Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: M5EE4SbQmuZY6pS9y9GykVjkKgZVoRqY1rCZdnWK/tk=
Subject key identifier: 47:3B:0E:99:37:6A:BE:E3:EA:B4:31:BD:C2:D5:FB:80:9D:EA:4F:E3
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 0196C5A8288B87E3773DBC25A19F820C1273
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 1539
Signing time: Mon 12 May 2025 18:00:53 +0000
Manifest this update: Mon 12 May 2025 18:00:53 +0000
Manifest next update: Tue 13 May 2025 18:00:53 +0000
Files and hashes: 1: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: LxzE3j/s6g/4TX84jEWQ7OD/Wv1GChdRxTugmL9NX+M=)
2: Lr1Je63vs8PyvkKI1_N9un3D4qE.roa (hash: hbRmpQBdQ4b6GdZPWppZ6a4wJHdosMiH1PY+13rdPiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:a8:28:8b:87:e3:77:3d:bc:25:a1:9f:82:0c:12:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: May 12 18:00:53 2025 GMT
Not After : May 13 18:00:53 2025 GMT
Subject: CN=473b0e99376abee3eab431bdc2d5fb809dea4fe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:44:f5:43:d9:1d:e7:41:32:40:4a:9f:13:e6:
0c:1a:d3:70:7e:a6:6e:d1:e6:39:dc:b9:41:a7:7d:
2c:bd:a2:cc:da:55:a3:be:47:b4:62:cb:fe:66:14:
47:ca:57:a5:1b:fe:0d:ca:b1:2b:40:6e:00:c2:ac:
fe:0a:17:50:92:e7:7c:24:bb:bc:21:b9:0f:b5:76:
b5:2c:b6:95:21:df:06:22:05:dc:e4:a0:67:b1:15:
a7:2c:19:1c:0a:2d:a4:34:6a:0e:4f:d3:63:95:c3:
b2:4a:92:26:4c:89:57:42:2e:0b:c6:ae:d2:15:71:
f2:a7:62:17:12:46:4e:bb:39:d1:42:d3:fc:75:95:
78:86:6d:c8:ce:32:d6:43:25:42:e1:05:fa:fd:7c:
1f:2b:6e:6e:1d:1c:8f:9d:bb:ad:c3:5b:71:27:c5:
f2:53:05:b4:55:2e:97:bb:78:14:a9:4c:c5:c1:4c:
b2:a1:74:c6:53:aa:69:21:f3:4a:e9:b7:04:64:40:
7d:33:64:90:97:b8:7d:a0:db:f0:05:6f:6d:f0:5c:
27:07:d3:13:95:88:2b:d7:8b:33:bd:1c:6f:93:7f:
6d:c9:57:56:4e:bf:30:23:2c:c8:36:4b:72:b3:f4:
58:0d:df:3c:8b:ce:4f:43:f0:59:20:98:8b:f7:e6:
f4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:3B:0E:99:37:6A:BE:E3:EA:B4:31:BD:C2:D5:FB:80:9D:EA:4F:E3
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:d8:69:6e:81:01:e0:c9:91:8d:e4:47:df:3c:9a:2c:3e:04:
43:5d:3e:ff:b6:f1:d5:64:56:f6:e6:83:34:02:ec:0a:f2:23:
ad:3a:b1:7e:6c:45:6e:72:1d:3f:39:43:f7:e2:c5:86:59:2e:
a8:8d:dd:6f:13:2f:80:8d:e0:90:2d:b8:b4:34:aa:77:f5:db:
a9:85:a4:45:4a:a9:f1:90:81:c0:21:a7:57:cf:55:b7:60:b5:
1a:2c:c6:74:7a:23:4d:4a:f5:03:88:7e:fc:f9:f1:63:12:a3:
6c:55:6a:67:ac:40:6a:84:91:39:71:cb:02:74:e1:a6:c5:c2:
e2:1b:8a:bd:43:2f:2c:4c:a3:6c:32:11:7b:df:c9:f5:87:a8:
ee:83:ac:1b:a5:b4:0a:4b:61:a8:09:53:cd:15:05:21:47:be:
65:2e:bc:8d:fa:fa:d9:2e:c7:9d:f4:a4:0d:0d:06:1d:46:e4:
6a:fb:7e:37:73:65:38:e0:93:a5:53:4e:27:fc:1b:62:29:db:
98:5d:78:af:cf:71:60:9c:aa:e4:dc:ca:bc:8a:1d:03:23:2d:
f3:d2:ad:e0:83:6a:04:1a:e4:7d:de:79:01:47:eb:da:e3:69:
fb:a4:08:dd:6c:d1:5d:31:5d:dc:a5:14:91:67:f2:4b:4b:be:
d5:41:9a:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 21:49:26 2025 by rpki-client