Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
File: 2huf6PGjORf-5-Tb6fq5JeuGJak.mft (raw, json)
Hash identifier: l1uqeTKY9bmUci9mm2yaKLtNbjPiwBzRdzMRcSOTLZ4=
Subject key identifier: 92:ED:A5:BC:AA:6D:55:78:0A:41:DA:3F:6B:49:65:5D:6F:B5:49:4D
Authority key identifier: DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9
Certificate issuer: /CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9
Certificate serial: 0196C64CBED605ACEBAE59A039DF10BAC944
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
Manifest number: 05EA
Signing time: Mon 12 May 2025 21:00:40 +0000
Manifest this update: Mon 12 May 2025 21:00:40 +0000
Manifest next update: Tue 13 May 2025 21:00:40 +0000
Files and hashes: 1: 2huf6PGjORf-5-Tb6fq5JeuGJak.crl (hash: ysricapbNrbs5G18ZEhLsuftxPL4hi9WQGIKvLqOg+g=)
2: qARNDLbWZGpXclqzpXtzfvYP72c.roa (hash: yeRNjTwXDaIWE/tdw8m2d67pmit4bLUSMZLje7zj8IA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:4c:be:d6:05:ac:eb:ae:59:a0:39:df:10:ba:c9:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9
Validity
Not Before: May 12 21:00:40 2025 GMT
Not After : May 13 21:00:40 2025 GMT
Subject: CN=92eda5bcaa6d55780a41da3f6b49655d6fb5494d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cd:74:7f:d9:63:2e:98:e6:78:d4:17:b4:54:
c9:da:cd:42:8f:4f:98:be:71:95:ed:d9:4a:e8:d0:
68:2b:9a:6f:1a:27:3b:85:48:e7:0b:61:98:77:ed:
91:1c:cb:30:3b:69:2e:91:fe:e1:73:b5:51:da:c9:
27:47:93:fc:db:b8:99:7a:ac:07:f5:b0:31:71:ee:
ea:ed:ae:35:28:21:ca:71:e7:8f:bb:6f:aa:bf:37:
93:a2:88:6f:75:7a:4f:23:1a:af:91:81:b9:13:ff:
c9:66:c6:9b:ce:fe:39:88:c4:98:b7:eb:74:df:02:
0b:49:5e:f7:ad:72:5d:e0:26:42:3e:0f:cb:06:79:
2b:0e:21:ca:52:37:d6:1e:d7:46:a3:15:b9:ec:8b:
0f:0a:e2:94:47:7c:f5:b5:75:13:ed:02:a3:3b:27:
23:68:cf:6e:d2:66:83:2f:8c:c3:f8:1e:b3:c7:b8:
01:2e:1b:7a:79:5a:cb:d9:7b:25:e3:f7:05:99:19:
f4:b3:ff:6a:bc:98:1a:8f:8e:ec:70:15:5b:9d:25:
fe:5f:8b:9c:42:a9:d9:ae:f2:95:8d:22:ff:0d:d0:
44:2b:f6:51:63:f7:3c:b4:e3:ba:19:e4:d3:42:f7:
60:62:e6:f5:e5:1e:54:00:61:58:7f:1c:0e:d1:53:
77:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:ED:A5:BC:AA:6D:55:78:0A:41:DA:3F:6B:49:65:5D:6F:B5:49:4D
X509v3 Authority Key Identifier:
keyid:DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:fc:7e:c3:93:32:c6:01:70:67:f2:75:b7:e1:58:17:2f:0f:
b9:c9:1f:4b:66:ee:1c:86:04:a9:12:8e:b7:b7:87:0f:91:4f:
39:af:cd:75:2f:43:b4:10:3e:3a:8d:81:8a:37:d9:7f:74:8a:
32:7c:d5:d0:cd:1a:ea:31:d7:a5:8b:63:04:fb:1b:3c:f8:6e:
16:c9:ab:fd:01:60:28:96:02:f0:36:39:28:e6:f2:8d:4f:cd:
89:cc:cf:87:7a:a8:82:50:c8:6d:36:c6:9f:16:77:b6:2d:38:
2c:05:60:5a:bf:5c:3d:9b:32:b8:87:1f:87:dd:5a:22:83:f9:
8b:b9:11:70:1c:68:de:e7:1e:a7:3e:01:6c:f5:c7:5d:36:42:
ee:b3:0e:7e:19:eb:98:79:08:65:b0:d4:54:e3:16:1f:f3:98:
ea:3a:56:2b:eb:f3:50:a9:e5:4d:15:86:0b:2e:00:c9:4b:41:
01:ff:82:db:6b:d9:ed:f9:88:34:05:68:63:34:2e:04:9c:c9:
07:2f:52:5e:1c:0d:e1:17:1f:a1:2d:3b:c3:dc:f4:61:f4:14:
c4:3f:a5:61:7a:92:f0:bb:e4:43:21:60:13:18:e7:58:b6:e5:
19:92:91:93:ac:92:f9:a3:79:31:d7:79:6d:8b:6c:a6:cc:f2:
ac:6a:63:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 00:57:51 2025 by rpki-client