Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft
File: 2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft (raw, json)
Hash identifier: 9luvD8hbHtf3vYBgX7BVMqPtD2rSXmOEbG5VUa8hnIU=
Subject key identifier: 0D:D6:C4:C4:F3:0E:94:15:C8:79:63:5A:59:19:11:AA:AE:EF:70:97
Authority key identifier: D9:18:7C:9A:C1:0F:20:51:52:B1:28:EC:DC:21:57:C9:02:49:16:A4
Certificate issuer: /CN=d9187c9ac10f205152b128ecdc2157c9024916a4
Certificate serial: 0196A46581B6A6946F0E5BD6FBA77B964D8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft
Manifest number: 1525
Signing time: Tue 06 May 2025 07:00:37 +0000
Manifest this update: Tue 06 May 2025 07:00:37 +0000
Manifest next update: Wed 07 May 2025 07:00:37 +0000
Files and hashes: 1: 2Rh8msEPIFFSsSjs3CFXyQJJFqQ.crl (hash: jstreu/OyIlVe3hp31DthO9I7fRiLRDOyOfNHWoaSw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:65:81:b6:a6:94:6f:0e:5b:d6:fb:a7:7b:96:4d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9187c9ac10f205152b128ecdc2157c9024916a4
Validity
Not Before: May 6 07:00:37 2025 GMT
Not After : May 7 07:00:37 2025 GMT
Subject: CN=0dd6c4c4f30e9415c879635a591911aaaeef7097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e2:7d:c5:3d:6a:9b:99:86:12:6e:85:f2:0b:
09:d8:de:34:48:77:92:ac:7d:34:37:3b:a1:ca:fb:
23:4d:c4:61:a8:ab:f7:25:d5:11:bc:a2:a7:da:71:
c1:5e:4f:e9:99:f3:b9:09:46:f7:a6:a9:73:26:00:
2c:81:23:05:86:90:97:28:69:5e:fe:96:af:bb:54:
9b:7f:8e:ef:25:a1:27:88:67:94:21:59:7f:e0:c2:
19:e2:6c:59:c2:df:06:26:31:a2:4e:fa:ea:8e:cb:
77:4c:44:9b:b4:01:03:db:56:82:03:55:e2:33:ac:
e3:b1:ab:0d:4f:1c:c6:07:2d:40:c9:cb:b0:6d:ff:
ea:88:f6:15:91:b0:61:18:01:07:ef:84:a7:88:5b:
a6:49:75:a5:bd:a4:5d:a8:76:30:38:9e:59:7a:6f:
6f:aa:0a:88:07:71:09:8e:57:aa:7d:1d:de:cd:9a:
5f:6b:97:ff:75:cb:40:fe:6d:a3:05:ef:5a:3c:53:
46:5e:2b:09:07:48:e0:d4:f7:44:ae:e0:19:6e:bf:
63:a6:65:93:d1:cb:6c:66:7b:e8:a2:16:bf:d1:65:
af:f5:d2:4a:83:c7:da:5e:f6:36:e2:92:b7:b7:e0:
d4:b5:91:c0:20:12:9c:0d:39:5f:96:5a:ec:eb:8b:
be:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:D6:C4:C4:F3:0E:94:15:C8:79:63:5A:59:19:11:AA:AE:EF:70:97
X509v3 Authority Key Identifier:
keyid:D9:18:7C:9A:C1:0F:20:51:52:B1:28:EC:DC:21:57:C9:02:49:16:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:9c:0c:bb:b7:3c:d8:68:46:3e:8c:9d:24:f3:cf:4f:35:40:
df:f1:13:e3:09:3b:9d:55:1e:3b:59:16:53:b8:8d:ec:73:a2:
f4:08:89:d6:f4:98:84:a2:80:65:87:96:db:14:e4:51:37:67:
8d:ec:42:4a:31:b0:c6:62:ce:e2:b3:5e:16:34:3a:92:82:d4:
1b:7f:22:e8:a6:ef:b3:ba:cd:00:b0:16:c4:f2:10:90:70:ff:
84:3b:a1:11:67:94:58:74:9c:5c:9e:75:ae:af:26:02:ae:e8:
8a:b5:43:3b:9d:18:c3:b3:ec:66:cb:45:33:c5:78:be:a3:df:
67:1a:5d:28:3d:a4:5c:45:3f:09:7c:44:5c:e5:8d:21:63:ec:
b5:08:7c:2b:01:e0:f1:ec:91:dd:b5:21:bf:df:33:38:64:49:
74:3c:a1:58:c5:ef:68:a8:58:bc:50:b9:6d:ea:a7:d6:6e:e7:
9f:b2:83:6e:a9:20:a8:18:3c:1b:ce:dd:36:64:2f:2c:3b:6d:
c8:49:7c:fe:5e:19:60:0b:0c:bf:20:39:94:64:c6:59:35:1c:
7b:51:5b:f3:c2:de:8d:46:a9:2e:07:3a:ce:a3:7c:2e:1b:00:
72:b5:40:67:97:3c:07:c8:9c:a5:0e:71:60:1f:a2:27:98:23:
a3:91:17:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 10:18:19 2025 by rpki-client