Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
File: 2gBH2sju-JRNeMG3omhowD4s5GY.mft (raw, json)
Hash identifier: 29G850vwLj2tejn9l90TeWUAKNFwUbv8EbSewJLYAcY=
Subject key identifier: 45:B2:2E:52:27:94:AD:87:A0:50:33:44:41:6D:E0:D8:95:6A:13:AB
Authority key identifier: DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
Certificate issuer: /CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Certificate serial: 01969CE2B1F8A533C1535A1BA96EDBC1FB77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
Manifest number: 1523
Signing time: Sun 04 May 2025 20:00:24 +0000
Manifest this update: Sun 04 May 2025 20:00:24 +0000
Manifest next update: Mon 05 May 2025 20:00:24 +0000
Files and hashes: 1: 1HJjsYIKgn5m4aKZWr3wynalRwQ.roa (hash: 4AW+T8DVNHH/qCqGZo07n9kC0wNSFK9esxUBxaOybzo=)
2: 2gBH2sju-JRNeMG3omhowD4s5GY.crl (hash: Sz/9XGQlOLCLOFbQsBdoIxq93gxwpU1TYd6nvaG8Yv0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9c:e2:b1:f8:a5:33:c1:53:5a:1b:a9:6e:db:c1:fb:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Validity
Not Before: May 4 20:00:24 2025 GMT
Not After : May 5 20:00:24 2025 GMT
Subject: CN=45b22e522794ad87a0503344416de0d8956a13ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:65:43:20:ee:14:a5:68:36:48:33:8d:c1:12:
74:01:b5:dd:17:8e:e1:2f:51:76:9e:12:2d:e6:94:
c9:c3:af:47:74:f6:72:0f:07:24:b1:fa:20:cc:d2:
43:db:0a:c7:77:f1:69:71:5f:40:2a:e4:11:60:5c:
73:b5:e0:17:88:07:b7:fc:30:f4:e2:b1:ee:15:4c:
2e:8b:e2:f3:50:3a:94:15:8a:39:0d:8d:84:46:d7:
8f:b0:89:b9:ac:fa:6b:28:df:7f:94:2e:d4:b8:e0:
4e:de:91:e5:6e:63:f8:03:b3:0d:43:36:d8:43:46:
54:3d:2a:9c:84:55:1f:dd:1a:f7:34:9e:b9:08:bc:
e5:37:3c:ad:68:b8:7d:3e:0f:b5:75:c4:9a:7b:39:
ba:7e:f6:bd:08:32:17:a0:67:20:65:dd:d1:9b:30:
dc:a1:86:58:ac:84:2e:06:55:be:c9:19:47:79:2a:
9a:a0:f0:2b:c4:ab:d4:11:00:17:75:6e:34:37:56:
87:6e:46:7e:2d:c4:74:df:09:bd:36:b9:8d:21:1c:
66:8d:99:54:65:15:f8:66:96:7a:37:bb:e7:ad:b7:
f4:a4:e9:7c:4a:71:2e:ec:34:13:d0:9e:f4:16:a9:
d0:d3:41:33:21:12:54:8d:05:de:d9:c5:9c:fd:6f:
5a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:B2:2E:52:27:94:AD:87:A0:50:33:44:41:6D:E0:D8:95:6A:13:AB
X509v3 Authority Key Identifier:
keyid:DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:50:80:2a:98:2f:4a:78:8c:4c:8b:65:de:a2:c0:24:78:36:
37:42:28:f8:c5:cd:cd:89:51:14:3b:e3:0e:7c:4c:8e:44:aa:
bc:0a:5a:5f:0d:7d:4f:25:2b:2f:9e:4c:37:43:e7:68:db:18:
fb:78:fb:79:c3:c6:05:c9:84:bd:87:75:0e:af:d8:6e:35:10:
c8:24:fe:ee:89:75:8c:a9:fb:9b:4f:04:42:36:1a:ae:37:9c:
c6:d6:74:b5:54:10:e4:4c:d1:a9:21:fa:24:4e:81:e5:71:58:
5f:fe:03:b3:c5:8c:d6:c3:59:4b:b0:17:c9:94:8c:db:65:f3:
c5:20:8e:d2:45:3e:40:d7:19:5f:ce:ed:b3:4c:11:50:87:14:
ed:7b:d0:ed:2e:79:83:43:48:03:4c:e3:ed:31:0f:fc:86:29:
3e:b2:36:8a:65:3f:14:db:c4:41:cf:7e:39:ae:31:7c:66:af:
73:9d:71:55:79:04:44:44:8a:81:da:98:ec:40:d2:2a:cc:9e:
48:42:e9:57:b4:f9:d3:b5:b1:6a:c2:4e:b4:6f:e4:e4:19:e4:
b1:bc:74:d2:48:a3:4f:c2:e9:7e:2d:28:f2:aa:f5:f5:f8:94:
e6:96:30:f8:cd:b8:00:a4:4d:10:28:72:7a:da:09:e1:f6:51:
0b:84:1a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 06:38:51 2025 by rpki-client