Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: CjR9f4s0xCmt/78616uApaPRjrjF68jDLuOu9b1RVAg=
Subject key identifier: AE:B8:3E:72:B6:43:42:98:EB:95:11:AB:DF:91:BA:90:F8:CA:D6:95
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 0196BA11A0CFBF81B48F918C9A95BB6313DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 01E0
Signing time: Sat 10 May 2025 12:00:39 +0000
Manifest this update: Sat 10 May 2025 12:00:39 +0000
Manifest next update: Sun 11 May 2025 12:00:39 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: AY72y16AHUyCX+B9uLJTgt4LUmEw1XIXMMqdR7yc5OQ=)
2: S9_pIBHq75Wq7oGW-jAli5gxMaE.roa (hash: cpq5fUvjVAhKKLO06wh9HRGgk0x/xpun3Cli9g36l8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 12:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:11:a0:cf:bf:81:b4:8f:91:8c:9a:95:bb:63:13:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: May 10 12:00:39 2025 GMT
Not After : May 11 12:00:39 2025 GMT
Subject: CN=aeb83e72b6434298eb9511abdf91ba90f8cad695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:fe:96:4c:a5:f7:5b:72:8d:de:df:e3:f3:d0:
48:e1:e1:90:bf:92:1d:57:af:2b:48:46:e6:db:be:
19:bb:f0:08:67:96:e4:09:f8:c9:67:f7:09:b3:40:
52:56:7a:8f:2f:b1:53:88:17:03:71:7a:97:f3:a6:
85:8a:7a:24:d4:da:cb:52:a6:15:f7:28:8a:d0:c1:
56:d6:da:1c:26:78:04:e6:f4:17:05:d4:50:e9:ad:
a8:c8:95:db:d2:1e:cd:a0:d7:25:4d:76:b7:44:77:
16:c4:50:78:ea:29:e6:59:ea:63:6c:57:88:24:c7:
08:62:9d:14:c4:7d:4f:70:d7:c2:4e:c5:70:47:2d:
76:43:fb:38:84:2a:63:ca:f5:22:6a:d2:6d:5c:7b:
85:48:7c:62:7f:53:dd:52:2a:21:04:b5:21:5b:84:
0f:12:a1:68:7f:ce:10:46:34:86:dc:cc:40:26:bb:
2c:c3:eb:7c:b0:7b:e0:57:50:7f:bb:22:18:80:ee:
f1:e8:84:22:ca:79:c5:5b:80:11:c3:76:84:9b:ac:
3c:bf:73:12:d8:41:59:21:93:df:76:81:0c:22:57:
f9:72:b4:4c:7f:54:46:0f:b5:48:47:d1:8e:85:33:
a4:e1:3f:3a:9a:2b:af:32:92:94:97:6c:ed:c0:6e:
49:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:B8:3E:72:B6:43:42:98:EB:95:11:AB:DF:91:BA:90:F8:CA:D6:95
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:f6:ce:a6:78:ff:d9:93:a1:fc:b6:08:96:6c:7c:40:ab:90:
07:8d:d3:b8:dc:5c:eb:23:ac:a5:ce:2b:d4:a3:68:08:74:bc:
01:62:be:ec:eb:b4:71:00:1d:11:14:88:f3:f7:a3:02:8c:bb:
06:46:70:eb:f2:69:e2:89:dd:4c:9f:90:85:fb:ea:94:36:e6:
91:2b:b1:5a:bb:15:8c:c5:db:d6:a1:bd:9d:42:98:a3:23:65:
f4:0c:f3:95:c2:ad:c5:80:7c:4a:9e:a4:56:1a:f0:2f:f2:37:
43:9c:bf:79:5c:1d:03:b6:f8:7b:19:c7:48:6c:cc:4d:ef:d5:
09:1c:e0:26:fd:30:c9:e0:ed:d1:51:37:ba:e1:3c:ae:a2:4c:
bd:8b:63:45:c7:ab:66:76:e7:81:29:f7:23:8a:18:6e:00:6d:
1c:6c:21:16:e4:c5:ab:16:fc:5d:9b:fc:49:72:85:6b:5d:c3:
c1:85:64:a1:26:af:26:5e:3b:c6:8d:ca:1d:f1:e0:e3:f3:9c:
f6:70:17:76:27:23:ee:a6:58:21:30:6d:11:68:1d:b9:b2:f1:
ca:d4:42:bc:5c:dd:8e:13:84:e4:96:cd:31:b9:62:8e:03:05:
fe:16:c3:35:b5:61:1d:d5:a0:9a:76:ac:bf:70:13:6d:e6:83:
79:5e:b3:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 18:44:31 2025 by rpki-client