Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
File: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft (raw, json)
Hash identifier: kPPpVIFQuZTmPhhr9vyNl5ypixF1x1oxwiSZuMbasQE=
Subject key identifier: 4E:20:70:3D:BE:71:5F:D6:BF:98:BB:01:E9:86:97:E0:EF:05:50:02
Authority key identifier: D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38
Certificate issuer: /CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238
Certificate serial: 01969F084A1B534D93854EB15DC24B402B56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
Manifest number: 05D9
Signing time: Mon 05 May 2025 06:00:42 +0000
Manifest this update: Mon 05 May 2025 06:00:42 +0000
Manifest next update: Tue 06 May 2025 06:00:42 +0000
Files and hashes: 1: 20Dw3EtRjT0VsUf9XJsc0R3Ci-Y.roa (hash: eYk/5sRuyCDN9GA+BHkMTQtHbaoi0rArz9DpKNEObWk=)
2: 2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl (hash: cOBEwXVZrDkrhQv9Zviv/kVpT68CXvfN0cPQSdzAkKU=)
3: 4syStsiJ4_nkcJBvU4Ns9Pjm0oQ.roa (hash: 2p6GX7iVYhsRkTJt8jEU86F9xE4rex2UzZbhNm8D8D0=)
4: N_GpQaNWWGxkbuDZ3ulfH-r64tk.roa (hash: IM2SiURjMxHWXsFqFI4woiJ2ADSr+qZUIrRaSOqm3m0=)
5: oHg8th2m-6lkqpucCywGnTPw2Y8.roa (hash: fBPsGM2/mDx5oeAlhLVhusnxHUP4XIwFmPZfB6dTzC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 06:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:08:4a:1b:53:4d:93:85:4e:b1:5d:c2:4b:40:2b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d99a47cdc89f46342f90b0da3c30d9ec5fd63238
Validity
Not Before: May 5 06:00:42 2025 GMT
Not After : May 6 06:00:42 2025 GMT
Subject: CN=4e20703dbe715fd6bf98bb01e98697e0ef055002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ee:25:ba:da:1a:1c:84:5e:43:37:33:04:d0:
28:af:2a:ee:c0:34:0f:45:74:d6:0a:28:b0:10:12:
b0:14:4c:fc:15:68:23:80:9b:18:ca:6c:a1:ec:97:
d0:ad:ea:40:e2:ad:dc:96:e3:22:00:03:f9:51:56:
71:09:46:67:12:ae:ed:35:b5:01:09:be:50:c2:bb:
6d:87:3f:f3:12:1c:56:3d:f3:ef:81:c1:f8:c9:38:
5a:01:0e:0e:58:e7:b9:b1:53:cc:54:98:25:df:d6:
74:3b:57:36:db:3d:0d:56:bc:c5:6a:6a:cb:01:60:
a7:92:45:9f:fa:c3:21:12:d6:a8:ee:61:9e:2a:23:
f3:8f:aa:90:89:12:52:71:5a:98:73:cb:36:18:86:
1e:ab:39:67:6f:e0:a6:65:16:40:38:c9:66:d3:64:
45:e5:8c:80:78:4b:4e:df:d8:b5:5f:aa:4d:0f:6f:
8c:77:fa:5e:18:3c:a3:26:45:65:f4:74:16:b2:aa:
19:ac:6e:4d:88:ee:56:db:ca:cc:f4:2c:7b:9f:30:
28:ab:bc:bc:7d:19:5c:98:2d:6d:42:7b:c2:6a:17:
9a:37:b8:6a:00:97:b5:37:6c:6f:b2:2c:9d:d8:61:
20:bc:88:13:d2:ce:90:2f:39:4d:16:2e:96:8e:96:
24:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:20:70:3D:BE:71:5F:D6:BF:98:BB:01:E9:86:97:E0:EF:05:50:02
X509v3 Authority Key Identifier:
keyid:D9:9A:47:CD:C8:9F:46:34:2F:90:B0:DA:3C:30:D9:EC:5F:D6:32:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d30eef-495e-43bd-919c-a2a0e2db49d0/1/2ZpHzcifRjQvkLDaPDDZ7F_WMjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:74:3c:03:fe:7a:49:4b:b5:e0:b2:00:cb:53:1f:13:35:4a:
d0:4f:83:5c:11:7e:c3:e5:f3:90:c8:1c:79:fb:4a:a7:29:44:
b8:40:7f:2e:32:ea:57:59:20:cf:56:d4:f6:9b:4b:68:80:6a:
36:a3:90:3a:24:61:2b:88:54:80:e1:16:12:cc:6a:7b:8f:16:
6f:64:81:a6:b5:4f:a8:08:be:81:da:05:31:c4:ee:06:5d:04:
45:97:12:cf:ec:91:a3:18:cb:3f:d5:9d:0e:46:61:be:4e:96:
74:83:26:d6:bc:bc:4a:12:f5:aa:b8:fd:cd:7f:dc:d8:2b:fc:
a9:5a:4b:96:78:e7:5d:e0:e4:3f:65:b3:ab:b7:64:f1:ab:ab:
2e:a4:7b:3d:6f:21:d0:7b:8d:16:c9:b5:c5:57:20:ec:ee:88:
e9:b3:19:d8:f4:81:66:e4:9a:98:69:7a:23:15:fe:fd:40:14:
53:5c:26:1c:da:9c:f5:9c:16:4a:60:cd:82:d6:00:7e:67:bd:
41:7a:c4:5d:21:ad:4e:f6:85:7c:d7:c4:62:7d:7e:22:47:c4:
65:b2:32:f2:b1:5a:de:9c:40:2a:45:c0:16:a4:5d:cb:ad:2d:
99:06:3d:02:3d:49:cd:bd:37:3a:ec:a1:8d:f7:00:af:da:18:
d4:0c:22:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 13:28:39 2025 by rpki-client