Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
File: 2jQhazvZIbbGYYeoyGpKS7DuUj8.mft (raw, json)
Hash identifier: XlSmMDalJ/OMLRwS5d6MCi28MML/tBb0aI2DkGbWDRE=
Subject key identifier: F4:AE:E8:C1:1A:26:14:ED:9B:BB:A5:3A:3E:7A:9D:D7:2D:20:44:4D
Authority key identifier: DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F
Certificate issuer: /CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f
Certificate serial: 0196B069EB54A08079F8B8C6DDDD71D6F5DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
Manifest number: 1234
Signing time: Thu 08 May 2025 15:00:53 +0000
Manifest this update: Thu 08 May 2025 15:00:53 +0000
Manifest next update: Fri 09 May 2025 15:00:53 +0000
Files and hashes: 1: 2jQhazvZIbbGYYeoyGpKS7DuUj8.crl (hash: BhzL20Fc3OTOxlf0vDJX7e1qbWhoicnwVyfuMBeIRGg=)
2: y-rAx3x5ggb3kBBIMyQl2KhriYw.roa (hash: j/sr0gEHuELryIqb8wmwmOpvCJwyct02mKuP2NU5Abs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b0:69:eb:54:a0:80:79:f8:b8:c6:dd:dd:71:d6:f5:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f
Validity
Not Before: May 8 15:00:53 2025 GMT
Not After : May 9 15:00:53 2025 GMT
Subject: CN=f4aee8c11a2614ed9bbba53a3e7a9dd72d20444d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:64:1e:89:6b:4d:c1:88:c0:dc:49:37:81:cf:
54:c4:cb:14:f2:a7:94:15:3d:57:42:b7:79:93:df:
18:9c:68:85:70:25:2f:ff:28:ab:c0:84:c2:c9:c0:
8d:37:52:53:f7:e4:f5:f8:5f:66:71:34:01:32:41:
b3:9b:b6:a2:09:00:f3:cb:32:16:90:51:a6:de:ec:
50:42:ba:ca:9e:5b:2c:8f:f7:b2:66:4e:18:98:c8:
69:a5:4a:4e:81:6e:86:b0:5d:eb:b1:df:7c:49:16:
39:21:c1:cf:72:b3:63:68:87:5b:55:e8:f6:ad:95:
78:b1:a8:06:8c:11:9b:29:76:82:65:c1:dd:37:03:
c4:bb:8f:88:5d:93:af:aa:88:71:44:41:b0:e4:ac:
e6:2e:58:be:e6:e9:31:bc:b0:ee:9d:89:e6:eb:28:
72:2a:03:6e:53:5d:7f:cd:a8:aa:82:57:38:71:ab:
e9:0c:a5:c6:20:5f:8d:77:ce:83:ff:f5:87:72:e0:
3b:f9:76:8d:f2:25:56:a8:cc:df:23:d5:50:bc:b9:
2f:54:4c:2d:90:e8:6b:1d:40:9b:4d:d2:72:c2:3e:
cf:65:27:6c:a4:cc:93:65:72:cb:c6:02:6e:7a:7a:
06:19:63:9e:e2:3b:53:c1:8e:27:fd:88:65:57:e5:
f2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:AE:E8:C1:1A:26:14:ED:9B:BB:A5:3A:3E:7A:9D:D7:2D:20:44:4D
X509v3 Authority Key Identifier:
keyid:DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:c7:01:5f:92:f8:59:a6:32:8e:20:dd:c8:9d:eb:04:d3:e5:
f2:21:47:e8:2c:e9:1e:8d:de:1b:1b:9c:3d:14:65:9b:0f:e1:
3e:4b:49:bb:d3:8c:a7:fc:ce:1f:c5:41:88:c3:49:f3:d2:ad:
e6:bd:58:bb:8d:78:97:a2:01:5d:85:f7:7e:5b:86:59:8e:17:
6b:d4:12:2b:33:a8:33:36:40:25:af:75:e4:5d:13:61:95:fd:
48:0e:76:de:bc:ea:78:d3:c2:dc:40:e0:60:3c:4d:09:02:c4:
0c:d8:96:c2:02:18:40:19:81:7a:85:e4:bd:ad:5e:b9:af:c0:
84:66:90:87:ef:6c:1f:06:a7:f4:cf:04:a5:61:3d:72:e0:f4:
80:3e:92:71:f8:8e:fc:e8:91:3a:2d:1f:33:d3:99:51:10:2a:
7a:10:9c:cb:29:cd:65:e0:8a:3f:75:cd:ad:10:db:80:94:65:
d3:0d:11:ed:19:b6:eb:99:ff:28:16:57:e0:59:dc:d6:52:d9:
36:be:d0:a3:9a:59:c4:16:e8:85:f9:4e:c6:35:6a:20:59:91:
78:9f:25:86:b8:9c:a0:88:43:c2:f0:e6:0e:7f:f2:eb:b0:01:
8c:a0:16:a0:27:4a:4e:90:ba:62:62:16:49:a8:a3:03:a7:46:
ac:41:ee:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 20:37:00 2025 by rpki-client