Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
File: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft (raw, json)
Hash identifier: Na14nlVsFXeLuo9PJWFNodCfcP/cWFfZvZo2Pz7mkFc=
Subject key identifier: 0F:DC:54:0A:E2:6C:00:47:10:E5:E3:D3:D0:52:BB:52:A0:8B:FC:01
Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Certificate serial: 0196A5AF8FEFED760DF700E942971723AB0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
Manifest number: 0CB7
Signing time: Tue 06 May 2025 13:01:08 +0000
Manifest this update: Tue 06 May 2025 13:01:08 +0000
Manifest next update: Wed 07 May 2025 13:01:08 +0000
Files and hashes: 1: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl (hash: LzLczfN4tVbVdePNrLluoqtkA93CQt4xnm8Udw+IWSY=)
2: nEst59VNXuZ4VJfEimqfkDoIWMw.roa (hash: MVYyTOwc+4oCrDyXY6sI17JYzQycO6fjKklmhjG1KnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 13:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a5:af:8f:ef:ed:76:0d:f7:00:e9:42:97:17:23:ab:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Validity
Not Before: May 6 13:01:08 2025 GMT
Not After : May 7 13:01:08 2025 GMT
Subject: CN=0fdc540ae26c004710e5e3d3d052bb52a08bfc01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5a:73:4d:45:bc:16:c2:92:6d:e1:15:08:aa:
14:7c:17:34:34:ca:b9:90:bc:d7:b1:2f:36:5b:3a:
b2:f5:3a:19:d4:ab:f6:37:d3:67:7d:da:4d:7d:be:
b5:da:6d:03:e1:4f:12:9b:eb:d5:9d:97:8a:53:bf:
52:7e:5e:fc:a6:de:1b:d3:61:60:e2:65:e8:55:9e:
76:6f:fc:7a:cc:c6:34:37:0c:84:69:2b:7a:d6:7d:
da:bb:85:84:0e:f5:41:c8:da:21:a9:3a:09:99:28:
53:4d:f3:93:5f:ee:84:02:24:76:b7:65:81:48:37:
c2:99:79:e0:c1:e3:d8:41:13:54:2d:81:06:a2:da:
e0:ae:85:79:ee:1d:0b:39:55:4d:6e:36:19:58:82:
c4:8e:0d:86:b9:65:01:27:5c:97:95:48:a6:f6:92:
b0:7e:aa:4a:aa:e6:39:5c:11:62:01:a1:7b:e5:cc:
21:2e:44:92:14:4f:89:95:0c:f3:0c:73:18:35:a4:
cc:f7:3f:2c:0c:28:be:89:de:82:0d:57:cd:68:fd:
25:25:c2:42:fb:13:87:d3:c6:fa:77:6d:66:f1:fa:
5d:83:78:66:76:16:58:a3:0b:31:e5:d0:a5:9a:46:
cb:8f:6f:0e:26:07:85:42:11:fe:91:46:f3:4f:96:
ad:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:DC:54:0A:E2:6C:00:47:10:E5:E3:D3:D0:52:BB:52:A0:8B:FC:01
X509v3 Authority Key Identifier:
keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:2a:80:ec:9b:1f:ed:ce:1b:8b:2f:b9:ac:ec:9d:6b:d2:17:
90:13:ae:9f:fb:9e:a3:7a:8d:f3:03:3d:18:81:5b:5a:e9:45:
7b:b7:1e:6d:78:ca:50:b0:18:56:08:ed:7c:0b:a8:7d:f2:ed:
67:20:87:0c:00:a3:d3:6d:68:05:5c:79:73:bc:ce:03:8b:12:
cf:38:fb:a5:5a:3f:83:dd:4b:37:9f:db:9a:c2:b1:f9:86:33:
e7:e2:1e:d4:02:f5:8a:1f:0b:ae:3a:84:27:46:52:3e:66:8e:
9c:bd:e7:a2:4a:d4:f3:cc:ad:23:34:c5:5b:49:f7:e3:24:5f:
ee:2a:e7:a6:2b:f6:ae:71:24:69:74:80:44:a4:2a:42:42:cb:
6c:78:89:76:6f:e9:05:3c:5e:3c:e4:45:8a:f3:20:84:89:74:
52:31:2c:a2:05:ec:8c:5e:1e:7b:6f:66:da:4d:52:58:0d:07:
7d:d3:19:62:f3:e3:cd:f7:c9:1f:fd:8a:bf:11:05:2f:de:be:
ed:f4:a3:68:c8:da:01:55:68:b8:78:cf:17:5d:61:3c:bf:0c:
6c:39:e5:d4:49:ff:d6:5a:5a:bd:9b:b3:39:67:d8:0e:b5:46:
c6:21:16:10:fb:d6:14:e1:73:8d:93:03:25:d9:4a:16:ca:47:
d4:53:06:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 20:43:57 2025 by rpki-client