Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
File: 2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft (raw, json)
Hash identifier: vJNrjMweYd0AwSG4s+MWPPhBJkotVf8OeV1H/2iVHDk=
Subject key identifier: FA:2B:6A:FC:A2:23:AF:11:3B:92:9A:6C:F9:D2:4F:C3:56:05:3A:BE
Authority key identifier: DB:F5:BC:B9:1C:64:0A:0A:34:29:05:E5:A5:17:07:52:8F:5A:33:A1
Certificate issuer: /CN=dbf5bcb91c640a0a342905e5a51707528f5a33a1
Certificate serial: 0196C34C5B6C8C5FBDBA7898C297417086EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2_W8uRxkCgo0KQXlpRcHUo9aM6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
Manifest number: 1327
Signing time: Mon 12 May 2025 07:01:23 +0000
Manifest this update: Mon 12 May 2025 07:01:23 +0000
Manifest next update: Tue 13 May 2025 07:01:23 +0000
Files and hashes: 1: 2_W8uRxkCgo0KQXlpRcHUo9aM6E.crl (hash: PEyFDfF+l9TW0vcVn5vOftdCwO5EnePlP1346csbNPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
rsync://rpki.ripe.net/repository/DEFAULT/2_W8uRxkCgo0KQXlpRcHUo9aM6E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:4c:5b:6c:8c:5f:bd:ba:78:98:c2:97:41:70:86:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbf5bcb91c640a0a342905e5a51707528f5a33a1
Validity
Not Before: May 12 07:01:23 2025 GMT
Not After : May 13 07:01:23 2025 GMT
Subject: CN=fa2b6afca223af113b929a6cf9d24fc356053abe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4b:20:52:6f:d1:e3:1a:9a:a5:bb:15:82:90:
c2:45:30:8b:99:c8:f5:91:ae:d7:cd:35:e8:07:70:
1c:fc:2d:c8:6b:e9:59:81:3a:c7:80:70:35:01:a7:
c0:d8:af:b9:e5:6c:fe:68:41:a7:92:72:79:5f:fd:
7f:0e:49:f3:6d:94:07:9a:e5:b2:8a:fc:84:e6:0f:
06:44:71:79:7a:3e:e3:ea:b3:0d:cf:5e:8b:77:0e:
98:3f:ca:95:f7:c4:cc:00:66:3b:0b:40:eb:f0:c0:
d6:fe:d6:1e:d6:53:29:14:60:2b:29:bf:cb:1b:e3:
af:02:36:d0:f5:28:37:3a:f0:17:ab:aa:be:c3:b7:
a8:58:73:dd:4a:c5:b1:1b:b1:f7:af:25:0b:b9:77:
6b:46:55:77:e3:c6:6f:4b:1f:30:5d:62:4f:3f:d4:
45:3c:6a:82:4d:ce:36:38:52:c4:80:d4:b4:88:bd:
fd:71:2b:98:7c:dd:62:bd:03:4b:15:d1:c1:8f:d4:
dd:f3:f0:cd:fa:bb:14:c5:53:f8:d0:0b:8f:22:2c:
b0:16:b1:9c:b6:54:95:96:71:7c:d0:cb:c6:6b:24:
1f:67:08:be:c3:ab:ca:ef:83:c9:c0:cf:61:51:a5:
57:63:95:b8:22:41:dc:36:1a:61:34:ea:39:1b:03:
d6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:2B:6A:FC:A2:23:AF:11:3B:92:9A:6C:F9:D2:4F:C3:56:05:3A:BE
X509v3 Authority Key Identifier:
keyid:DB:F5:BC:B9:1C:64:0A:0A:34:29:05:E5:A5:17:07:52:8F:5A:33:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2_W8uRxkCgo0KQXlpRcHUo9aM6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:0e:7d:40:26:01:6e:95:54:65:4a:85:2f:dd:2a:20:48:7f:
56:dc:ba:a5:3e:d1:75:36:b0:81:ae:4d:a6:54:4d:5e:1c:87:
36:40:94:98:75:a0:5d:6b:3a:58:43:74:8b:9e:b6:d8:45:06:
3a:99:7e:a8:0c:66:e4:ae:df:10:e8:bd:67:33:52:86:0a:1e:
fb:99:0f:c5:de:ca:c9:9e:1f:fb:bf:88:f9:05:d3:91:dc:8b:
ae:26:01:42:ee:25:38:ce:84:c6:97:bd:87:b5:ac:e4:3c:a3:
c0:d8:20:11:50:2f:bc:8a:e9:35:98:51:32:ca:3c:e9:ec:7e:
7c:dd:26:1a:8a:bc:33:0f:13:31:44:ca:3f:0e:ee:3c:d4:fc:
41:8c:87:cc:d9:1e:a2:6e:fa:9c:57:be:c6:43:ff:75:ad:52:
6d:74:16:dc:f6:3d:73:02:f9:76:90:e0:32:a6:bf:79:92:9d:
fa:f7:89:fd:2a:06:f1:dc:65:22:ec:2d:0c:7e:c1:da:72:7e:
e3:d1:d2:fb:9e:b5:b3:ae:16:b6:67:33:9a:2b:0e:0b:bb:c9:
5b:bc:3d:65:8d:78:65:79:c1:85:f8:2b:e1:4d:4d:82:ee:72:
af:c5:5d:16:4f:ae:7f:a5:aa:4f:62:cf:82:54:86:1a:b8:d8:
4f:80:3b:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:08:33 2025 by rpki-client