Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
File: 2yNWAARVt7WJTO0UaYWgqIifnkw.mft (raw, json)
Hash identifier: bEZeaZPEvhbakDtnfEvrkEPPMt9XAhXC9Z72j/dbFMI=
Subject key identifier: EF:CA:55:A1:88:A2:46:9C:CD:DE:92:60:94:08:31:92:3F:A6:82:1D
Authority key identifier: DB:23:56:00:04:55:B7:B5:89:4C:ED:14:69:85:A0:A8:88:9F:9E:4C
Certificate issuer: /CN=db2356000455b7b5894ced146985a0a8889f9e4c
Certificate serial: 0196C3F04DF061587D24E2AC8C495584D6FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
Manifest number: 1352
Signing time: Mon 12 May 2025 10:00:27 +0000
Manifest this update: Mon 12 May 2025 10:00:27 +0000
Manifest next update: Tue 13 May 2025 10:00:27 +0000
Files and hashes: 1: 2yNWAARVt7WJTO0UaYWgqIifnkw.crl (hash: vbzujzZEKFoaNnsnNIS+NRcGmnldn+SuhYWAD6QI+Aw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 10:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:f0:4d:f0:61:58:7d:24:e2:ac:8c:49:55:84:d6:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2356000455b7b5894ced146985a0a8889f9e4c
Validity
Not Before: May 12 10:00:27 2025 GMT
Not After : May 13 10:00:27 2025 GMT
Subject: CN=efca55a188a2469ccdde9260940831923fa6821d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:42:0e:22:0c:5a:59:e4:9e:58:9a:d7:19:c5:
d4:97:87:a7:52:9a:ea:53:05:9d:89:b9:b9:bb:29:
a3:b9:37:0c:d3:5b:b2:bf:65:ec:fa:a5:8a:b6:82:
66:e0:fa:f8:b1:29:9c:8a:a0:f5:70:08:09:0f:a6:
be:46:35:92:1e:93:41:f2:33:88:86:17:ea:cf:21:
73:f0:0c:3b:0d:c0:e0:38:6f:1a:a9:5b:6a:53:3c:
9d:6a:74:af:f2:e2:79:03:05:cb:20:3d:4b:ee:d0:
0f:94:de:e8:af:aa:fc:9a:3e:be:f9:31:6d:33:2c:
37:88:82:41:c2:e2:98:2d:fe:9c:15:b4:65:f8:2c:
4f:90:be:b4:d0:3d:7c:7f:55:b8:f7:9b:d5:31:e5:
25:2a:27:7c:88:be:78:de:b4:d8:ee:9b:ce:71:bc:
f8:b0:0d:79:bf:a6:ba:d6:08:58:eb:26:a7:89:b5:
9d:d4:12:c3:af:8a:da:e0:1a:2e:6d:d1:ed:5f:bc:
d4:9a:26:41:86:d1:f8:a3:d6:21:48:84:cc:47:80:
41:80:d9:3e:c4:94:95:9a:47:5a:bf:19:eb:11:41:
bb:fa:ec:6f:46:82:d0:62:74:c3:af:28:30:3a:28:
5f:23:e9:ce:63:91:bc:8e:6a:d8:bf:ed:fb:16:ee:
1a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:CA:55:A1:88:A2:46:9C:CD:DE:92:60:94:08:31:92:3F:A6:82:1D
X509v3 Authority Key Identifier:
keyid:DB:23:56:00:04:55:B7:B5:89:4C:ED:14:69:85:A0:A8:88:9F:9E:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:91:fe:c5:94:6a:63:6e:c2:9b:4d:10:6a:8f:4e:6d:0f:c4:
71:96:d3:cf:3a:af:67:8c:cc:cf:d3:b9:38:ea:e5:3d:3d:fa:
a2:85:16:c7:4d:e5:c2:7e:08:ed:57:15:33:f7:37:54:2b:5c:
d9:85:8f:1a:3d:cd:a3:d6:2a:d3:06:a1:b9:00:44:ff:f6:30:
a9:af:43:05:d5:62:0e:10:ce:c5:42:9b:fe:99:dc:81:55:4d:
52:c2:05:c5:36:06:39:af:6e:c8:78:a4:1a:1f:75:a5:a5:1c:
d0:4d:94:a8:5e:64:1a:ab:e4:23:99:8a:3c:04:11:b7:c7:07:
76:d9:48:61:4f:3d:27:75:8e:6b:7d:d1:e2:be:91:f0:1b:ff:
62:28:61:cd:ed:e8:da:95:fd:6c:75:db:dc:3a:02:a3:a8:7a:
27:39:9a:e1:e6:76:80:f3:d5:60:56:f6:a1:d3:99:b6:97:46:
c8:61:9c:0b:32:43:90:cb:6e:06:e2:3f:44:61:73:69:a8:c1:
7e:a0:dd:45:65:c9:77:06:67:a9:fb:18:a6:06:a1:54:53:b6:
89:75:53:8f:30:bb:c9:48:74:ba:45:c9:48:29:77:de:9b:2c:
3c:e1:7a:d1:79:37:82:51:f4:29:2d:08:65:ca:65:a8:57:0b:
dd:7e:41:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 19:31:39 2025 by rpki-client