Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
File: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft (raw, json)
Hash identifier: SNr7odtLIYIc06zf038ZNSD5oZIx/0EJdKkq9zoCTNQ=
Subject key identifier: BF:06:AD:62:4C:9B:6E:D3:3F:16:A4:F8:D6:8D:BC:83:17:95:FA:41
Authority key identifier: D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
Certificate issuer: /CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Certificate serial: 01969ED10F65E4FF676D786E9AA76D1C4FFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
Manifest number: 1268
Signing time: Mon 05 May 2025 05:00:23 +0000
Manifest this update: Mon 05 May 2025 05:00:23 +0000
Manifest next update: Tue 06 May 2025 05:00:23 +0000
Files and hashes: 1: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl (hash: m7rsGVjocYhxxHFkJtfsbXPcE6h0cGj2KeMQD0a65AI=)
2: 5tz1cuLC3Spal7LSIEjI-Qlcl6U.roa (hash: XSoR4/ODhnGd0USG7NRxHx6V9kNwJuT3OUfa19EcNCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:d1:0f:65:e4:ff:67:6d:78:6e:9a:a7:6d:1c:4f:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Validity
Not Before: May 5 05:00:23 2025 GMT
Not After : May 6 05:00:23 2025 GMT
Subject: CN=bf06ad624c9b6ed33f16a4f8d68dbc831795fa41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:23:bd:c7:b8:47:0f:9f:31:de:9d:e3:b6:23:
ce:b6:87:35:3f:a7:50:8a:4c:68:15:01:be:50:28:
95:69:5f:24:27:e0:3b:4c:7b:c3:9d:62:a9:51:36:
c8:dd:85:c1:21:36:86:a0:ea:29:8c:4a:e8:23:f4:
1d:0e:51:6b:5a:77:cb:c6:fa:cf:8e:c9:99:e5:8a:
63:bd:09:9e:0e:c4:51:23:62:fe:78:f5:83:72:34:
60:a4:28:62:94:8a:53:46:83:e1:f9:49:45:cc:c0:
9b:5f:b7:d3:7d:a1:5a:eb:ee:c7:b9:69:76:d5:6f:
fa:72:20:09:7f:b9:0f:a7:47:12:62:2b:5a:3a:41:
e8:57:0b:be:89:a4:94:cb:9f:7b:bd:23:14:f3:cd:
28:8c:eb:94:b7:20:36:c5:30:72:9a:bc:32:a7:e7:
53:6f:88:ca:85:50:f3:41:91:a4:23:75:70:65:33:
6a:76:cd:b4:96:92:c0:de:2f:97:4b:9a:11:cd:f4:
88:b2:89:97:5a:0b:00:82:bb:45:cd:b0:d4:33:d1:
04:f6:b0:1d:a1:19:f3:04:b2:0e:87:70:a0:d9:61:
56:61:7d:2a:e5:ed:99:0e:5c:c2:2b:42:33:fa:a5:
18:8b:4a:9f:ab:86:4a:51:ff:45:11:f5:e7:ab:0d:
71:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:06:AD:62:4C:9B:6E:D3:3F:16:A4:F8:D6:8D:BC:83:17:95:FA:41
X509v3 Authority Key Identifier:
keyid:D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:c2:fc:fe:8e:27:64:cc:b3:09:19:ac:e2:b1:17:71:08:ae:
eb:b8:fe:bd:de:14:6c:f2:01:57:c7:fc:ca:78:ab:4d:57:59:
c5:19:74:bb:ad:c7:2c:5d:87:d4:9c:1e:dd:7b:42:1b:9b:2b:
ec:28:51:4b:28:d0:27:e9:5a:b1:a2:d8:9f:fc:9a:37:09:ed:
69:dd:f0:a3:3f:5b:01:06:6c:54:12:7e:80:df:ea:7c:6c:18:
09:f1:8d:e3:f4:f0:7a:14:f0:7f:90:dc:db:88:42:b7:73:a8:
ff:8a:62:e3:f6:99:dd:b5:fe:26:69:ed:5d:54:96:6e:71:9c:
a2:45:3b:b1:75:f8:86:20:d1:ea:a5:5d:62:09:a4:03:b9:47:
8f:18:6a:e7:7f:89:6d:50:f7:bf:a5:e9:de:0f:55:22:59:2e:
9c:29:62:d1:98:9a:14:b3:6f:e1:6f:95:ce:d7:62:1b:da:64:
66:6e:02:85:a6:6b:8e:98:03:52:a3:b7:18:e0:20:35:ab:f2:
2d:ff:ad:93:23:d4:1a:42:0e:fc:da:01:d3:55:d3:7e:58:67:
cd:82:59:99:26:3b:cb:c9:ec:28:8b:f5:4d:d9:ca:50:04:55:
b7:54:15:28:d8:bf:fd:5e:7f:76:18:25:74:35:45:3b:74:86:
96:00:2b:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 15:04:16 2025 by rpki-client