Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: J93BmN9qxpH97DnPwNyJbgNVNHtnDXpAeCo1n36w6sc=
Subject key identifier: 70:D8:A3:67:E2:24:2D:33:E5:0F:35:4A:D3:8E:0A:6D:2F:21:1D:3A
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 0196C5DF1E233097E56842458E7EE55BF2DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 153B
Signing time: Mon 12 May 2025 19:00:55 +0000
Manifest this update: Mon 12 May 2025 19:00:55 +0000
Manifest next update: Tue 13 May 2025 19:00:55 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: wKSNbj+k30zfjyaoFPrxyZ/8XPKAyG7nM5fwknQeyg4=)
2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=)
3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:df:1e:23:30:97:e5:68:42:45:8e:7e:e5:5b:f2:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: May 12 19:00:55 2025 GMT
Not After : May 13 19:00:55 2025 GMT
Subject: CN=70d8a367e2242d33e50f354ad38e0a6d2f211d3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4d:7a:9b:67:87:de:7f:99:79:5a:86:d1:06:
ba:3f:a3:c1:c9:53:95:46:44:1c:0c:ca:db:ec:56:
6d:ee:b5:12:8a:c5:c2:80:ba:8c:21:0c:ee:81:aa:
8d:46:8c:0f:63:9c:d5:e3:98:d9:8d:c1:3d:43:2d:
3a:ff:06:89:4b:e7:35:a3:43:9a:f2:b7:bc:ae:bf:
29:cd:99:b6:bb:4e:8d:5e:f9:4c:83:e2:fe:66:90:
91:05:94:58:15:39:83:ba:d0:9f:31:7a:98:e1:b3:
4e:f7:d7:7a:c1:3f:60:f4:9c:76:c5:b9:30:50:75:
4c:b8:cc:e5:cd:d4:9f:2a:84:f7:cf:1e:b6:06:7a:
b8:d5:c9:12:cd:7d:11:82:26:4f:a7:7f:1d:f9:82:
91:e4:f2:8d:37:ab:c4:ce:ac:37:22:fb:1e:66:55:
6c:fa:91:c4:12:36:1f:83:4a:43:90:2e:0e:38:5e:
e2:cd:e4:7f:1a:d8:54:c2:03:14:1f:1d:86:b7:e4:
ce:41:21:60:92:6d:b4:98:3d:b0:c6:fd:11:74:91:
db:23:1f:a3:aa:6d:1f:47:21:4d:ea:93:fe:81:8f:
82:76:6c:f8:50:a9:ba:23:1d:7c:56:bc:d0:1b:ca:
e1:80:ec:37:36:06:d4:0e:60:ae:30:d3:80:ae:85:
5a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D8:A3:67:E2:24:2D:33:E5:0F:35:4A:D3:8E:0A:6D:2F:21:1D:3A
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:73:69:2c:a5:f6:5a:65:fd:1c:e4:67:2a:05:b3:76:4c:f7:
f8:65:63:da:ef:98:92:3d:47:d1:0d:d2:20:3c:36:80:84:22:
6f:ab:d2:77:99:85:8c:e0:b1:c1:ca:12:ff:ae:48:00:17:61:
d9:8f:2f:48:be:80:1b:39:dd:71:62:9f:ec:89:b1:5d:84:a2:
ed:d7:11:70:4e:c6:0c:45:cf:3a:a3:3d:3e:a3:f7:d0:20:50:
6a:32:a3:1d:6d:44:5c:34:ee:34:e5:4b:da:39:9e:a4:b0:d2:
f7:d4:20:63:ba:e6:00:d9:ce:86:7f:c3:89:80:1d:e7:21:f1:
ca:9a:e0:9d:db:07:b7:80:dd:27:db:5c:8d:49:f2:b4:5e:04:
08:7c:e5:c4:f0:6e:1b:07:b3:6c:14:71:12:53:03:39:f3:8d:
c6:9a:ec:3f:2e:9d:cb:ea:28:84:ec:7e:1b:21:33:e2:2d:2f:
75:71:c7:cb:9f:6a:dd:8e:08:4f:b0:46:fe:05:3b:f0:3a:75:
fb:90:3f:14:9d:71:cc:9d:e2:6b:e0:dc:3b:81:51:1b:69:28:
f1:fb:72:d1:7f:9f:a3:00:a5:b9:4a:78:27:71:29:6e:ef:05:
9c:cf:1d:f7:f4:96:a5:0a:6d:75:28:12:e2:2e:2a:b0:86:79:
81:bc:9b:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 23:21:57 2025 by rpki-client