Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: xNFYLYyap2HqK2PvVwnc+dgI/i4gjgIpiNmf4noeu6A=
Subject key identifier: 7D:0C:C1:82:74:9E:EC:FE:1B:3C:27:5D:D1:9E:21:C2:48:69:7A:67
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 0196C728211040556FA468EE91A49A72C074
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 1246
Signing time: Tue 13 May 2025 01:00:17 +0000
Manifest this update: Tue 13 May 2025 01:00:17 +0000
Manifest next update: Wed 14 May 2025 01:00:17 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: TOMNTkjPlQwCHvep678wSzpyOghIpV3KVyIDmRcZrgo=)
2: ogQz1j5jLQsKEpzhS2JSyEZnZ6I.roa (hash: B7xqxcI+bkCsaT71C5rhEWIjLfcjAKzC1lxv7kehuvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:28:21:10:40:55:6f:a4:68:ee:91:a4:9a:72:c0:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: May 13 01:00:17 2025 GMT
Not After : May 14 01:00:17 2025 GMT
Subject: CN=7d0cc182749eecfe1b3c275dd19e21c248697a67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0b:29:c0:97:97:66:e2:c7:dc:c5:c7:ab:31:
af:81:51:8f:c3:ff:cd:ab:53:21:1b:8c:48:c3:31:
66:22:b0:d3:e3:2e:f4:f2:f9:eb:d1:ba:70:4e:95:
02:20:81:5b:62:48:72:01:9e:49:6b:3b:0a:04:77:
e0:98:1f:6c:fe:30:35:88:cd:2a:9a:c1:98:35:95:
cf:b5:90:e6:4f:2c:a6:d1:83:69:2d:fe:15:28:cd:
f7:58:60:88:1d:e6:c9:0d:e5:02:31:5c:71:1c:af:
db:c4:3c:42:ba:d1:ac:ad:3d:a6:34:97:10:c6:76:
76:a1:e0:0d:93:8f:08:2f:34:08:22:50:6d:ad:59:
6a:32:4c:44:ee:c7:7f:42:41:0d:c5:11:c9:b6:91:
34:7c:f0:3e:a3:00:d2:20:31:e9:ad:ae:f9:46:31:
32:71:02:65:db:03:4d:29:60:27:46:24:2d:a3:47:
c2:7f:c4:92:71:c5:71:21:cd:ce:25:f8:5a:e0:e8:
cf:ee:b0:e1:f0:55:f7:76:9e:ee:2d:36:c7:e6:35:
38:44:40:72:f6:a0:b1:af:58:d2:b1:d5:d8:cd:c9:
ac:94:a2:0e:35:62:c6:39:91:c1:0d:fd:32:00:62:
0c:93:c0:b4:2a:d5:a2:5c:14:9b:16:ed:e7:80:6b:
02:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:0C:C1:82:74:9E:EC:FE:1B:3C:27:5D:D1:9E:21:C2:48:69:7A:67
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:b2:2d:20:a3:1b:4e:c5:f5:d3:ea:14:b0:d4:c9:26:3a:9c:
3e:ff:9a:5f:0f:ee:49:86:20:a9:ed:9e:5b:8e:a7:97:7d:ab:
11:3b:4a:99:04:24:16:4d:d3:bd:7e:3b:08:41:f8:2d:bf:95:
ed:b8:18:72:88:fc:8b:3b:69:18:f6:bb:07:d0:39:10:9f:77:
3f:e6:67:40:bb:08:6f:7e:8a:55:01:56:89:8c:88:e6:75:55:
15:be:4a:81:3e:6a:28:f7:09:2e:91:71:32:d4:87:17:e1:d8:
0c:22:5a:30:99:b1:46:68:f5:c9:d3:0b:59:68:74:a2:25:77:
dc:74:37:1b:b4:38:85:44:33:55:95:e9:6b:ac:bb:5f:68:f3:
f4:15:fc:4b:a5:09:64:be:57:4b:48:b2:0e:f0:bd:74:9c:43:
b6:60:38:56:2a:82:d2:a1:b9:7f:09:3e:6d:91:2c:41:9b:75:
4d:fa:af:ab:21:90:2c:97:00:db:5b:61:cd:b0:db:af:0b:3b:
e8:79:55:c3:57:41:6c:52:91:d1:41:a7:1d:d5:84:50:0a:49:
1d:21:e0:e2:28:2c:37:5c:1f:93:98:8a:2a:51:aa:f5:d6:56:
b8:e8:3b:71:b6:b5:d8:3a:73:c9:e9:0c:80:27:9b:b4:87:4c:
a3:fc:fa:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 06:11:52 2025 by rpki-client