Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
File: 2YtaX7E4aD0ajMcBn3iXC65ngig.mft (raw, json)
Hash identifier: vHFBlE0hPpatgEk2d62FLo/KCwRPk2Za3Lohgsrl5j8=
Subject key identifier: 03:2B:C0:FB:44:4A:9E:6B:71:76:28:D6:B4:B4:03:75:F0:31:F4:4D
Authority key identifier: D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
Certificate issuer: /CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Certificate serial: 0196BAB65E0621644A9C288F8769F6E9F08B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
Manifest number: 0E5C
Signing time: Sat 10 May 2025 15:00:35 +0000
Manifest this update: Sat 10 May 2025 15:00:35 +0000
Manifest next update: Sun 11 May 2025 15:00:35 +0000
Files and hashes: 1: 2YtaX7E4aD0ajMcBn3iXC65ngig.crl (hash: p7jmBMXtyEA/SxccHjsMyWN90E83QLzC423yma/58f4=)
2: pGBMbGUVmfmMQKR1-BVF--sKK7U.roa (hash: ayj/a/EtllFNMGD1HzcA6KglHzS5bxHd+NVb8RRWcAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:b6:5e:06:21:64:4a:9c:28:8f:87:69:f6:e9:f0:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Validity
Not Before: May 10 15:00:35 2025 GMT
Not After : May 11 15:00:35 2025 GMT
Subject: CN=032bc0fb444a9e6b717628d6b4b40375f031f44d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:64:a8:0e:ca:87:8a:8e:18:be:31:b8:ef:a4:
25:ba:2c:e3:c2:b5:41:62:a9:c6:f7:1e:d4:fc:70:
43:65:61:58:6b:3d:8c:d6:35:b1:56:43:65:ce:aa:
3c:b3:e0:93:85:9f:cf:73:0c:d9:fc:77:59:6b:31:
df:ce:1f:c8:7d:54:b0:b4:c4:46:a5:b4:05:e9:48:
52:a4:53:68:51:36:21:55:f7:58:38:39:5d:8f:9b:
4f:0e:9b:0d:28:3f:d7:31:0a:41:aa:f0:1e:77:86:
83:08:ba:34:a9:92:2f:61:90:0b:0d:4f:1d:db:05:
53:50:41:1a:e6:e8:52:c6:41:80:79:ed:7f:2d:1e:
c5:88:08:bb:84:a3:74:89:77:97:3b:3d:8e:2b:8f:
a3:16:6e:e8:f1:bb:59:58:a6:9e:d5:6d:7f:ab:80:
a6:31:50:d1:91:56:ff:94:57:51:51:ff:86:f7:20:
3d:e4:92:8a:e5:7a:13:e1:ea:d7:0e:3c:33:76:3f:
84:ea:1e:e0:79:60:4c:c9:f1:63:92:c0:12:90:73:
09:b8:12:bb:43:4a:21:53:cd:db:d7:4d:f7:a4:af:
37:10:b3:10:ba:13:49:04:11:2a:38:49:d7:e1:36:
50:cd:42:96:ac:b5:d8:03:79:8e:94:29:f3:2d:83:
a3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:2B:C0:FB:44:4A:9E:6B:71:76:28:D6:B4:B4:03:75:F0:31:F4:4D
X509v3 Authority Key Identifier:
keyid:D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:51:9c:96:01:d2:0b:cb:23:6e:82:49:b0:c8:29:8d:ad:07:
0f:f9:c0:6e:a1:e0:97:c3:03:2c:92:73:20:78:40:4f:22:28:
11:70:3e:20:e0:c7:da:a8:bf:59:41:d0:01:19:09:0b:2c:d4:
39:45:46:1c:83:27:3e:da:6a:88:1a:81:88:fa:a9:a8:e9:ec:
cd:e1:a3:fc:73:c2:89:ad:ba:c7:3a:01:a5:65:42:1b:e3:df:
66:51:88:70:00:d4:3e:a7:97:aa:90:fb:b1:49:df:8e:78:bf:
ea:98:9b:e4:3a:0e:16:55:9b:b2:ae:a8:1d:7b:d8:ba:79:0d:
7c:a2:b2:2d:38:9e:be:54:d4:f7:d9:e5:4b:fd:29:aa:e9:40:
dd:01:08:db:09:59:6a:41:46:8f:d3:b1:d3:52:5c:16:dd:d5:
cb:d1:a7:ff:e8:a8:f9:4f:93:cf:70:b2:cb:f2:6a:07:91:b9:
54:1c:de:71:98:4b:aa:df:29:27:a9:55:51:ca:34:4a:ff:bd:
92:2b:0b:cf:3a:a4:c4:b7:0d:02:6b:b8:20:02:7b:84:07:c8:
1a:f5:8a:7f:3b:84:03:a3:a8:1f:b1:bb:98:7a:0e:c3:89:21:
32:91:7c:9c:67:b1:0e:bf:c8:ba:f9:a7:78:be:9a:b2:24:ae:
be:73:be:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 23:02:35 2025 by rpki-client