Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: bVMwfdVmfXteUm2BbudqcMx3hFhbeR3AhV0UCiwFVGQ=
Subject key identifier: EB:1B:B5:23:DF:1F:C3:2F:0A:4F:87:D5:61:01:7C:A3:59:71:6B:F3
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 0196C125FAA7FFEE9833091713D1619CFA98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 0A8E
Signing time: Sun 11 May 2025 21:00:13 +0000
Manifest this update: Sun 11 May 2025 21:00:13 +0000
Manifest next update: Mon 12 May 2025 21:00:13 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: 2oVi+NsZcUoY5x6wq/iKzHRucV0l2q9/s+0u0tFVMxw=)
2: YfAgsC_cdxTTdTc3lRuKLUA9Ek4.roa (hash: 6JxCw6QKy553BkYrq5SFqTFyUQePShSh+1QhYyHxmes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:25:fa:a7:ff:ee:98:33:09:17:13:d1:61:9c:fa:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: May 11 21:00:13 2025 GMT
Not After : May 12 21:00:13 2025 GMT
Subject: CN=eb1bb523df1fc32f0a4f87d561017ca359716bf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:d1:0e:58:45:8e:00:ab:cb:ed:87:13:40:d6:
c1:11:94:07:cb:8a:62:af:c3:6a:89:d3:60:e8:75:
5d:54:3e:8d:18:55:95:24:5a:2d:4e:7c:12:47:3d:
7c:eb:04:fb:9a:3c:b3:01:89:3e:a4:dc:34:94:8b:
89:5b:1c:92:50:59:65:c1:64:87:54:24:14:51:a0:
19:64:d4:5a:04:22:25:f2:6c:0f:4c:bf:89:c8:39:
6b:64:e6:01:8c:1a:f7:ef:db:05:7c:86:05:88:36:
f9:03:a4:b8:95:06:b0:6f:d6:14:b0:2d:2f:d7:cf:
27:ee:0f:0a:29:91:87:f3:d4:e0:73:c7:b0:da:ea:
3d:09:f3:da:0b:64:5b:68:49:bf:90:26:b6:40:e5:
ec:20:44:48:fd:bb:1a:37:99:93:00:3f:4e:e6:d9:
f5:de:46:22:62:f5:59:a2:a1:2b:de:50:10:a5:b1:
9c:4a:59:15:a4:54:cd:26:bd:15:f8:b6:32:70:c7:
3f:c0:dd:ac:d4:82:70:a4:db:46:87:46:c9:06:b4:
f1:64:5a:e2:f7:9b:d1:af:95:62:1e:30:34:9f:fe:
f1:99:e0:a7:76:30:10:e7:6a:f7:15:df:25:ca:45:
f6:c4:64:71:76:b9:99:29:3a:61:9f:51:fb:01:0f:
45:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:1B:B5:23:DF:1F:C3:2F:0A:4F:87:D5:61:01:7C:A3:59:71:6B:F3
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:b2:5f:96:9f:cd:51:31:d1:51:2c:e4:41:3c:07:0f:e0:c9:
e2:94:ce:90:79:c9:ee:cd:ac:d3:2a:56:37:bc:73:64:92:9c:
0e:d6:f4:ba:a5:23:bc:e9:94:88:d7:f1:e6:0f:ed:9c:85:78:
d0:4a:9d:fa:6a:f0:35:c1:7b:c9:af:c4:e3:72:1e:6f:eb:3f:
93:71:12:99:91:b8:a9:5d:32:cb:a7:4f:69:19:1c:b1:e2:8c:
ba:7b:2c:2f:50:0c:0b:7b:63:4a:cc:8e:33:c5:81:b7:6c:48:
3e:08:86:9a:75:43:ca:2a:0d:ce:44:f9:c6:10:ec:f5:0d:89:
e8:a3:b2:7d:7b:1a:2b:3a:bc:53:f3:a3:35:ad:e6:df:dc:55:
9b:06:3a:fe:fb:22:75:3d:26:d9:0c:d8:b9:56:ba:db:f3:cc:
9e:1b:9d:44:d3:47:a0:47:45:f1:be:0d:7a:0d:22:65:41:0e:
fb:55:b7:b4:3d:62:69:be:05:76:ca:2a:2a:68:17:bc:b4:b5:
62:aa:95:28:0f:8c:79:33:1f:21:00:fe:32:46:a8:85:77:fb:
68:0a:2a:d4:6a:39:58:3e:ba:4a:d1:9c:6b:c6:cd:53:18:6e:
e8:13:1d:e7:0b:ec:5d:8a:b7:a1:8a:76:75:a0:ea:71:5b:35:
22:1e:9a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:56:40 2025 by rpki-client