Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
File: 23DOek5uSrOk6p8IH1kupfbSuao.mft (raw, json)
Hash identifier: uYfcVNrXeXunzUxPwDpODFZHKTvKVaEABhoV3F+mFmg=
Subject key identifier: 99:B2:6D:69:D4:5A:3E:D2:0D:A7:23:71:D2:A0:0D:75:9A:09:85:68
Authority key identifier: DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
Certificate issuer: /CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Certificate serial: 0196786888E31453679FE0E6248EB9528B6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
Manifest number: 0553
Signing time: Sun 27 Apr 2025 18:00:38 +0000
Manifest this update: Sun 27 Apr 2025 18:00:38 +0000
Manifest next update: Mon 28 Apr 2025 18:00:38 +0000
Files and hashes: 1: 1-zGyc8-sNFoNd9jrRwy0ohv-lr8.roa (hash: X6damPmptp3XphV2HfGbEnZgUQ5Ok8UVDdDjwWdsAA0=)
2: 23DOek5uSrOk6p8IH1kupfbSuao.crl (hash: mqydi9Egeoy+8FsPymuCRlzUjFIsh06lZ5Hyt2r4mr0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:88:e3:14:53:67:9f:e0:e6:24:8e:b9:52:8b:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db70ce7a4e6e4ab3a4ea9f081f592ea5f6d2b9aa
Validity
Not Before: Apr 27 18:00:38 2025 GMT
Not After : Apr 28 18:00:38 2025 GMT
Subject: CN=99b26d69d45a3ed20da72371d2a00d759a098568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c0:ac:0a:a2:25:55:86:6d:88:b1:88:fb:74:
4d:4e:4f:47:29:81:2e:ed:33:ee:63:2c:a9:f5:d5:
fe:1c:05:f3:4e:ff:5b:b9:50:0a:0d:20:5d:64:c4:
70:ac:f2:db:3e:8d:7d:77:8e:ee:d0:c2:40:5b:c1:
46:d9:94:13:de:30:70:f6:65:3b:41:3e:a2:5f:ed:
39:59:b6:d2:10:85:e0:6f:04:aa:1a:79:e9:cc:41:
e7:93:bb:b9:96:7b:0a:37:af:24:0c:7c:19:59:2f:
18:b2:30:56:2a:e0:fe:85:23:c2:9e:7f:ce:9a:af:
d2:6e:9e:e5:23:4b:3f:7a:c2:48:ac:58:7e:b2:5e:
81:1c:cd:dc:2c:15:2c:c5:14:a3:ce:98:8b:c5:20:
1b:d8:74:78:2b:6b:65:a9:26:1d:4e:54:9b:ab:2d:
a7:97:ab:fd:84:a4:c8:02:a5:e6:12:1f:32:72:cd:
90:59:89:14:53:df:29:84:4e:38:bb:62:86:ea:7f:
e0:1b:e0:e1:dc:25:ec:3d:b3:31:db:b4:38:5f:b8:
1f:7d:97:2e:9b:5c:47:19:87:dd:6b:a5:9e:c4:34:
a1:cf:ca:bd:87:69:bb:b1:1e:3f:c1:b1:d9:22:9e:
e4:44:9a:27:55:c3:f2:8f:37:6e:fb:90:db:15:30:
88:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:B2:6D:69:D4:5A:3E:D2:0D:A7:23:71:D2:A0:0D:75:9A:09:85:68
X509v3 Authority Key Identifier:
keyid:DB:70:CE:7A:4E:6E:4A:B3:A4:EA:9F:08:1F:59:2E:A5:F6:D2:B9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23DOek5uSrOk6p8IH1kupfbSuao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9da601-635e-4d07-8096-2cb17b7bc618/1/23DOek5uSrOk6p8IH1kupfbSuao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:f8:65:fd:b9:06:52:e9:ef:08:4f:11:33:07:3c:16:23:76:
3e:71:9c:70:09:a3:b9:32:41:c7:83:61:f1:94:30:7b:3c:5d:
c9:58:09:c4:a0:cd:59:40:0b:89:97:53:e3:24:14:bc:70:fd:
8d:2f:51:f5:40:44:e8:4a:97:21:8f:14:7d:e2:85:2a:a8:66:
b6:ee:c2:26:57:b9:9e:5f:44:0b:d6:79:c8:45:31:6d:63:5c:
31:fa:0d:78:0c:f7:dd:17:20:f9:b3:22:7e:6e:80:88:9f:8b:
ba:09:b1:c9:14:e8:1a:f9:3d:08:90:8a:aa:f8:dc:a2:aa:1d:
01:fd:ac:d5:22:32:a2:8c:30:46:e6:05:77:15:78:3d:2f:61:
c1:3b:95:ef:a5:8b:f2:a7:6b:25:78:57:73:3f:e5:72:d4:7d:
db:0e:92:9d:f6:12:88:e1:53:a3:fb:42:0d:9c:a1:9d:50:9a:
76:ca:6e:4a:20:fa:1d:af:8e:93:2f:be:44:f9:0e:c3:16:ed:
61:ef:03:b4:c9:c4:45:fd:0f:62:3f:22:14:dd:36:4c:c3:78:
74:a1:47:eb:4f:4e:70:d4:83:63:78:e6:e4:06:cc:da:d1:d1:
7d:0b:32:80:9e:eb:cb:5d:3b:d1:b3:7a:1c:e3:57:a9:26:fe:
75:b1:86:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 02:55:55 2025 by rpki-client