Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
File: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft (raw, json)
Hash identifier: C5VDMZd922z9h5RSV2/AlX6fsL9+Z5Pwb/iGeaAE9ko=
Subject key identifier: 66:AE:C5:BB:F4:22:50:21:AF:A4:69:29:4E:BF:52:CB:59:F6:7F:5B
Authority key identifier: D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
Certificate issuer: /CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Certificate serial: 0196D407F434F287A20910FB5C38955DF8D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
Manifest number: 0C61
Signing time: Thu 15 May 2025 13:00:13 +0000
Manifest this update: Thu 15 May 2025 13:00:13 +0000
Manifest next update: Fri 16 May 2025 13:00:13 +0000
Files and hashes: 1: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl (hash: iV0Y4PgLXi4XiLJH9JV5lTbmjWyBFmwu7zyAl8bW4lE=)
2: GhbIbk50hv6g93dh7hGhzK6K_74.roa (hash: nXi3Gj76e6GTyqlSijwexlGEZ4aKaxuj/QihrtfAHS8=)
3: R5r0xeVYQuyhFWywaHju63NvX88.roa (hash: gil6oFrijLp6JqgDOMjfduAOivvAur9Q9eunuVq1Ysg=)
4: TofwY-R4zO7hCFwhNRcFqFccDIA.roa (hash: CO89XYgmv4EUpm6JNaIOn/T7FUsKcLGJGFWRoloHQXo=)
5: kEveC8WkpMXtAhCjQYal_7N8cqU.roa (hash: 36t2IiG5a0ru6GNWxSIKI2twOH4WabuzXbDN7PDUMCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 13:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d4:07:f4:34:f2:87:a2:09:10:fb:5c:38:95:5d:f8:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Validity
Not Before: May 15 13:00:13 2025 GMT
Not After : May 16 13:00:13 2025 GMT
Subject: CN=66aec5bbf4225021afa469294ebf52cb59f67f5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d6:2b:95:11:67:dc:f8:6b:ae:b8:71:ad:48:
6f:85:4e:8a:a7:53:c2:21:a6:10:d4:77:15:44:a4:
7d:44:22:c5:52:25:da:88:11:ff:81:c1:c8:f2:91:
3c:bb:9b:69:f1:65:aa:e9:2f:36:60:1f:c7:fe:d4:
6b:d8:b7:43:96:13:0d:c0:28:48:4d:b6:96:92:b1:
f2:ad:f8:74:05:23:b5:48:83:43:4b:d4:52:eb:ad:
02:24:7a:07:03:5c:94:9b:c4:20:41:9d:27:27:43:
45:61:11:2d:99:dd:ca:34:4a:28:31:59:82:d7:96:
e2:d8:bb:ee:f2:e0:86:3b:5f:82:dc:1b:61:e0:f9:
ce:2a:29:30:56:05:2f:b0:11:e7:59:32:b5:8a:f5:
ab:9a:c8:6a:f5:7b:18:51:07:94:47:84:ae:46:59:
63:53:d5:39:57:e9:d1:c7:a5:0c:98:02:f0:6f:11:
74:9a:d9:20:2a:1e:b6:22:0b:95:d6:27:61:61:cd:
57:ef:ba:21:f0:50:9a:ef:e1:f1:c9:b4:e5:21:5f:
1c:78:e5:0a:80:de:70:56:93:e9:00:f7:fe:0b:72:
f3:64:f4:e3:1e:81:9e:96:b0:0f:68:ec:54:1b:09:
d3:90:9d:76:5d:c7:29:3a:99:d1:ac:e8:17:fa:1a:
f0:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:AE:C5:BB:F4:22:50:21:AF:A4:69:29:4E:BF:52:CB:59:F6:7F:5B
X509v3 Authority Key Identifier:
keyid:D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:bb:82:c0:45:11:cc:58:01:43:39:73:b8:65:d1:2e:c8:87:
2b:71:21:59:8c:b3:e0:f2:80:2c:c6:7f:c8:f3:c1:86:7b:91:
74:bb:24:15:65:c0:94:64:c4:c7:7c:75:8f:59:cd:5f:fc:6c:
61:41:b9:6b:86:5e:fb:0f:e4:81:b8:e9:59:1a:aa:be:af:6a:
89:c9:bd:47:4e:8b:f0:d7:6e:f3:09:da:69:d5:d9:76:f7:ca:
87:80:13:2e:21:58:4c:61:dd:46:65:53:62:ca:17:70:d2:a8:
15:d2:22:c4:4e:f7:f6:1d:38:4b:d7:bc:09:ad:80:3d:46:eb:
19:4a:a4:b9:6a:2f:d5:24:de:b7:f3:34:c5:e1:bb:5e:04:61:
5e:88:01:f8:99:5f:eb:59:97:5b:2d:f3:d1:1b:72:ac:c6:ae:
52:e8:8b:55:37:7f:dc:91:4a:a1:b2:bc:37:13:6c:c3:23:84:
a4:6f:b5:ee:04:4c:e5:ba:1b:a9:dc:28:2b:d0:02:67:ee:a9:
98:4b:34:95:d1:a5:93:77:5c:2e:26:e6:f5:9d:03:27:76:54:
d2:8d:8b:16:2b:cc:63:e6:21:77:69:11:41:83:6a:47:e3:04:
7a:b5:dd:a8:a6:1b:bf:81:0e:03:d4:aa:89:9b:5f:3a:27:1d:
de:99:17:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 16:57:41 2025 by rpki-client