Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft
File: 2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft (raw, json)
Hash identifier: uukCQr89D4qbXRouFgD6Y0jjBaO/fpUKmqkHK4I+tmA=
Subject key identifier: BB:79:A9:5C:72:8D:BC:2F:91:54:C4:C5:40:F7:B2:A7:C5:B5:40:9D
Authority key identifier: D8:76:63:C5:E1:4F:13:74:6C:80:F6:0B:A3:63:49:3D:9A:49:34:CC
Certificate issuer: /CN=d87663c5e14f13746c80f60ba363493d9a4934cc
Certificate serial: 0196A389D9F692590DACBE9795D01330DF73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HZjxeFPE3RsgPYLo2NJPZpJNMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft
Manifest number: 05C0
Signing time: Tue 06 May 2025 03:00:42 +0000
Manifest this update: Tue 06 May 2025 03:00:42 +0000
Manifest next update: Wed 07 May 2025 03:00:42 +0000
Files and hashes: 1: 2HZjxeFPE3RsgPYLo2NJPZpJNMw.crl (hash: TQGuX49ragWs2sjKOwrYVw+PeQJ9s2QejWEH54AQ4hw=)
2: eNatCM_ng_ZzT0XjnAhnE8JwsaM.roa (hash: NiVcVjOLTxJgHF9YkgZvM/M3+zTG2kPIupDct4SjNb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HZjxeFPE3RsgPYLo2NJPZpJNMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 03:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a3:89:d9:f6:92:59:0d:ac:be:97:95:d0:13:30:df:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87663c5e14f13746c80f60ba363493d9a4934cc
Validity
Not Before: May 6 03:00:42 2025 GMT
Not After : May 7 03:00:42 2025 GMT
Subject: CN=bb79a95c728dbc2f9154c4c540f7b2a7c5b5409d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:63:a6:fc:e0:de:81:d5:8f:8f:fc:08:e8:68:
73:71:64:72:c4:d8:28:01:48:fe:0c:7f:95:1d:f5:
6c:23:f5:23:05:50:53:b9:3b:6c:b6:79:5e:c0:f2:
83:25:dc:f6:72:83:d7:2a:27:32:c9:ea:4a:71:51:
f8:38:60:22:55:9a:ba:55:34:23:65:2b:21:03:84:
57:3d:71:c7:92:e8:e2:06:05:4a:34:83:19:7e:f6:
6f:5c:2f:88:96:83:36:a3:c6:ba:78:db:4b:ba:d6:
04:29:1d:5c:71:17:d1:a6:02:52:ea:80:18:8f:b4:
3a:8c:11:7d:7f:43:11:75:2b:77:94:d4:f5:79:58:
d6:43:2e:c7:cf:ae:ea:fc:73:81:5d:c1:ee:0f:28:
0c:72:9f:6a:1f:5b:da:e7:0c:9c:03:d6:be:de:e3:
46:78:93:bc:f1:3f:0f:1c:61:f6:e1:29:82:56:53:
4a:ae:3a:6f:e7:c4:07:1e:db:d8:01:26:63:04:f5:
29:32:60:e5:eb:43:86:18:db:c0:d1:67:f4:4f:90:
68:be:c1:b2:0d:af:e2:82:67:7f:fd:f4:63:88:e5:
a6:f1:90:cb:df:b5:b4:52:e3:15:06:c3:89:8f:e2:
4c:ad:75:02:05:49:8f:22:13:88:27:d5:aa:f6:22:
c5:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:79:A9:5C:72:8D:BC:2F:91:54:C4:C5:40:F7:B2:A7:C5:B5:40:9D
X509v3 Authority Key Identifier:
keyid:D8:76:63:C5:E1:4F:13:74:6C:80:F6:0B:A3:63:49:3D:9A:49:34:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HZjxeFPE3RsgPYLo2NJPZpJNMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:c7:c9:c1:eb:b7:61:51:64:7f:38:b4:67:f3:bd:12:8c:55:
b4:8a:4f:d7:11:ca:aa:cd:9f:6c:6e:88:e1:fa:42:29:57:73:
48:6c:ff:55:39:af:ab:6a:0a:e8:30:a6:57:38:50:ec:ea:f6:
50:f3:63:31:34:47:b3:83:5a:82:bf:bb:3d:21:6c:a9:43:a6:
ce:05:33:90:84:2c:1a:f2:f7:81:dd:0c:15:cc:6d:91:e8:5b:
6e:4b:bb:e6:65:b7:c3:43:3f:cc:54:09:23:bd:1a:4a:17:45:
42:c4:01:28:e8:b4:7b:27:0c:b2:32:de:a0:ab:d3:b9:b2:c0:
d6:75:8f:3d:68:16:b3:2f:a4:6e:4f:19:72:1f:61:2c:6c:77:
91:a6:27:79:7f:73:52:36:f5:a7:ff:ca:91:8b:62:5f:8e:6b:
6b:d6:00:83:b6:ff:ef:45:5f:3c:e2:cf:30:56:bb:02:cd:e4:
87:88:37:1e:20:e7:f7:7a:b3:e5:98:5e:a7:c3:0e:e1:c8:dd:
f2:ae:4c:b3:81:63:e2:e1:9d:86:38:34:84:fb:cb:18:41:e1:
69:ea:7f:d0:73:89:40:66:c4:ce:c5:ed:28:00:59:b4:89:3c:
ab:5a:92:5d:84:d5:31:e0:c0:5b:d0:27:40:57:c6:83:5b:99:
28:b5:88:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 10:53:05 2025 by rpki-client