Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
File: 9OcXTG90-poisK3uJRqNZDEjE_I.mft (raw, json)
Hash identifier: Ib71jzyHLbfDIbox9azlDc7pXylsTvmLpab44XJWtiw=
Subject key identifier: C3:C2:E2:DB:EA:A2:8C:41:CA:B1:CC:66:25:C6:A4:0F:1D:2B:8C:EF
Authority key identifier: F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
Certificate issuer: /CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Certificate serial: 0196741DAC158F81C7E3B473D01A0CA58ED6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
Manifest number: 149F
Signing time: Sat 26 Apr 2025 22:00:23 +0000
Manifest this update: Sat 26 Apr 2025 22:00:23 +0000
Manifest next update: Sun 27 Apr 2025 22:00:23 +0000
Files and hashes: 1: 9OcXTG90-poisK3uJRqNZDEjE_I.crl (hash: aXacwJFO/+4Be3egk086sNxqJpHzcgxD7KG/suxanhs=)
2: DSwyNAuAz2bJdfrLonxlYBob04I.roa (hash: 3+/CvQ/0iqsF5SqvqkyipksHlcWBh/rqDJFf0zM3tC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:1d:ac:15:8f:81:c7:e3:b4:73:d0:1a:0c:a5:8e:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Validity
Not Before: Apr 26 22:00:23 2025 GMT
Not After : Apr 27 22:00:23 2025 GMT
Subject: CN=c3c2e2dbeaa28c41cab1cc6625c6a40f1d2b8cef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f2:33:6f:69:a9:fd:5c:d5:19:ec:29:5a:53:
57:08:ee:17:7e:34:28:01:d8:cd:8f:68:f7:2c:f4:
d4:01:90:75:72:41:08:64:fc:7d:c4:98:ba:1c:37:
04:d2:59:ee:1d:3d:39:38:ba:36:b6:64:15:a6:42:
c2:7d:e1:60:cc:79:44:ca:87:5e:ad:a1:3f:54:05:
02:1f:b2:c3:30:f8:44:0e:0d:59:29:5b:9a:66:a9:
d0:73:db:e7:36:e8:9a:0a:fa:b4:b5:ed:b1:ef:9f:
78:4e:9f:52:a6:90:6e:ba:ea:07:00:1f:67:03:68:
02:3d:65:3a:66:70:cd:99:ff:8f:f1:76:1a:fb:ab:
ae:94:27:01:33:64:20:f4:4c:1c:7c:52:ec:9c:66:
53:75:09:a7:11:b8:cd:4f:2c:66:c8:67:41:76:ee:
21:7c:f5:a4:86:0f:b5:dd:ea:83:b7:2f:bb:ee:12:
6f:f9:5a:d2:db:3b:27:dc:5c:1f:46:88:0b:39:03:
f3:24:81:e3:d7:cf:65:72:7b:bf:2e:d2:8d:f1:cd:
3c:1b:b7:c1:bd:3e:e4:a1:ae:0a:a2:1f:90:17:aa:
2d:d6:42:d2:54:12:ae:22:c9:e0:a0:f9:9a:a3:3f:
69:47:e2:41:34:33:bc:e6:83:2c:c5:20:4f:f7:1c:
9d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:C2:E2:DB:EA:A2:8C:41:CA:B1:CC:66:25:C6:A4:0F:1D:2B:8C:EF
X509v3 Authority Key Identifier:
keyid:F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:7f:30:42:79:ad:ce:ab:03:b2:27:67:a0:d6:e4:75:4d:36:
e9:66:2c:74:61:e4:55:23:0e:1a:c9:f3:3d:b4:b5:06:50:a8:
3f:d1:1f:f8:e6:cc:7c:cc:81:90:f9:96:57:6c:b9:dc:ec:37:
f5:7f:bd:ff:cb:fc:f8:f0:93:cf:12:a4:18:b6:c8:f1:4f:2a:
30:90:a5:47:13:74:e3:0f:84:71:71:19:30:02:7d:37:af:b4:
a0:9a:49:c5:4d:22:c2:21:96:5f:b1:5c:da:65:d3:42:86:e4:
4b:02:b1:ad:cf:ba:04:2c:5b:fd:a5:f0:5b:5e:33:25:da:93:
a9:41:2c:f8:31:05:d6:87:8d:b5:56:ff:db:f9:46:8c:c7:cf:
0b:c7:24:56:eb:3d:12:af:82:52:c9:b2:2d:7c:f4:93:5e:5e:
61:ad:b9:62:6d:5a:e6:72:2c:2a:34:2c:50:18:4d:17:43:cc:
ff:ca:f4:38:62:30:6f:4f:16:06:ca:d2:e3:47:12:4a:37:92:
99:da:b9:2d:39:cf:82:2d:b3:0b:c0:a1:60:d4:47:cd:60:0c:
5e:24:a9:1f:c4:f8:a3:43:e8:a0:e8:eb:b1:bf:c0:fb:ac:e7:
3f:88:9c:7d:6e:9a:b0:b4:2a:67:5d:81:9b:69:ce:23:71:d9:
8c:cc:7d:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 04:08:03 2025 by rpki-client