Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft
File: 2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft (raw, json)
Hash identifier: Pe0AmnHNl+zI2b+jmO3eVdlgR+2pkzvNyYb7JbVFs50=
Subject key identifier: 74:14:F9:6D:31:3E:67:B1:E6:C1:2F:CA:96:DE:89:54:6D:F4:7D:0F
Authority key identifier: D8:82:A1:97:34:0D:35:84:E6:AC:17:C1:FB:2A:99:00:AE:4F:60:3C
Certificate issuer: /CN=d882a197340d3584e6ac17c1fb2a9900ae4f603c
Certificate serial: 0196C94D617D688FD73F3B1FAA380D4C322C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft
Manifest number: 028B
Signing time: Tue 13 May 2025 11:00:13 +0000
Manifest this update: Tue 13 May 2025 11:00:13 +0000
Manifest next update: Wed 14 May 2025 11:00:13 +0000
Files and hashes: 1: 2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl (hash: saWU6c9+yEXeg8Mxz+Dn6jjiwrpELJheHQ0irnwwjWo=)
2: RFpSEEfmfhQM7TNBHUvPYNYCE48.roa (hash: iHrN3ygMDkDOsg7Lw4ctlZrjgMs+0h97Al7X6knMEEI=)
3: UkLoRo0mP_K3Dh8gkYYP1OxkE_I.roa (hash: Q3D4Rh06gP+xE8oXAtIwLH3P2XhdWnZQyb1Lpy85O7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 11:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:4d:61:7d:68:8f:d7:3f:3b:1f:aa:38:0d:4c:32:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d882a197340d3584e6ac17c1fb2a9900ae4f603c
Validity
Not Before: May 13 11:00:13 2025 GMT
Not After : May 14 11:00:13 2025 GMT
Subject: CN=7414f96d313e67b1e6c12fca96de89546df47d0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:82:c9:69:3a:8f:82:78:a6:63:31:55:1f:4b:
72:58:a3:15:a0:3d:ac:ad:d3:c1:28:75:ca:6e:3d:
50:5e:17:47:c3:8d:f9:e7:86:22:18:62:18:aa:39:
09:51:fd:0f:bc:d3:91:3b:c3:a6:2a:58:40:d2:44:
44:22:a5:23:6f:f5:aa:f9:fa:df:7a:ab:fd:0a:47:
30:88:aa:4a:ef:cf:9b:9a:24:da:7b:a3:93:ec:1e:
2f:4f:db:69:a1:40:5b:1e:46:8d:b9:89:6d:10:96:
d8:e0:ea:a2:fb:98:8a:05:b4:8f:be:a5:e4:54:2b:
ac:1b:f9:f7:ed:97:9c:57:a5:72:d6:7a:ee:66:bb:
71:c8:63:b0:c7:97:60:9d:fe:d4:be:56:c7:37:fd:
7e:06:9b:e7:46:81:5c:9f:37:2b:e6:b3:b0:a5:61:
48:cc:e1:a9:de:af:2d:03:4f:56:ea:89:e3:75:e9:
04:f6:d4:02:3b:31:36:e4:8a:2e:9a:62:d9:96:9f:
cb:ea:9f:b4:31:73:95:12:8e:7b:d3:ab:ce:11:dc:
d9:18:98:25:a9:4b:30:68:51:7e:36:a3:f6:26:82:
b3:b2:36:1f:3a:c3:0e:02:70:32:1f:ec:57:88:32:
0d:33:65:36:c0:ea:ae:6d:17:2c:8d:7d:1e:27:a2:
eb:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:14:F9:6D:31:3E:67:B1:E6:C1:2F:CA:96:DE:89:54:6D:F4:7D:0F
X509v3 Authority Key Identifier:
keyid:D8:82:A1:97:34:0D:35:84:E6:AC:17:C1:FB:2A:99:00:AE:4F:60:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IKhlzQNNYTmrBfB-yqZAK5PYDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/841c43-0269-4289-8fa5-b05ae5ca2d5e/1/2IKhlzQNNYTmrBfB-yqZAK5PYDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:62:d8:3f:54:62:bb:37:f9:d0:7b:3d:4d:26:3a:54:d1:a2:
aa:01:6f:31:e2:23:66:3f:e7:e4:9f:81:cf:6e:8b:84:62:c6:
f8:15:fe:77:7d:ba:9f:62:2a:40:e2:e3:de:6e:58:14:9b:73:
76:2d:41:2c:4b:d2:f8:87:27:8a:e9:e7:6a:da:06:92:49:25:
3b:5c:32:0c:34:ef:9c:fd:3d:6b:e0:79:e2:65:c8:ec:65:04:
ca:ac:90:37:90:7e:3c:fb:0f:94:06:c4:e4:b5:cd:a5:48:c7:
d4:c2:86:a7:c0:53:d9:cb:19:f6:13:44:6f:5c:27:3c:0c:48:
15:a5:34:68:dd:d9:94:fd:05:d2:c8:09:29:be:a5:2e:ef:aa:
76:7f:b7:3d:c1:6b:26:3d:d1:47:1c:28:e7:34:30:12:d2:3b:
03:50:39:e2:34:27:ab:77:f7:4b:71:66:d2:d6:52:d9:9e:cf:
a5:7b:c0:19:24:b8:93:b4:86:5d:e4:a4:da:35:02:cf:49:cf:
b4:ef:d8:a2:d0:48:47:d5:92:c1:22:f9:b8:bd:69:8d:38:88:
04:cc:b3:72:b2:78:3c:ae:00:9e:66:ce:3d:3a:4a:79:20:38:
a5:fe:5e:f4:29:ab:79:9b:5d:2c:1f:5d:65:b5:33:54:5d:72:
c0:7a:9b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 17:15:03 2025 by rpki-client