Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
File: 0-2n3wX226CeOefUvex7rg7_urA.mft (raw, json)
Hash identifier: 0XIU9Iz7+Fkt7CT3xlLQIyeoDCcKuMu5bE8ns969TEw=
Subject key identifier: D2:36:0B:0C:88:9A:06:26:CE:B6:76:FA:DD:17:89:F0:A0:78:36:54
Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Certificate serial: 0196AEE90C72F488DCD9AA6133F969BA2CB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
Manifest number: 0235
Signing time: Thu 08 May 2025 08:00:30 +0000
Manifest this update: Thu 08 May 2025 08:00:30 +0000
Manifest next update: Fri 09 May 2025 08:00:30 +0000
Files and hashes: 1: 0-2n3wX226CeOefUvex7rg7_urA.crl (hash: Lsjhn4efFkNzP1naCGBCafNT5GZWyn3xm13goFe6jQ4=)
2: mFUkKUV2j8Fct1DGbVQJTzcA0ig.roa (hash: bNr/zF64vk+SVTrKPbIdCfqu6Sowa5lS9V4LG/Ns2g0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:e9:0c:72:f4:88:dc:d9:aa:61:33:f9:69:ba:2c:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Validity
Not Before: May 8 08:00:30 2025 GMT
Not After : May 9 08:00:30 2025 GMT
Subject: CN=d2360b0c889a0626ceb676fadd1789f0a0783654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:34:51:11:5b:cd:1b:31:a2:a5:ae:bf:ef:60:
5a:16:16:15:05:9a:d8:15:23:fa:27:0e:02:a0:35:
49:3e:9d:5e:ee:5c:54:4b:4f:26:2e:e6:88:cc:ca:
65:8b:72:e9:a6:7a:da:ea:7a:e3:e7:11:fd:44:2b:
15:8d:fd:05:db:43:a5:59:8e:67:6f:2a:b4:29:b8:
dc:23:06:27:96:d5:73:de:1e:08:7e:24:80:a9:6d:
66:27:56:1d:62:cb:18:53:fc:61:a2:ee:d6:4b:97:
e1:25:d8:91:a3:cf:da:8c:f1:e1:04:3a:5d:67:a4:
48:2c:83:58:32:bc:5a:40:00:4e:a6:2f:5a:7f:12:
de:18:68:1f:48:b0:72:b2:9f:8f:a9:44:d9:d6:d6:
1b:ef:4c:f5:65:e1:56:41:b4:40:7d:af:af:2f:42:
f5:31:c8:82:f0:75:5c:ad:50:fa:5a:54:1a:83:ec:
a7:6f:85:06:96:f2:bb:4a:0d:4d:58:99:cc:5f:f4:
98:66:67:43:a2:ae:75:81:96:ae:57:58:3e:fc:80:
35:f0:64:f2:9c:ae:0c:4a:06:fc:16:80:4a:e7:e0:
89:99:26:15:dd:ad:fb:89:08:a5:b7:91:8f:a5:3e:
5d:51:03:4e:24:48:72:7e:e4:fe:ed:af:46:8c:1f:
81:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:36:0B:0C:88:9A:06:26:CE:B6:76:FA:DD:17:89:F0:A0:78:36:54
X509v3 Authority Key Identifier:
keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:cf:fe:3d:7e:63:e7:46:98:c5:81:a5:a8:64:c8:56:88:e8:
c8:9f:03:93:66:4f:2e:ac:17:09:87:dd:f7:d8:aa:68:ec:a9:
62:3c:2b:45:4e:4b:98:36:87:2d:a4:e7:fb:b2:b3:04:24:c8:
65:be:71:1b:68:e1:a7:f0:db:c3:bb:29:24:99:d0:09:2e:2f:
c2:a8:23:23:6d:58:85:a6:4c:6c:7e:22:d0:c6:2c:51:bf:31:
35:65:df:05:74:66:e8:ea:15:ba:a5:08:b4:1a:c2:74:ea:d1:
ae:bc:3c:8e:8b:32:af:85:05:5a:82:b9:ad:b2:0b:5b:78:21:
62:4d:08:49:c3:d5:02:65:56:48:61:23:bd:4e:fb:07:51:33:
d1:f5:c5:5c:d1:b5:e8:c6:c6:bb:6d:dd:a4:81:d7:99:fd:21:
94:37:9f:d3:d9:69:d1:a2:d7:47:7c:45:20:21:e8:4d:2d:9e:
22:35:68:d6:f5:34:d3:bc:f3:e4:6c:06:49:f8:d0:eb:b5:47:
74:f0:e3:3b:98:7a:ba:f0:7f:8d:f6:fd:3b:d9:3d:ff:13:1a:
b3:2d:a1:6d:56:58:02:66:0a:c0:6e:b7:c0:58:7b:ef:a3:c6:
a2:4a:db:a6:62:f6:97:f3:fa:5b:64:c2:76:cc:fc:5f:af:b1:
d1:a7:95:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 09:56:23 2025 by rpki-client