Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
File: 2fhm-wqoOicaDLfckDAYjInSPl0.mft (raw, json)
Hash identifier: +F4rGSD/MeaOf2kTY1KlY4vtGGHZAcjiFxCPjpYnmxs=
Subject key identifier: 5F:17:DF:8D:4E:E8:DA:31:72:1C:EF:50:EE:66:C5:F0:BB:C0:86:18
Authority key identifier: D9:F8:66:FB:0A:A8:3A:27:1A:0C:B7:DC:90:30:18:8C:89:D2:3E:5D
Certificate issuer: /CN=d9f866fb0aa83a271a0cb7dc9030188c89d23e5d
Certificate serial: 01969FE3FC3A4E3688049E37441B77773BA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fhm-wqoOicaDLfckDAYjInSPl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
Manifest number: 1526
Signing time: Mon 05 May 2025 10:00:40 +0000
Manifest this update: Mon 05 May 2025 10:00:40 +0000
Manifest next update: Tue 06 May 2025 10:00:40 +0000
Files and hashes: 1: 2fhm-wqoOicaDLfckDAYjInSPl0.crl (hash: 1Yz/8EvbqzTshvVJh44LO3LHWSp+WefhpfLAZ6vHWgM=)
2: vaJcnuFh_402kJ74_w8V8zEZMEQ.roa (hash: zHT9dPUYaVKrJVgWZffBYu4o6dMRl6TWrXRAFSRU0bA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fhm-wqoOicaDLfckDAYjInSPl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:e3:fc:3a:4e:36:88:04:9e:37:44:1b:77:77:3b:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f866fb0aa83a271a0cb7dc9030188c89d23e5d
Validity
Not Before: May 5 10:00:40 2025 GMT
Not After : May 6 10:00:40 2025 GMT
Subject: CN=5f17df8d4ee8da31721cef50ee66c5f0bbc08618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9c:11:1b:d3:10:fb:0f:4b:73:23:49:e9:15:
04:e4:9a:05:ce:52:b5:27:aa:be:94:0c:77:f4:85:
a3:7f:b0:34:33:6f:34:6b:28:a3:c3:c3:17:af:8d:
6b:ff:a8:88:32:9f:5d:69:0d:67:3c:22:49:6e:ce:
a0:2a:50:b0:fe:2f:f2:40:2e:f3:c3:34:26:62:e2:
5c:b3:9f:4b:a7:bf:c7:e6:96:c4:71:f4:59:41:f7:
4b:4d:1e:c0:94:25:96:d6:fa:f6:4b:a9:8d:5c:73:
84:03:9a:04:a9:e7:8d:4e:f1:47:61:e9:e7:67:d9:
d8:2e:d4:f8:f3:69:35:a7:7d:0d:b7:bd:4d:02:ef:
ef:7d:df:62:08:3d:28:be:7e:02:3e:0f:c6:35:86:
af:6c:7f:64:68:78:d6:d0:23:81:94:56:8e:02:67:
4d:13:6c:cd:f2:94:18:5d:f1:5a:71:c9:7a:dc:8c:
15:58:23:3c:96:f4:30:0d:5b:18:f6:3a:84:e6:47:
aa:99:2e:57:1d:85:8f:1d:d6:55:ec:5d:18:60:0f:
c9:c5:24:81:3b:b4:fa:1e:22:92:87:5b:8b:d9:2c:
1e:fd:e5:3a:0c:7f:2b:25:e4:5a:bf:2a:b0:dd:df:
93:5e:e2:9f:72:02:63:d3:a4:45:50:a1:1a:fc:68:
94:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:17:DF:8D:4E:E8:DA:31:72:1C:EF:50:EE:66:C5:F0:BB:C0:86:18
X509v3 Authority Key Identifier:
keyid:D9:F8:66:FB:0A:A8:3A:27:1A:0C:B7:DC:90:30:18:8C:89:D2:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fhm-wqoOicaDLfckDAYjInSPl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:24:6d:7c:ce:0c:c0:06:af:a4:17:51:d8:63:7d:d3:5f:ab:
61:91:77:01:11:49:db:bb:a5:e0:1a:93:6d:91:cc:54:89:32:
75:c5:f3:6a:26:7c:7e:fe:c3:9d:9f:f0:bd:c5:e2:86:23:f4:
63:fe:68:09:7e:29:7e:02:48:fa:72:15:ad:ae:d9:74:0e:ea:
e0:91:f9:b0:a3:a8:65:59:09:10:31:65:f5:35:fa:c5:01:25:
c2:53:2d:d8:94:a2:2f:57:db:1c:de:a6:83:fd:75:2f:fa:be:
c1:ba:29:b4:88:72:89:6d:a3:c1:02:5f:97:12:02:b0:30:c3:
4c:33:8c:90:a2:41:7d:db:ee:60:7f:ce:99:46:4e:e9:37:ab:
8f:a4:b8:19:4c:6c:e9:13:fa:f3:18:8c:44:bf:92:6c:45:19:
c5:69:4f:6e:8c:13:24:6a:16:84:94:88:af:c5:f4:fc:9e:af:
8d:f4:ac:31:74:25:ec:7b:05:cc:e8:08:50:ad:d0:60:b7:13:
1e:5b:84:2c:a3:ef:69:2f:30:36:ea:66:6a:d4:1f:59:4c:74:
b7:11:2c:52:5a:de:d6:ea:eb:e2:ff:38:ee:81:7f:bd:25:da:
5e:56:c5:1e:86:31:d8:8a:52:fd:45:f1:f1:8f:e0:8e:b0:e4:
0a:80:92:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 14:42:04 2025 by rpki-client