Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
File: thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft (raw, json)
Hash identifier: cOQcYUFq5o29/UZBqzPK0a7co9ko00z8qpsmkCKkFx0=
Subject key identifier: 63:E9:C6:A7:00:51:0C:B8:BD:FC:F7:F8:C3:F3:26:98:0C:2C:B8:20
Authority key identifier: B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
Certificate issuer: /CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Certificate serial: 0196887FFEDAC7C9DFF74CD1A972E3140AED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
Manifest number: 095D
Signing time: Wed 30 Apr 2025 21:00:11 +0000
Manifest this update: Wed 30 Apr 2025 21:00:11 +0000
Manifest next update: Thu 01 May 2025 21:00:11 +0000
Files and hashes: 1: B1zjeI12z7rKzJjEV2xk7Kx6YeQ.roa (hash: r2WGLNl7mqhMqh1kFVBikeJbCxyFFZKze+pH0m8/Lxw=)
2: J0SmJvo_DblXKy-6WzDl514uI_0.roa (hash: q/+Q30dvsgavMpRf9kHRcZOPpYacKoQhzHpVoqSh0+Q=)
3: oE2klgKXcU6ZFBaxD5Ye5dFs4b0.roa (hash: xVrVcQ4eqe5NnaROnCloWgSzhvwXlAPv4n0sYt9CbFA=)
4: thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl (hash: ByvZfWg57qyuAHIeylGlsRdaxiBdlNUAL9zf+0IKsZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:7f:fe:da:c7:c9:df:f7:4c:d1:a9:72:e3:14:0a:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Validity
Not Before: Apr 30 21:00:11 2025 GMT
Not After : May 1 21:00:11 2025 GMT
Subject: CN=63e9c6a700510cb8bdfcf7f8c3f326980c2cb820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:57:a0:d6:6a:5d:cd:e8:d9:07:30:58:ab:84:
02:17:4c:83:c6:e5:b0:7b:62:52:d0:ef:ff:f1:18:
e2:b8:b3:dd:9f:25:8a:e7:22:76:2e:2d:30:18:bb:
cf:bd:52:3f:57:ca:31:28:09:ba:cd:d4:fb:ad:83:
94:b7:ef:b2:9d:79:6b:b0:78:ff:b8:1f:c7:30:5b:
d1:77:b6:d1:5d:91:42:78:eb:a8:50:66:3f:22:f8:
d0:4a:47:f3:00:cd:4c:22:76:25:1c:ff:b5:2c:35:
92:80:bd:02:ae:d0:ff:39:89:91:ac:f4:4e:d0:5b:
72:68:89:44:5b:e2:fe:38:28:89:16:7c:d4:f3:43:
34:c3:28:08:74:49:86:01:c3:f9:dd:31:21:17:20:
53:73:05:73:fd:95:a5:ac:01:66:ca:9b:ea:73:b0:
54:d9:f1:76:e2:9b:7d:a7:a4:9f:2d:bf:d9:8c:c2:
57:4b:d3:dd:7e:dc:35:54:f6:33:5b:56:0a:51:e1:
2d:e1:fa:4a:d8:43:a8:74:47:51:02:38:15:c6:15:
0e:c4:23:c2:e7:8f:55:42:1d:5b:38:d4:2b:a3:d4:
b1:ef:3a:9e:9a:f6:85:e7:d4:a0:46:e0:c5:54:0b:
e1:02:4c:0b:0d:74:88:ad:5b:cc:cd:21:32:dd:87:
e9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E9:C6:A7:00:51:0C:B8:BD:FC:F7:F8:C3:F3:26:98:0C:2C:B8:20
X509v3 Authority Key Identifier:
keyid:B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:68:df:9e:03:c0:0d:00:44:76:88:d4:89:1e:da:52:ba:cb:
9e:09:6b:00:a5:a7:cc:81:b5:da:26:56:cd:5d:25:17:2f:00:
2d:69:49:70:2a:6f:3a:ed:12:b7:53:2d:9b:56:0c:b9:09:e4:
9f:51:46:e7:b4:46:d7:6a:db:3a:9c:83:40:95:c1:f3:1e:e8:
e6:02:09:70:b2:da:aa:c6:e9:a2:c0:bf:9a:4b:fe:3d:0b:b8:
26:19:72:02:dd:7c:fa:90:54:fa:02:3e:b3:ea:9e:9a:16:33:
e1:f5:bd:17:68:2e:55:71:75:db:26:93:bb:93:d3:85:ec:38:
1d:be:f0:9f:0c:1a:56:3c:a7:29:d5:9a:9d:d3:0e:d0:5a:e5:
de:81:86:7a:db:08:2b:14:a4:fb:42:d3:17:42:34:03:6b:77:
5e:d2:e6:d0:8f:0c:c6:af:9d:9e:80:cf:c0:26:51:25:ce:ee:
22:98:e8:cf:b8:71:a4:57:92:ab:ee:ae:85:e9:e3:ae:f7:d3:
10:83:31:1f:4d:7e:b6:78:a4:2b:b4:93:0c:eb:f5:87:ef:7c:
70:04:1e:54:ff:80:cd:d2:65:74:1b:3e:e4:e9:19:e7:c0:80:
e0:26:3a:50:48:68:a4:63:a4:87:30:e8:e7:be:ea:47:77:a4:
ee:2b:d6:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 06:46:59 2025 by rpki-client