Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft
File: 2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft (raw, json)
Hash identifier: SPo1TYcdy/BAI3dO+Gc1apBHJv7PyEp0ab+W7GLpPlQ=
Subject key identifier: 66:4D:C5:16:7C:FD:9E:92:0F:1A:D0:B8:13:45:CC:B7:A6:72:25:85
Authority key identifier: D8:9B:44:E2:C0:57:F0:1A:99:26:1F:94:BB:F6:DA:1B:F1:86:5F:39
Certificate issuer: /CN=d89b44e2c057f01a99261f94bbf6da1bf1865f39
Certificate serial: 0196C3149631580B06247AA816B5E4A90C43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JtE4sBX8BqZJh-Uu_baG_GGXzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft
Manifest number: 0A9D
Signing time: Mon 12 May 2025 06:00:28 +0000
Manifest this update: Mon 12 May 2025 06:00:28 +0000
Manifest next update: Tue 13 May 2025 06:00:28 +0000
Files and hashes: 1: 2JtE4sBX8BqZJh-Uu_baG_GGXzk.crl (hash: bf9pZ8WJUv2Z4LTlfF7pp9HCBF9miPpEO+gfCGKR2D4=)
2: pEoCff1DtYoEMHzC9EANzQRBsC8.roa (hash: +m2VMtZgdFPS2/0zJPg1ZLBtRhUd6KXSgxAw6jiEMMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2JtE4sBX8BqZJh-Uu_baG_GGXzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:14:96:31:58:0b:06:24:7a:a8:16:b5:e4:a9:0c:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89b44e2c057f01a99261f94bbf6da1bf1865f39
Validity
Not Before: May 12 06:00:28 2025 GMT
Not After : May 13 06:00:28 2025 GMT
Subject: CN=664dc5167cfd9e920f1ad0b81345ccb7a6722585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c6:ad:24:bf:79:01:a8:8e:f0:78:31:6a:53:
89:db:09:57:0e:1b:03:bb:02:25:e0:00:83:29:f2:
41:ba:dd:1a:8e:1a:fa:72:5c:35:9e:97:e3:cd:1c:
cb:69:7c:62:e3:c7:72:78:c9:54:17:76:54:72:3b:
9b:cb:f6:07:9b:7f:9f:28:58:9e:82:02:dd:88:9c:
db:9b:39:64:25:ee:0b:72:55:47:f3:8e:fd:ff:de:
f0:26:81:3c:f9:5f:dc:55:d0:99:11:bd:43:88:04:
17:17:ef:f8:c1:a8:40:68:e6:71:a4:bd:5f:2a:e2:
b8:1f:0d:da:65:41:44:9e:85:ea:86:96:f6:1e:55:
42:87:f2:a2:8f:54:80:a4:03:8c:1a:b6:64:32:5a:
27:ef:4f:52:c1:cd:c9:3f:8e:16:00:82:8a:dc:4b:
d4:ef:19:99:6c:61:39:0f:eb:18:76:16:66:3f:b3:
71:7f:bf:31:09:20:c7:eb:9d:29:23:e6:a6:36:02:
93:07:07:60:3e:87:20:52:66:ac:f9:55:be:27:3d:
75:d1:b9:ff:79:73:e2:8d:7c:3b:a7:c9:3b:d6:11:
01:23:99:b1:3d:90:f1:44:c9:b2:ff:55:f1:88:e1:
02:91:f8:77:f6:f8:3d:ab:2f:26:5c:6a:19:43:95:
dd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:4D:C5:16:7C:FD:9E:92:0F:1A:D0:B8:13:45:CC:B7:A6:72:25:85
X509v3 Authority Key Identifier:
keyid:D8:9B:44:E2:C0:57:F0:1A:99:26:1F:94:BB:F6:DA:1B:F1:86:5F:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JtE4sBX8BqZJh-Uu_baG_GGXzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:36:fb:5a:e7:8a:92:7a:d4:48:e9:8e:24:a2:bc:a6:5a:d5:
39:c2:c7:dd:c1:bf:ea:57:4c:9f:b4:5b:ca:73:82:e1:bf:bc:
e8:65:11:67:22:25:7a:e7:73:8e:ef:3e:f9:36:89:b0:e8:8e:
be:84:46:e0:43:39:07:ac:46:e5:44:af:7f:2e:5a:4c:5b:3d:
9f:a1:b4:9a:f7:a1:11:05:3d:68:ef:fd:61:09:55:9b:79:84:
78:04:a0:85:66:8c:77:89:cb:f8:24:fa:19:b4:a5:b1:f3:5f:
a8:ed:6c:80:16:6d:4d:49:ac:19:88:12:38:1d:01:e8:3b:96:
08:bf:ff:b9:d8:d4:96:89:af:4c:b8:c0:0a:ab:15:3a:c3:28:
86:cc:6c:2d:ab:f6:f1:b3:f2:f1:e6:2e:f8:7b:27:04:72:ad:
de:19:49:9b:96:88:83:37:28:fd:12:eb:24:4b:c9:04:73:62:
a1:51:d6:fb:46:b6:7c:f7:fa:a0:7b:43:86:dc:c7:1e:7c:c2:
68:a4:68:a0:19:89:bd:53:e1:c2:24:20:f2:f2:ad:88:08:4b:
d3:f6:15:54:a2:07:cb:67:1f:8d:66:21:47:18:49:17:10:24:
96:e3:a0:f9:cd:64:3b:d2:2a:23:fc:37:fe:92:74:67:f6:72:
27:d2:23:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:40:11 2025 by rpki-client