Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
File: 2OnkD_n7tigNo26XLyDTElAMGFw.mft (raw, json)
Hash identifier: Thz5D3Fj/let+pGy1dYb4/fxS+RYPQQCSwRKb4Vjudw=
Subject key identifier: 13:73:7A:4F:8F:91:D0:33:25:96:A9:7E:50:AA:80:D8:79:4C:E3:4D
Authority key identifier: D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
Certificate issuer: /CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Certificate serial: 0196D4E3AEA7FEBFD9A64870BDF860532C8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
Manifest number: 1228
Signing time: Thu 15 May 2025 17:00:13 +0000
Manifest this update: Thu 15 May 2025 17:00:13 +0000
Manifest next update: Fri 16 May 2025 17:00:13 +0000
Files and hashes: 1: 2OnkD_n7tigNo26XLyDTElAMGFw.crl (hash: iePnDx38hpzMfEkhtsJ1dnViK4vKeY3naK2tq6fgT2U=)
2: h5ibvBXljsm0_9K-AnuxEpyWzoI.roa (hash: SvGB7aqcdXdN/Cdk0NHyr1xHsC5MuHnt2HID1mkRiq8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 14:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d4:e3:ae:a7:fe:bf:d9:a6:48:70:bd:f8:60:53:2c:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Validity
Not Before: May 15 17:00:13 2025 GMT
Not After : May 16 17:00:13 2025 GMT
Subject: CN=13737a4f8f91d0332596a97e50aa80d8794ce34d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:de:fe:8c:2d:bf:ba:a0:95:55:66:09:9d:15:
4d:52:13:66:05:e9:01:65:98:12:0e:dc:32:b0:03:
af:7b:8f:ed:12:d2:8d:64:a4:06:1c:57:0a:bb:a6:
46:04:2d:ec:81:a5:f2:c2:fb:16:80:e3:65:d6:b1:
92:78:40:01:83:34:28:e0:45:62:b7:4f:62:7a:eb:
0f:83:f1:9c:f2:2e:45:10:ec:6f:2d:21:fd:8f:b5:
98:86:17:fe:fa:90:f8:96:36:88:95:ab:b6:44:87:
93:5c:c4:e9:e1:e6:c4:d1:3b:56:85:aa:eb:b3:18:
36:12:7d:57:0b:3d:a6:ff:75:f1:71:7e:df:75:d6:
e9:5d:7f:38:41:e1:66:3e:ab:63:6e:dc:26:bf:cd:
db:46:9c:c9:cd:8c:57:2d:1b:ba:eb:72:16:a4:3f:
c0:ba:f4:74:0b:2d:9e:bf:b0:24:6c:35:c0:b4:ac:
9d:c7:93:1e:4a:fb:9e:96:13:42:2c:be:21:8c:49:
ea:0b:4b:88:44:75:20:5a:fd:5f:4d:57:dc:3c:eb:
b6:7d:29:05:43:35:94:21:96:78:68:eb:94:a1:2d:
bf:ef:0b:c4:87:18:bb:f8:ea:60:d0:f5:c4:15:fa:
aa:32:13:e3:6e:86:ed:3b:39:e0:99:61:84:1d:e4:
24:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:73:7A:4F:8F:91:D0:33:25:96:A9:7E:50:AA:80:D8:79:4C:E3:4D
X509v3 Authority Key Identifier:
keyid:D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:bd:c9:36:7b:23:81:7e:ef:e6:93:10:22:c6:ed:fb:39:80:
7c:2c:ea:9c:cc:2e:10:3d:9a:de:c6:3f:59:c9:87:69:ca:66:
92:43:80:1d:33:1a:6a:c2:8b:c9:ee:d6:12:70:8f:68:74:5a:
7e:53:87:92:2a:08:3f:46:3e:b2:34:e4:b7:f4:fd:21:b5:83:
cb:1f:05:b7:98:5c:e4:fa:51:ea:3e:3e:17:57:66:56:e9:b2:
cd:26:58:be:59:14:b7:63:78:c6:89:7a:40:77:64:c9:ca:27:
40:4b:48:8e:2e:a1:36:78:d3:55:95:6b:09:8c:2d:35:5a:42:
05:ae:4c:05:d1:49:16:47:84:cd:91:02:87:41:69:46:5e:06:
1f:a2:8f:1a:a7:c6:c9:e9:b7:0a:2e:96:3f:bc:f7:c0:19:c5:
d1:38:5e:46:fa:af:10:1d:35:af:31:6f:83:c4:30:e8:42:06:
ce:21:50:64:6a:2e:67:63:75:63:96:0e:6d:06:65:c1:65:90:
a5:41:d6:d2:42:d2:87:5b:01:27:93:4e:e6:fd:8f:a0:e3:0c:
b8:f3:2d:da:7f:95:56:2e:4c:c3:5f:32:ac:ce:e1:c6:5e:01:
e3:7d:fb:54:7d:77:2e:86:43:bb:99:2b:11:81:66:23:9d:88:
1a:59:45:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 20:32:19 2025 by rpki-client