Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
File: 2dHiILYBtn_jDLt7fBvyL74i-08.mft (raw, json)
Hash identifier: HMXuz2I9e2DCeS0XvevJGZumjdjr/zrp1RnASBTLMu0=
Subject key identifier: 7B:7F:D2:39:25:34:8A:92:88:20:FE:63:EA:72:CB:4C:35:E5:A7:2B
Authority key identifier: D9:D1:E2:20:B6:01:B6:7F:E3:0C:BB:7B:7C:1B:F2:2F:BE:22:FB:4F
Certificate issuer: /CN=d9d1e220b601b67fe30cbb7b7c1bf22fbe22fb4f
Certificate serial: 0196B1B350D2C9C5B0D8FB127B70069FA45E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
Manifest number: 09BB
Signing time: Thu 08 May 2025 21:00:40 +0000
Manifest this update: Thu 08 May 2025 21:00:40 +0000
Manifest next update: Fri 09 May 2025 21:00:40 +0000
Files and hashes: 1: 2dHiILYBtn_jDLt7fBvyL74i-08.crl (hash: OZ7KGdHV3BfbX0ryNB4pU/kvVnyh6qeDvgU6hkZx298=)
2: jIeL0Ff1YswP2z65Y_1AGOy9fmw.roa (hash: OwVjmKWjz0aDaa4mX/kuMdsef7BkmTlqjQTaGRRWwQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 21:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b1:b3:50:d2:c9:c5:b0:d8:fb:12:7b:70:06:9f:a4:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d1e220b601b67fe30cbb7b7c1bf22fbe22fb4f
Validity
Not Before: May 8 21:00:40 2025 GMT
Not After : May 9 21:00:40 2025 GMT
Subject: CN=7b7fd23925348a928820fe63ea72cb4c35e5a72b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:55:46:15:fa:0c:c9:80:37:8e:ea:04:2c:7e:
c3:07:85:ff:62:b7:9d:a4:45:4c:fe:40:61:ef:35:
2c:2b:19:33:79:61:ca:5d:86:e4:a2:40:f8:0c:06:
79:f9:70:cd:cd:87:05:b2:cd:bb:8f:34:46:ef:50:
55:ea:f8:ff:ff:44:da:f4:9e:5c:53:20:6f:dd:93:
af:e8:bb:cc:11:bf:79:48:4c:57:4b:da:97:75:e8:
65:0f:8b:ba:dd:b0:3f:49:57:70:e2:68:b0:94:a9:
c4:c5:04:3a:73:19:d5:26:53:48:06:ad:47:7e:0b:
4f:7b:a6:e4:dc:eb:81:28:82:9b:de:d5:44:b9:f3:
60:ff:71:29:96:f9:d6:d3:47:67:86:60:9d:23:d7:
dc:25:79:3b:8f:51:c3:e7:25:51:4d:a5:fd:7a:28:
60:07:30:6d:62:34:b9:4b:46:74:eb:ef:ec:d3:f5:
32:a0:2d:46:6f:75:3b:56:15:50:63:97:7a:de:30:
60:d8:02:46:e9:92:55:8f:27:5d:42:cd:ff:95:b5:
3d:de:bd:f4:b1:15:43:5f:84:e2:50:25:54:39:1b:
73:6c:9d:f4:f8:fd:2a:a3:8a:da:52:3b:6d:15:cf:
52:0b:55:f2:47:be:5b:9b:2f:39:d2:d9:c2:9b:d8:
34:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:7F:D2:39:25:34:8A:92:88:20:FE:63:EA:72:CB:4C:35:E5:A7:2B
X509v3 Authority Key Identifier:
keyid:D9:D1:E2:20:B6:01:B6:7F:E3:0C:BB:7B:7C:1B:F2:2F:BE:22:FB:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:00:40:22:6f:0c:ce:f9:cd:19:91:bf:b4:a8:1f:3d:12:7c:
e8:8c:1d:7e:a2:1a:95:32:b4:59:92:7c:25:ad:11:49:e6:4c:
8e:36:43:09:66:36:3b:e7:a6:f1:d2:cc:6f:39:d4:5a:7e:d8:
8d:48:9a:c7:10:e7:b0:13:da:df:a7:c9:e5:e2:17:84:30:71:
c8:f1:b8:3f:52:c1:9d:f5:80:0e:e5:fb:aa:6b:ea:4f:1a:f5:
84:09:8d:44:b8:b8:41:6b:4b:3d:b2:e7:51:60:dc:73:56:66:
0f:81:39:75:32:7f:3e:4c:64:a0:2b:89:47:14:6c:08:04:dc:
6f:1d:93:fa:ac:ee:7e:05:ad:64:6a:90:dd:02:01:24:2b:22:
a7:89:ba:b3:b5:04:d3:36:88:72:1f:9e:9e:fb:06:9e:f2:15:
1f:fb:5e:af:19:e6:73:ea:66:9f:87:96:57:06:27:8a:f7:e7:
a8:68:3e:37:9f:56:fe:09:a3:45:1a:9a:f3:27:80:18:4a:bc:
0e:a9:de:22:7a:24:3f:08:24:30:20:ab:e9:d6:e8:61:a4:aa:
fd:83:8d:a5:af:db:b6:52:4e:73:a2:42:3f:50:11:6f:b5:c7:
81:22:47:28:00:0d:3e:c0:fd:f5:e9:b7:99:0b:3c:3a:45:72:
16:27:18:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 05:10:33 2025 by rpki-client