Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
File: 2f-H9S43t2bsv0s_nLJlWN0wiCA.mft (raw, json)
Hash identifier: lz6+UrREwdB5jwGdx0gmGcXgyBkXMG8ieahzwSk0Eq8=
Subject key identifier: FC:EC:71:60:64:BC:88:B6:95:70:3D:7E:32:DF:DA:CE:97:02:39:08
Authority key identifier: D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
Certificate issuer: /CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Certificate serial: 0196A76647343207780BD00A6711EDCFBA99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
Manifest number: 0AF7
Signing time: Tue 06 May 2025 21:00:20 +0000
Manifest this update: Tue 06 May 2025 21:00:20 +0000
Manifest next update: Wed 07 May 2025 21:00:20 +0000
Files and hashes: 1: 2f-H9S43t2bsv0s_nLJlWN0wiCA.crl (hash: fGkak3wjg5eCYgNfRGBpsMW53yip5NV6DznEhdiHf60=)
2: nyss7FejNtDGTUXRBz8EpK-bUtQ.roa (hash: 1YbJTbv2jhWedSFo8tfV4w9Efzyk/as9DY0FQwn+kas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 14:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a7:66:47:34:32:07:78:0b:d0:0a:67:11:ed:cf:ba:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Validity
Not Before: May 6 21:00:20 2025 GMT
Not After : May 7 21:00:20 2025 GMT
Subject: CN=fcec716064bc88b695703d7e32dfdace97023908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:20:b1:38:84:78:22:5f:8c:3d:3c:6d:c5:f9:
66:56:04:bc:f7:b1:bb:24:9b:14:20:b9:be:4d:cb:
b0:c0:8e:b7:c4:11:8e:0a:4e:82:ae:87:e8:7f:ef:
4e:e7:63:ca:eb:b1:fc:a4:6b:23:14:8b:e7:92:bf:
c1:a1:64:8e:f2:cc:9d:e1:1c:fc:1b:31:bb:53:68:
fa:19:52:a2:b1:2a:bf:5b:05:20:81:fe:b1:0f:4d:
f7:5b:69:68:2b:43:3e:d6:24:03:b5:4b:41:40:34:
ef:57:85:f3:0e:80:77:f6:53:ca:6a:48:3b:c4:cd:
d1:73:e5:fe:77:b1:db:f8:29:b7:d1:5f:1c:84:9f:
0e:70:e0:ce:f1:a5:50:4b:27:77:b0:46:51:32:ce:
d5:fc:62:84:c4:e5:fc:99:88:af:3d:b0:5d:eb:9b:
06:32:12:db:68:e8:a0:8a:dc:77:17:0a:60:3f:0b:
6a:32:8c:99:ac:07:5f:e1:6c:5e:fc:f1:7f:6e:84:
ae:ce:76:aa:f0:bf:de:66:fe:6d:f4:a7:02:0e:5b:
3e:78:56:a1:c6:f4:3c:22:7e:eb:42:93:cb:c7:f9:
66:ad:cb:aa:1f:23:bf:c5:0b:f6:0e:c6:13:3e:2d:
09:37:75:1f:78:69:76:a9:7d:f9:9b:3b:67:da:26:
6d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:EC:71:60:64:BC:88:B6:95:70:3D:7E:32:DF:DA:CE:97:02:39:08
X509v3 Authority Key Identifier:
keyid:D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:e7:26:97:c0:c0:02:1e:40:64:be:0a:83:49:6c:4d:f7:52:
38:f5:d3:33:ad:26:31:9c:9d:7f:ef:28:2b:42:53:b4:67:3d:
42:db:52:4b:a8:87:de:4c:88:32:43:c6:51:82:1b:de:b0:5d:
1e:9c:6f:ca:c6:05:7f:94:a7:35:fb:ab:57:9f:d1:49:9a:b4:
05:21:0b:54:81:5e:e8:a5:fd:05:57:f8:2e:93:6c:09:54:26:
5c:14:9a:ef:c1:d9:79:a0:ef:a9:a8:1c:85:bb:d9:ca:4f:40:
b2:9b:36:0e:9d:64:48:1e:f9:dd:49:27:54:b1:6e:d4:92:99:
be:16:23:5f:19:e4:b5:d0:1d:20:a2:de:1c:5d:07:26:01:55:
ff:19:4b:9f:0b:52:12:a9:9e:e8:36:59:9e:43:3c:56:6b:42:
ea:cd:98:f6:11:11:7e:f5:97:69:6a:09:cc:79:b3:ea:c8:64:
ed:f7:02:74:79:63:13:89:df:d3:ef:95:fa:7e:e3:ff:61:88:
09:d9:5c:46:c6:e0:11:0c:6c:88:7d:2c:53:a8:dc:48:20:9b:
05:81:f4:b1:5a:f8:db:7a:88:db:40:2f:cb:14:f0:f2:e2:87:
bf:85:c3:25:b5:a8:62:9c:66:e5:9a:fb:ea:a1:77:30:69:92:
f8:3d:d6:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 23:54:16 2025 by rpki-client