Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
File: 2axioKJWftFz3CqtN25FXIW8trs.mft (raw, json)
Hash identifier: UvCu7jYALBuiqpuhdjZGAGi8DRcoK64WNEDSy400mHU=
Subject key identifier: 90:77:00:33:FB:04:45:84:67:09:49:8E:78:92:1D:8E:37:92:B6:1C
Authority key identifier: D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB
Certificate issuer: /CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb
Certificate serial: 0196A0891781EE2D390D4B31C6424A9715C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
Manifest number: 1521
Signing time: Mon 05 May 2025 13:01:00 +0000
Manifest this update: Mon 05 May 2025 13:01:00 +0000
Manifest next update: Tue 06 May 2025 13:01:00 +0000
Files and hashes: 1: 2axioKJWftFz3CqtN25FXIW8trs.crl (hash: q4OqigsvHwrbKZth5wPsHK25vio/t3QEakPxI3r7MgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:89:17:81:ee:2d:39:0d:4b:31:c6:42:4a:97:15:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb
Validity
Not Before: May 5 13:01:00 2025 GMT
Not After : May 6 13:01:00 2025 GMT
Subject: CN=90770033fb0445846709498e78921d8e3792b61c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:25:fd:15:01:b5:4a:fe:5a:d6:4e:01:1f:d5:
9e:ed:d2:68:76:80:c0:c0:a9:b6:20:49:71:86:a0:
80:3c:2c:02:12:fd:02:94:62:90:84:aa:d5:b1:60:
5e:e5:c4:5e:0e:83:db:fe:61:51:d9:f9:0c:5a:75:
e1:f9:d5:e9:3d:aa:0a:a3:93:65:3b:62:98:f0:49:
ba:10:db:79:21:f6:34:a9:e3:cc:18:18:71:cb:e2:
16:ba:51:a2:ec:8a:c5:89:94:fa:5f:4c:dc:d6:78:
f5:b8:f7:40:84:f9:35:3f:6e:72:ff:cf:4d:ca:b3:
71:2f:7c:83:4b:47:31:d1:9b:b0:d0:60:19:99:c0:
d6:64:cb:3d:b6:ad:a5:e5:3f:bf:ea:78:36:dc:69:
a4:83:56:aa:2d:45:1c:29:7a:3f:df:c2:41:a5:4f:
1a:02:c2:9c:48:cb:03:5b:27:ae:d1:1a:d1:36:8e:
cc:73:d4:8b:b1:d8:13:cd:d0:b3:0d:a0:ef:15:0e:
3d:08:13:ac:b3:c6:a7:ea:b1:d9:33:85:50:97:af:
a4:2c:93:42:f9:19:f4:9c:7e:57:d2:f8:86:cc:02:
d7:b4:de:0e:04:af:01:66:08:9d:d5:81:cc:66:cd:
1c:91:28:cf:b5:4c:fa:39:a4:67:b9:68:7b:7a:86:
b2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:77:00:33:FB:04:45:84:67:09:49:8E:78:92:1D:8E:37:92:B6:1C
X509v3 Authority Key Identifier:
keyid:D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:e4:02:90:a7:84:28:b8:33:c3:11:f3:0e:38:cf:78:98:5a:
b0:a0:9d:6b:f6:6b:a5:44:61:f3:d8:58:69:fe:9a:7e:c2:45:
18:31:79:db:ad:4e:de:25:1f:f8:13:ce:2f:b1:82:b4:26:f4:
68:59:29:02:52:0f:f7:c8:86:b4:12:b5:73:8c:04:2d:53:d6:
91:0f:53:bb:c4:d1:18:81:ad:b4:0b:53:7e:9a:36:73:4f:2b:
a3:fb:8b:d8:a1:09:03:e5:ba:b6:e2:7b:a5:43:02:9a:a6:c7:
94:bf:c2:7f:80:25:1e:d9:4f:51:24:59:d3:f1:47:c8:67:c9:
56:43:7d:1e:d9:55:64:07:69:0f:77:aa:6e:0b:1d:71:43:25:
2d:f7:eb:41:6e:be:36:e7:3f:45:e7:4b:82:33:9f:dc:d6:45:
f0:21:90:e9:9a:6a:56:51:dc:1a:09:3c:42:b7:24:e4:73:8b:
7b:9f:fd:68:ae:c4:d4:a2:a1:e5:1a:c6:e2:16:07:27:8a:03:
58:85:a4:46:cb:bb:40:bd:a4:09:c8:1c:b9:95:90:23:76:0f:
b6:be:66:c6:0e:5c:ec:5e:98:e4:f2:68:28:d4:d6:49:9f:c9:
ef:3c:a5:d9:63:f5:0d:13:bd:db:e4:8a:97:2a:7a:e5:8a:d5:
97:54:bd:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 19:21:59 2025 by rpki-client