Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
File: 2q_pD50IEzTMko7e6bxzFUBwjf0.mft (raw, json)
Hash identifier: MCcDlEij+x2uB5w4SLPKvppvMW4o6J4Usua4xe0BGYs=
Subject key identifier: 6F:27:29:28:0C:90:C8:2B:C0:AC:07:4D:B5:90:79:20:93:1D:D2:61
Authority key identifier: DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
Certificate issuer: /CN=daafe90f9d081334cc928edee9bc731540708dfd
Certificate serial: 0196C3148FAF6B4DBB80DA3AB194A801572A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
Manifest number: 088C
Signing time: Mon 12 May 2025 06:00:26 +0000
Manifest this update: Mon 12 May 2025 06:00:26 +0000
Manifest next update: Tue 13 May 2025 06:00:26 +0000
Files and hashes: 1: 2q_pD50IEzTMko7e6bxzFUBwjf0.crl (hash: FLKLg7R1Z8KBxIYM7upOEy/YIU+iAIhoZRaiYkDbRlw=)
2: ptCjyawSJ9frfP9fH_ikMswCnsI.roa (hash: qlAjQ7L6msxhMlwj1dEaHE32m8HH4N1buR0Bga+2/Qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:14:8f:af:6b:4d:bb:80:da:3a:b1:94:a8:01:57:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daafe90f9d081334cc928edee9bc731540708dfd
Validity
Not Before: May 12 06:00:26 2025 GMT
Not After : May 13 06:00:26 2025 GMT
Subject: CN=6f2729280c90c82bc0ac074db5907920931dd261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f5:6b:47:3d:86:5e:1a:e2:57:8f:e9:57:5a:
90:eb:22:cf:ec:54:53:21:ae:51:c2:74:da:32:29:
ee:13:29:57:c2:e8:63:9b:3d:58:60:b8:5e:18:74:
65:68:33:7e:68:dc:9b:b3:40:76:a8:a0:6f:73:2b:
33:f8:3e:05:a6:32:41:72:bb:ff:b6:d5:d1:f3:69:
91:57:46:9e:bd:ed:53:49:75:f0:86:dd:f9:0d:a7:
ce:4d:e7:8b:e3:4a:28:d5:f8:15:08:d5:2c:59:1b:
c9:78:24:32:cc:d4:5c:ef:44:75:e3:81:4b:cd:f2:
03:b6:7d:66:7e:68:1b:e6:bd:73:3c:e2:6e:96:b1:
b0:40:60:a7:dd:9d:db:33:d3:a2:28:70:45:46:33:
8e:12:a7:49:0a:70:64:43:7a:49:44:a4:3f:06:0f:
d8:ca:d5:ce:a2:6e:55:04:f9:2d:ba:df:fd:01:93:
73:81:51:eb:d6:c7:33:18:87:b1:28:8e:10:1a:6f:
c9:87:8d:7f:07:13:2f:d4:cc:16:9a:ab:87:bd:8f:
90:76:cb:34:c9:54:d0:a4:fd:b6:01:f2:32:36:6f:
df:c7:28:73:ef:cc:21:49:87:aa:a3:b5:3a:14:40:
96:27:f1:d4:36:1a:f5:bd:8c:d8:25:64:2b:89:bb:
88:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:27:29:28:0C:90:C8:2B:C0:AC:07:4D:B5:90:79:20:93:1D:D2:61
X509v3 Authority Key Identifier:
keyid:DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:eb:d3:80:61:f6:0b:11:19:0d:f0:a9:de:15:12:3f:3b:be:
5a:15:93:e9:1d:ff:99:b0:ec:06:ce:7c:8c:d4:43:6a:88:b4:
da:28:fe:ad:88:90:66:55:4b:ec:80:23:3d:3d:5c:d8:2a:c3:
ab:18:bf:bf:e0:6b:42:58:8d:68:90:e9:fd:5b:5c:a6:00:d8:
34:1a:08:8f:02:fd:a4:53:c6:80:b6:e3:b6:1f:9f:25:cc:73:
d4:e8:89:2a:82:4f:af:f5:38:22:9b:a7:b9:4b:30:99:ef:87:
95:54:84:5c:2e:da:a3:25:a1:ea:7b:3c:e5:80:eb:90:a3:09:
76:8b:8e:90:2d:94:82:38:1f:a9:ae:35:9b:f7:d3:3e:64:4e:
67:da:8a:f3:4e:30:39:ea:df:59:34:a8:a9:4a:b1:2f:b5:0d:
eb:20:63:a0:18:a3:31:36:a7:25:55:af:aa:de:6e:3f:93:5e:
70:ae:b7:c7:7c:67:e7:34:58:7b:bf:b2:c2:d2:f3:44:05:de:
fd:5a:33:bb:65:5c:44:71:cc:8e:2b:3d:09:d6:8f:b8:92:32:
64:f9:e6:b3:a6:8c:21:3d:74:bf:da:69:58:f1:8b:c4:5c:c6:
3f:2e:5b:6a:a5:33:32:cf:c8:77:47:9e:b9:e8:aa:3a:2b:9f:
b5:25:c1:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 15:45:32 2025 by rpki-client