Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
File: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft (raw, json)
Hash identifier: rr7GLNtpF+wEdw3nN3CZxh2FVGF8enBXzmTCtKSHsSs=
Subject key identifier: FB:77:0D:98:0E:EB:1B:77:CB:74:8C:45:5E:32:87:0C:05:31:4B:F4
Authority key identifier: D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
Certificate issuer: /CN=d908722a7555dd1621dd6a62209fa8da52942999
Certificate serial: 0196B85A7F0CF0307830DB73EB752B40C4A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
Manifest number: 13BB
Signing time: Sat 10 May 2025 04:01:00 +0000
Manifest this update: Sat 10 May 2025 04:01:00 +0000
Manifest next update: Sun 11 May 2025 04:01:00 +0000
Files and hashes: 1: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl (hash: Dmu7DMxfXDjKZDEEP9HQoJvXXy+pFPTt5LjpHlNSghU=)
2: Y5hh8AgGKAUf_2S15Xwk_892p60.roa (hash: baZuJeVmztFazA/spLlePhpdINyXpI1DJgHdXLAL5/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:5a:7f:0c:f0:30:78:30:db:73:eb:75:2b:40:c4:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d908722a7555dd1621dd6a62209fa8da52942999
Validity
Not Before: May 10 04:01:00 2025 GMT
Not After : May 11 04:01:00 2025 GMT
Subject: CN=fb770d980eeb1b77cb748c455e32870c05314bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d6:a6:ad:f1:93:75:8d:6d:31:95:d0:d5:26:
c7:20:64:24:e8:e8:3b:f1:c1:68:bd:a7:31:c2:f2:
93:57:57:39:44:90:f7:76:ad:76:93:a3:78:bc:9e:
e3:80:07:d2:3e:42:4a:f9:aa:86:5f:4f:00:f1:c7:
1d:4b:77:e8:53:c9:d6:08:39:48:8b:d1:45:91:9b:
95:5a:50:06:01:c2:49:8c:98:02:47:d5:2e:60:64:
30:81:5b:6f:d1:e0:c9:6d:b3:59:77:e3:65:2c:fb:
9e:c7:eb:53:1d:a6:66:9b:f8:1c:c4:de:c1:e1:5f:
69:5f:52:cc:35:24:56:9b:e0:b8:f6:ab:98:3f:9f:
30:f0:a1:33:df:23:00:e3:2b:2a:d9:f1:f9:47:dc:
e6:dc:8a:4e:b8:25:57:30:14:76:59:4f:3c:28:9b:
0e:6f:40:fe:95:0c:39:35:7a:0d:00:83:9b:45:b6:
5d:c9:39:79:62:3c:34:d7:9a:7d:36:70:e3:d6:1e:
cf:11:3c:41:62:f5:a8:86:9e:ff:2d:46:e2:16:3e:
7f:dd:86:df:36:a1:a6:4b:bd:65:88:b6:e2:e3:fd:
9a:ef:36:67:d8:3a:c3:79:26:6d:6c:bf:bc:ca:b5:
f6:2e:ec:4d:ce:4f:40:5b:0d:87:08:ed:2a:bd:21:
00:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:77:0D:98:0E:EB:1B:77:CB:74:8C:45:5E:32:87:0C:05:31:4B:F4
X509v3 Authority Key Identifier:
keyid:D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:30:5d:9d:37:ba:1e:d0:1d:0d:5f:40:1f:d9:35:5a:92:2b:
bf:de:0c:b8:a2:8f:0d:25:8d:42:03:f6:5b:9c:d5:26:5d:a0:
26:cc:9c:83:19:b1:d1:08:8c:6f:b9:49:4a:76:81:6f:96:40:
6b:9a:cb:31:d8:d9:ae:a2:bd:b3:81:27:20:c7:67:45:0c:a1:
da:21:50:e1:ec:d4:67:cd:b5:98:a4:89:ca:64:ee:2e:01:1d:
12:6a:2f:fd:f0:84:2f:d7:f6:b7:fd:bd:1d:e4:76:53:c4:66:
41:af:37:b3:45:02:5f:d2:b5:a9:6c:e9:2f:a3:f2:4e:2d:28:
17:77:75:34:32:ee:ec:2a:23:3e:65:fd:46:62:10:f8:a8:1b:
2d:61:9a:29:b1:af:68:be:8c:b1:38:80:4e:47:56:e5:d3:3b:
ad:93:b1:e5:e2:b1:e3:1e:81:a1:74:5d:79:3b:11:e9:10:c2:
50:74:f1:b8:b2:93:80:c2:3a:d3:48:73:4d:1d:f6:3d:8c:34:
5e:15:18:cc:11:10:47:b3:55:62:37:f5:b6:f0:f0:34:7b:1f:
07:cd:9f:24:2b:a0:7b:cb:0a:12:5e:c4:83:d1:22:14:dd:fb:
ea:57:2b:b7:b8:39:6e:0d:e9:8e:6e:45:79:25:cf:5a:e0:a3:
f6:b5:77:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 07:23:48 2025 by rpki-client