Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
File: diI4ozxVDMXfAkTz_G49vZHkw54.mft (raw, json)
Hash identifier: qlaFz6UCAonQNwxU2xPaAmBp4hl4Pt4TG1KboUE3N6o=
Subject key identifier: AC:21:A5:88:4A:52:CD:7F:68:F1:C0:2E:87:22:B2:4E:22:F4:8C:53
Authority key identifier: 76:22:38:A3:3C:55:0C:C5:DF:02:44:F3:FC:6E:3D:BD:91:E4:C3:9E
Certificate issuer: /CN=762238a33c550cc5df0244f3fc6e3dbd91e4c39e
Certificate serial: 01968C25D87C87B39B03CD8AF20669C01BA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
Manifest number: 0985
Signing time: Thu 01 May 2025 14:00:12 +0000
Manifest this update: Thu 01 May 2025 14:00:12 +0000
Manifest next update: Fri 02 May 2025 14:00:12 +0000
Files and hashes: 1: diI4ozxVDMXfAkTz_G49vZHkw54.crl (hash: u83wePVr8zcCFrJG3TWXh/sSakorK6Eix1A5u/0SM3o=)
2: wJoEv1cTcMs89DVqbv88rXmkjBs.roa (hash: dwNiZrwk++xFBCbnEtCywNysmHqCMLzFmgUxU3OD8L4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 14:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8c:25:d8:7c:87:b3:9b:03:cd:8a:f2:06:69:c0:1b:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=762238a33c550cc5df0244f3fc6e3dbd91e4c39e
Validity
Not Before: May 1 14:00:12 2025 GMT
Not After : May 2 14:00:12 2025 GMT
Subject: CN=ac21a5884a52cd7f68f1c02e8722b24e22f48c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:66:d6:c2:c9:7f:a3:25:3e:a6:4d:e0:e6:89:
ee:0b:26:59:94:cc:da:bf:aa:75:72:dd:85:7b:e6:
c9:b1:aa:6e:67:48:a3:57:e8:ed:5b:ab:34:c0:c4:
13:1e:de:93:6a:6d:59:36:81:92:a7:1a:7b:cf:d0:
3a:ed:8d:f8:2e:ff:43:24:a4:dd:a0:ee:f5:49:ec:
8e:38:ff:7e:59:da:58:93:fb:5f:6d:6e:b0:dc:0f:
5d:f0:72:32:98:e9:38:fa:26:36:b3:ac:b3:d4:19:
86:af:e7:7f:2e:f5:81:55:bb:63:47:92:98:44:71:
e3:04:6e:ed:e1:98:e3:67:5a:59:a5:d0:78:fe:3d:
e5:66:f1:90:ec:c9:ee:5c:63:a0:7e:27:17:60:25:
fa:29:e6:96:40:c7:09:a2:31:03:b3:52:72:5b:8e:
f7:af:0e:50:70:f8:fe:bc:70:9a:d0:3c:6f:74:e9:
77:3b:31:ad:48:7b:ee:cc:91:dd:d3:d7:58:99:1b:
7e:50:d1:3a:d1:36:1a:dd:5c:0f:4b:17:2e:e9:50:
3a:00:aa:e7:ae:75:52:df:69:18:5a:51:85:15:2d:
97:41:6f:03:c8:d2:0a:a2:e1:fb:98:80:33:5f:31:
0d:cf:a1:d8:37:f7:ad:cf:75:4a:ae:b0:f0:f3:37:
b4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:21:A5:88:4A:52:CD:7F:68:F1:C0:2E:87:22:B2:4E:22:F4:8C:53
X509v3 Authority Key Identifier:
keyid:76:22:38:A3:3C:55:0C:C5:DF:02:44:F3:FC:6E:3D:BD:91:E4:C3:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diI4ozxVDMXfAkTz_G49vZHkw54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/5e3249-bebf-4070-9fcd-1b1fc79d0551/1/diI4ozxVDMXfAkTz_G49vZHkw54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:48:27:34:e5:cf:6f:98:9c:18:b0:26:da:42:90:6d:bc:03:
40:17:37:87:2f:89:bf:b8:f5:e7:f8:61:88:15:cb:26:06:ed:
98:62:ed:d3:1c:85:78:5d:bb:23:d5:e9:f2:2e:93:30:16:8c:
1b:c4:24:90:ad:27:cc:8a:83:72:be:a8:b6:f4:ee:01:f6:62:
c5:47:18:6d:20:cd:29:a7:26:74:3e:86:d8:d8:ac:fb:7c:70:
40:3d:7a:6c:16:1d:d3:f5:38:33:c6:1c:c6:34:de:f8:41:ab:
e9:23:e1:ca:12:d8:b4:90:fa:0f:3d:ed:e0:40:fb:e3:07:b3:
6c:4a:7d:4d:8d:35:a3:0c:72:af:c8:f3:92:ad:61:05:e3:99:
82:e0:2c:98:ca:13:3c:7c:01:b9:be:2d:83:a5:97:ba:a7:ff:
d1:bd:17:d0:b8:7c:a5:24:55:90:dd:b3:fb:55:e7:28:02:2a:
32:74:57:00:ef:f1:97:36:3e:29:cf:fe:4b:21:0c:d3:df:98:
73:46:2a:11:fd:52:78:86:30:50:16:3d:a3:12:0e:cc:9b:62:
3a:51:3d:d6:dd:00:aa:89:3d:ea:27:98:d7:dd:4e:b7:b7:b2:
3e:2d:20:68:42:f3:2b:ef:4c:07:c5:4a:5e:2f:32:8d:88:b9:
54:6d:ff:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 01:13:16 2025 by rpki-client