Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
File: 2IUFXXA5jPDHLM6sXlga1A8gPvw.mft (raw, json)
Hash identifier: yq/svZcIWqwXVEDEB1rR18kJGiHiGLcAiTVSgAVjrUc=
Subject key identifier: 98:70:EC:9F:F6:3A:EB:B9:A0:E7:4D:A9:3B:CE:CC:B7:8B:28:26:2E
Authority key identifier: D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC
Certificate issuer: /CN=d885055d70398cf0c72cceac5e581ad40f203efc
Certificate serial: 0196DB545F1E70ED437D364B8ECEC0DFA9B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
Manifest number: 0D0D
Signing time: Fri 16 May 2025 23:01:01 +0000
Manifest this update: Fri 16 May 2025 23:01:01 +0000
Manifest next update: Sat 17 May 2025 23:01:01 +0000
Files and hashes: 1: 2IUFXXA5jPDHLM6sXlga1A8gPvw.crl (hash: 3PhpUb4oLVb3p0yiA+HdCYrHxRfcFbubvtAQvh8tWno=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 23:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:db:54:5f:1e:70:ed:43:7d:36:4b:8e:ce:c0:df:a9:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d885055d70398cf0c72cceac5e581ad40f203efc
Validity
Not Before: May 16 23:01:01 2025 GMT
Not After : May 17 23:01:01 2025 GMT
Subject: CN=9870ec9ff63aebb9a0e74da93bceccb78b28262e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:35:df:06:8f:86:54:ef:f2:f6:58:8d:08:e8:
fb:29:f0:7c:80:e0:48:cf:2e:55:d1:47:7c:7b:18:
2e:5a:da:3f:a2:58:46:89:09:ff:72:09:e6:db:31:
9f:88:5b:93:86:cd:9c:b0:dc:6a:98:36:11:ae:82:
d3:13:ee:4d:8c:bc:d6:2e:f3:2b:2b:08:23:ee:6d:
f0:91:c6:c8:19:d7:ce:f3:64:a8:c0:80:62:e6:62:
de:fd:18:17:15:5b:c9:40:96:06:83:9f:6a:7c:5d:
39:31:21:04:10:ac:bf:da:cb:c9:c4:a2:43:6a:68:
86:ab:2b:4d:c8:04:5d:da:0e:20:58:df:4f:63:0c:
ab:dd:31:63:f5:56:f8:1f:69:26:e5:95:2e:cd:23:
b6:32:30:6b:7a:a1:f9:53:6d:f4:f8:25:02:63:12:
8d:f6:b5:fb:d2:93:70:a2:1f:60:bb:6a:76:8c:be:
31:e2:ea:7b:e5:25:e4:dd:fe:1f:e6:ec:5e:70:1e:
10:54:c3:76:f0:74:d6:31:c8:1e:8b:e7:0f:6b:e6:
b3:da:07:a7:41:90:f3:10:a3:cd:c5:fb:53:54:e2:
4f:cc:0c:b5:ac:13:38:c0:28:6f:42:64:0e:29:2f:
4f:c5:34:21:9a:ae:84:ca:38:c6:9a:bf:de:a5:1d:
e5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:70:EC:9F:F6:3A:EB:B9:A0:E7:4D:A9:3B:CE:CC:B7:8B:28:26:2E
X509v3 Authority Key Identifier:
keyid:D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:14:06:3f:2b:87:71:00:85:82:d1:d6:bf:58:71:bd:e8:80:
90:9e:b8:3d:b3:1b:12:9c:88:a6:8d:68:58:61:50:aa:db:4b:
69:db:8f:10:80:38:a7:2e:d0:af:04:93:06:a8:8e:ea:26:07:
b1:45:3e:4f:f9:4b:1e:92:c1:f6:5c:48:0c:55:6d:e3:53:cb:
2a:1f:ad:ee:04:de:17:65:c3:c9:bb:5f:b8:ad:48:40:0c:f5:
b7:f3:2f:6c:3f:da:91:3f:bc:5f:03:04:cb:8d:1f:d0:6c:a5:
97:87:72:95:ec:42:d7:43:d6:5d:42:ae:6a:47:64:52:65:ac:
b5:41:5f:40:22:df:88:02:6a:d4:6a:0d:97:cc:92:c8:79:65:
75:a7:4d:3d:21:4f:8c:4d:c2:a7:da:55:1e:f4:3f:16:89:d7:
5d:4d:65:76:62:9a:0b:26:19:53:50:63:56:c5:f0:a4:99:69:
3d:f7:79:6a:36:21:23:7f:c5:fe:df:85:20:cf:fe:8e:6c:bd:
7a:7f:9f:4b:a4:b6:07:ec:3f:70:d0:ea:d1:b5:71:0e:cf:0c:
dc:68:5b:c2:0c:05:62:05:88:44:87:1c:35:2d:09:85:a8:1d:
12:a6:34:19:1f:e7:f0:27:06:10:6e:44:55:e2:ff:2e:7f:4c:
e4:2f:74:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 05:37:55 2025 by rpki-client