Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
File: 2DLajUWISdX0C6bwuSCPhYXZ4j4.mft (raw, json)
Hash identifier: 64Cg2pUInWU1uIcuMGP/qIhNMI5eSKLtM5wp1gppQWs=
Subject key identifier: 7E:6E:8C:CE:49:90:81:72:C4:29:36:36:96:D0:DC:6F:1C:47:D9:2E
Authority key identifier: D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
Certificate issuer: /CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Certificate serial: 01969DF603628C928843FF3D74E752345FAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
Manifest number: 1523
Signing time: Mon 05 May 2025 01:01:07 +0000
Manifest this update: Mon 05 May 2025 01:01:07 +0000
Manifest next update: Tue 06 May 2025 01:01:07 +0000
Files and hashes: 1: 0LdCYiyoo_rQZDLAQK9EXmWdrLs.roa (hash: ii+DUPaWPj2PKPLgx9rgU4vJhM6MjQajOc4FBEHl1O8=)
2: 2DLajUWISdX0C6bwuSCPhYXZ4j4.crl (hash: XoJnnbbvydLTsFBAvEO6ByMRU5rpCIPqGhAcOPTV3GM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:f6:03:62:8c:92:88:43:ff:3d:74:e7:52:34:5f:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Validity
Not Before: May 5 01:01:07 2025 GMT
Not After : May 6 01:01:07 2025 GMT
Subject: CN=7e6e8cce49908172c429363696d0dc6f1c47d92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:00:24:88:a9:53:37:4c:45:ca:5f:5b:eb:f0:
66:00:7c:9e:a2:57:c9:fa:99:ee:2a:b0:0c:cd:35:
e5:b5:0b:ae:cc:99:df:fc:03:d5:3a:ff:45:5f:8f:
bc:e4:ab:1e:4c:b8:83:6a:0a:e4:45:21:84:4c:0e:
6d:fb:1c:69:dd:43:ae:b2:44:59:bf:02:b8:0c:4f:
bd:ee:8d:16:df:95:95:12:7d:a1:be:ff:c0:31:dd:
cd:bc:bc:bd:fe:4a:53:b6:20:a2:dd:ee:9f:23:86:
3f:b4:8e:06:a8:f1:02:ed:0a:e3:8f:9f:c0:c5:5f:
45:53:3d:9d:69:69:3e:cc:19:28:39:70:99:ba:64:
aa:6a:2f:42:92:29:a8:f1:69:01:1f:7d:02:32:a1:
2d:1b:67:62:f4:58:46:86:dc:4f:e5:78:79:fc:74:
13:c0:3f:46:70:2f:a0:80:9d:c8:d7:2a:31:da:9d:
56:56:60:b5:43:be:46:06:c7:3a:6f:97:1a:48:69:
12:39:ae:b0:c5:a6:14:46:89:cd:39:34:be:ab:88:
32:bf:82:39:42:f9:8d:40:69:3e:44:11:52:7c:72:
62:ca:18:33:70:d6:b2:2b:b0:eb:db:88:39:e2:e3:
e3:d9:44:c5:4a:3c:37:ec:80:8e:47:02:72:8c:8f:
da:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:6E:8C:CE:49:90:81:72:C4:29:36:36:96:D0:DC:6F:1C:47:D9:2E
X509v3 Authority Key Identifier:
keyid:D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:c1:fb:0b:6e:8d:c3:82:e0:51:ac:c1:0b:98:91:7c:52:99:
6c:3b:20:48:19:1d:d3:fa:45:cc:04:83:b4:72:eb:4d:9d:f2:
8a:3c:15:a7:2b:3e:95:b8:6a:65:3c:76:dc:f1:28:5c:d2:91:
f5:78:b4:29:dc:bd:8f:67:51:c1:9f:d8:eb:0b:fd:89:85:61:
b3:04:62:90:55:10:e1:9c:c1:f3:ae:d5:9a:6d:47:0b:b5:6a:
79:84:51:a3:a7:ee:db:24:67:c5:74:dc:67:50:e5:50:1d:b4:
7a:12:cc:ce:34:ec:59:b9:e3:ad:c1:37:98:9d:9f:b7:31:ac:
d2:97:3c:54:48:f0:a4:df:5c:60:e8:86:c5:ff:3a:08:64:01:
bd:04:45:2a:cc:fb:7a:70:e7:d0:28:7b:52:00:69:9a:bb:ea:
93:9d:c2:66:de:46:07:e1:c1:c0:f0:66:96:27:99:ce:52:3e:
59:2d:d5:e7:2e:55:99:96:0e:9a:4f:bd:a5:cc:d2:86:e1:3f:
7e:7f:76:40:b2:ee:28:b7:90:a5:18:04:08:fa:89:f3:88:ec:
05:76:b9:15:ae:a4:a2:81:62:4a:b5:e7:64:65:12:74:27:0c:
4f:9a:05:07:db:62:85:84:e3:cd:2c:4a:89:33:0c:63:db:d1:
70:ac:5a:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 10:50:27 2025 by rpki-client