Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
File: D97nlErE2jERKV2B4p3roAwWOpY.mft (raw, json)
Hash identifier: GNZNPZx/gzHj96VMoDmCYWIzBUpJQ1nJ/K7CJFThLt8=
Subject key identifier: A1:5E:01:02:D8:D5:F9:23:C1:9C:22:55:D1:DA:6F:AF:B3:DC:2C:5A
Authority key identifier: 0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
Certificate issuer: /CN=0fdee7944ac4da3111295d81e29deba00c163a96
Certificate serial: 019683FF37400195BCB89E3CC102ED991148
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
Manifest number: 0F11
Signing time: Wed 30 Apr 2025 00:01:03 +0000
Manifest this update: Wed 30 Apr 2025 00:01:03 +0000
Manifest next update: Thu 01 May 2025 00:01:03 +0000
Files and hashes: 1: D97nlErE2jERKV2B4p3roAwWOpY.crl (hash: qho4/UpAqmTJcswkXgNw3rqm5Sp9cKaeG/Qolz3SaBI=)
2: Fe73gwKx3TfChZQCePRdIEAemH0.roa (hash: qBzf7ILpA60OZzhZbHEoimpJXoZWWGpm51oGlU43AdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:ff:37:40:01:95:bc:b8:9e:3c:c1:02:ed:99:11:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fdee7944ac4da3111295d81e29deba00c163a96
Validity
Not Before: Apr 30 00:01:03 2025 GMT
Not After : May 1 00:01:03 2025 GMT
Subject: CN=a15e0102d8d5f923c19c2255d1da6fafb3dc2c5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:47:22:80:ba:eb:89:75:e1:fd:6f:38:54:92:
a8:b9:8b:1e:49:d7:24:d3:f9:35:e2:9e:bf:bf:e7:
42:f6:0e:9a:e9:78:e9:0c:fb:10:91:29:d7:a8:28:
e5:2b:ad:da:5b:ed:dc:84:95:93:8f:56:54:a1:da:
79:02:6f:e0:d9:3b:45:57:1d:e2:7b:a6:32:be:23:
55:41:82:03:77:32:4d:e0:99:fb:57:23:a9:3e:f8:
88:75:c0:e4:c4:50:f7:43:00:53:a6:a3:b0:bc:dc:
78:11:91:11:b5:be:72:6d:10:83:ec:5f:2b:bb:85:
52:e7:1b:db:71:75:a8:9d:ea:ad:3a:d8:0a:42:40:
e7:5a:55:83:2d:9d:d1:26:d1:cd:bf:a2:df:95:ae:
3f:c6:45:30:73:1a:ba:a7:52:5c:22:f2:09:38:38:
7a:ee:66:2d:ce:d0:50:59:c8:2b:29:68:43:43:da:
91:16:ae:e8:9c:ee:22:c2:01:74:84:bc:4f:21:44:
26:cd:ba:6e:6c:44:79:8f:ba:ed:00:07:b5:b4:72:
dc:56:50:07:41:7c:2a:a3:93:f8:53:a5:1a:05:0c:
b2:a1:b2:3f:c8:ba:fd:74:dc:25:ea:05:ff:ee:99:
96:2f:f8:8b:f6:cc:ec:cc:6d:14:ed:4f:38:60:76:
5e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:5E:01:02:D8:D5:F9:23:C1:9C:22:55:D1:DA:6F:AF:B3:DC:2C:5A
X509v3 Authority Key Identifier:
keyid:0F:DE:E7:94:4A:C4:DA:31:11:29:5D:81:E2:9D:EB:A0:0C:16:3A:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D97nlErE2jERKV2B4p3roAwWOpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/544bea-f1ec-4666-81c0-78a4d65693fe/1/D97nlErE2jERKV2B4p3roAwWOpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:76:fe:38:54:03:ec:b2:64:9e:99:94:b4:e1:ec:04:86:c3:
3b:4f:8f:3a:44:ec:43:84:9e:c0:e9:e3:d2:d0:00:25:32:5c:
52:9d:eb:5f:61:d8:fe:9c:91:e5:8e:e7:38:8b:88:8f:5f:89:
85:12:26:82:ce:2e:dc:af:77:5c:e1:f6:53:01:d6:55:fc:f6:
79:5f:f1:5e:51:f5:bb:6e:c6:6d:cf:b6:67:5b:c3:55:14:59:
37:51:a2:f8:34:88:94:85:13:57:8e:58:ca:4e:37:e2:92:36:
2f:65:e4:80:eb:46:65:78:1a:a4:fc:8f:10:da:42:9f:7d:fa:
98:9a:45:b4:0b:d5:5b:6f:5a:19:61:1c:ef:db:30:85:bf:6d:
de:c0:5f:3f:4e:29:03:f7:5c:4b:3a:71:85:45:84:3b:5c:2b:
db:c4:12:33:ad:7b:85:96:b4:76:a8:1d:f3:f2:15:0b:17:dc:
8b:9c:df:67:11:8a:a5:fc:f1:c5:5d:0a:f3:0a:75:8c:cc:5b:
b9:e8:48:b5:e5:da:d4:15:6f:17:55:16:68:76:61:77:0b:7b:
de:e7:4d:a5:dc:68:f1:ce:6d:61:46:fb:20:e8:f3:69:a0:06:
40:36:a4:50:33:a8:93:45:c2:ae:c7:dd:87:13:e0:46:5a:16:
8d:d5:35:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 08:51:43 2025 by rpki-client