197759C428AE1E33D08DEBD455DEC4B0166
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
Manifest number: 0C8D
Signing time: Sun 15 Jun 2025 22:01:04 +0000
Manifest this update: Sun 15 Jun 2025 22:01:04 +0000
Manifest next update: Mon 16 Jun 2025 22:01:04 +0000
Files and hashes: 1: 24P1T0UTHZIHwhWgmKKmvNb_BQs.crl (hash: oDcIa1aFsbg+B7OCNf5x+t/HcFLp3GDk9yRBGNyllOw=)
2: Qfno-jAugdwOIbQTtdk6Qt14vp0.roa (hash: K+5ZvY56wsKUyUpWT9EX8Ty0xGLLwMy0SXranx21Z8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 20:59:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:75:9c:42:8a:e1:e3:3d:08:de:bd:45:5d:ec:4b:01:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db83f54f45131d9207c215a098a2a6bcd6ff050b
Validity
Not Before: Jun 15 22:01:04 2025 GMT
Not After : Jun 16 22:01:04 2025 GMT
Subject: CN=77a3d1a72a0b66b0530f97231b090407d89c3d44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:92:dc:3c:51:ff:54:e7:58:41:06:ae:e0:84:
62:c1:16:e4:2c:ab:9a:84:eb:80:9c:60:55:18:66:
8f:9e:71:62:cf:29:5e:a5:97:ff:f8:c1:ac:bf:e7:
b8:ae:e0:a1:48:91:f7:02:ca:8d:6f:e6:99:1d:d9:
8a:55:b9:e1:8b:81:f1:03:65:ae:04:b9:32:ae:21:
b3:8e:db:c6:00:0a:b9:db:fa:41:c8:e6:58:4c:52:
9d:c2:06:2e:1c:9d:3b:47:a2:99:00:53:9f:56:83:
28:f6:67:dd:82:30:f5:90:f0:ce:12:99:bc:14:09:
af:1f:a3:5a:8c:7e:5c:92:7d:f2:90:e8:f8:88:9f:
cd:29:76:3c:3c:3d:c4:ea:08:ce:a5:ad:e2:78:0c:
2b:17:bb:b5:81:c6:4b:e0:da:69:2f:cb:93:95:78:
9b:ce:8d:0b:6a:8f:06:65:db:01:70:3f:b5:65:f4:
e5:04:04:e6:73:a0:07:a6:c1:9a:26:03:c6:5e:85:
4d:c8:e9:b0:f5:05:f5:13:80:0d:20:56:4e:fc:0c:
b8:c3:d0:34:74:95:ae:8a:c9:56:fa:48:c5:e4:24:
78:52:d8:e8:c7:0a:69:3d:02:8e:31:9c:3f:cb:81:
7a:8a:22:35:6c:4b:3a:eb:18:84:26:0e:b2:0e:e3:
1f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A3:D1:A7:2A:0B:66:B0:53:0F:97:23:1B:09:04:07:D8:9C:3D:44
X509v3 Authority Key Identifier:
keyid:DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:69:e5:48:84:5b:34:1b:fb:3f:fc:33:f2:2b:7f:9d:3b:f6:
d8:54:2c:38:3a:b9:f2:da:7e:a4:e0:e1:16:a2:d5:18:66:69:
b8:d4:9a:15:39:db:4f:96:16:f8:ba:65:ea:03:b6:ca:f9:39:
78:c4:f5:a3:99:7b:e6:d0:8d:f0:4e:63:f5:c5:e0:79:57:d7:
5c:db:c7:98:fd:ea:18:ba:84:32:c8:8a:64:0b:0f:9c:8b:45:
a0:9c:cc:92:a1:bd:c4:d0:48:4b:fb:41:92:c8:7a:b8:c7:2f:
39:b0:a9:e6:9d:f5:d0:59:46:1c:53:9b:ca:df:1e:31:16:5a:
02:31:b3:8a:9d:34:ee:0c:10:a8:9c:6f:a0:5b:4e:06:93:f2:
bd:23:00:a7:97:4e:b0:af:9e:e4:8f:95:db:f3:11:05:7d:60:
a7:02:50:70:4c:94:cc:92:21:d6:e4:a0:2d:9d:f5:f1:df:57:
26:60:44:a1:3f:83:7f:41:62:25:e1:f5:33:9e:b4:c3:b9:97:
00:c8:f3:d5:a3:1e:6d:6f:92:e5:cd:65:4f:f7:fa:68:0c:e6:
3d:85:d6:af:5f:40:48:39:67:80:67:a7:30:39:d0:d7:ec:24:
3a:3a:e2:54:ec:b6:a1:48:21:84:5b:19:cb:d5:e0:b8:ba:c5:
e4:c8:2b:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 06:20:15 2025 by rpki-client