Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
File: 2m3EGSZFyEKk-i-II08uWhhMdmQ.mft (raw, json)
Hash identifier: nmew7PfeWGohAe60mb7/zx1/b0fqoLnnBxDV2DLPAzM=
Subject key identifier: FE:D7:CA:78:52:2D:18:DA:38:80:6D:E2:25:09:61:FD:C0:48:92:85
Authority key identifier: DA:6D:C4:19:26:45:C8:42:A4:FA:2F:88:23:4F:2E:5A:18:4C:76:64
Certificate issuer: /CN=da6dc4192645c842a4fa2f88234f2e5a184c7664
Certificate serial: 01969E6347DC03FDEBF9746925F7AC57EA37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
Manifest number: 0681
Signing time: Mon 05 May 2025 03:00:28 +0000
Manifest this update: Mon 05 May 2025 03:00:28 +0000
Manifest next update: Tue 06 May 2025 03:00:28 +0000
Files and hashes: 1: 2m3EGSZFyEKk-i-II08uWhhMdmQ.crl (hash: tOPYVpEHmShVyeGxIYs93BBOgyrdGgg4Z66GMGZXK8E=)
2: JwOlXzHs1rdGVXlkVOqZWuxz-yI.roa (hash: PGrtrfZNHqKpdplaHtlzlb/8zTI8cEQQrTdbVPKqLz0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:63:47:dc:03:fd:eb:f9:74:69:25:f7:ac:57:ea:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da6dc4192645c842a4fa2f88234f2e5a184c7664
Validity
Not Before: May 5 03:00:28 2025 GMT
Not After : May 6 03:00:28 2025 GMT
Subject: CN=fed7ca78522d18da38806de2250961fdc0489285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:87:6c:c0:79:de:b7:9f:68:94:5a:8e:ab:9d:
4d:4f:85:47:2b:43:3a:43:c0:75:dc:db:8b:05:1b:
da:91:76:14:00:ec:3e:c8:f0:f5:9c:0a:12:0b:48:
4b:eb:02:a8:91:20:58:92:28:03:a2:4b:af:c9:1c:
a3:26:47:4b:58:21:03:3d:88:02:22:bc:b9:91:0a:
3f:9a:69:24:e2:5b:fd:f9:61:6d:83:3d:a9:24:29:
b5:4f:ea:48:ac:38:b2:e0:19:1a:a7:64:ad:a5:07:
a1:43:48:ba:08:fa:96:4b:f9:d5:c8:a4:40:8c:4e:
95:c9:17:8e:6f:3e:1d:ac:45:4b:43:a2:26:6f:cf:
f5:cf:9f:21:d7:81:d3:3c:5a:70:97:e8:b6:65:6a:
56:47:97:36:2b:82:2c:a9:07:33:09:eb:b6:92:ac:
c7:f1:a8:a3:05:29:ff:f1:3b:a9:08:cb:c5:89:32:
8f:b5:72:01:b8:31:b6:a0:1d:8d:60:e4:7a:5f:dd:
37:d8:27:01:1e:e3:e3:2b:9f:bd:21:6c:b7:b1:3d:
6a:11:6f:92:50:af:dc:07:ce:2c:7a:70:63:9b:77:
10:89:24:e5:36:67:d9:19:3e:77:44:be:fc:33:a0:
26:4b:8a:5d:9a:bf:51:91:7b:a6:8f:9f:be:f9:72:
61:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D7:CA:78:52:2D:18:DA:38:80:6D:E2:25:09:61:FD:C0:48:92:85
X509v3 Authority Key Identifier:
keyid:DA:6D:C4:19:26:45:C8:42:A4:FA:2F:88:23:4F:2E:5A:18:4C:76:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:3c:8b:0d:fb:95:9c:ce:0a:9b:95:e3:01:a4:5d:f0:1c:d1:
1b:c3:54:07:68:b9:84:93:de:a0:9e:40:ab:5c:df:40:e2:1b:
17:df:4f:f0:b8:9c:03:64:dc:2d:c1:ed:43:5c:ce:7f:3f:20:
87:a7:22:bb:ff:14:81:5f:43:bd:50:20:d1:af:44:76:cc:8a:
ee:62:1f:87:2e:14:1b:47:90:f1:6a:6d:2d:19:61:85:d0:4f:
97:30:bf:8f:ac:fd:13:04:6e:f7:cc:cb:98:68:10:19:aa:28:
ca:73:c2:fb:83:bd:73:34:5e:1d:f7:88:9c:bc:ad:7a:9e:a3:
d5:15:da:1f:58:3e:61:df:bc:48:e7:44:3f:fc:77:df:b4:ac:
ac:ca:19:de:65:8f:e7:c6:66:22:1a:c0:fe:3b:73:8b:35:3c:
70:3b:9c:e1:13:c4:1c:52:20:24:2e:cf:1e:a4:33:9b:21:cb:
35:5f:4e:3e:c0:8e:3c:78:1b:3f:6d:5e:af:0b:2d:54:11:89:
26:0c:82:dd:42:fa:b2:01:9f:e2:e7:de:b9:b0:8d:74:c2:54:
ac:32:8e:4d:4b:59:46:b5:77:c9:cc:a0:22:b7:14:b8:c0:3b:
a1:89:24:6c:9b:ce:09:3b:cf:ec:45:76:b4:e4:5c:e2:c2:45:
b5:ae:5f:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 06:18:59 2025 by rpki-client