Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
File: 2gszzdt5m3vPXT3OAE_bqMPoZP8.mft (raw, json)
Hash identifier: qaur5RWu7qkk4rdEIqxf3EXpFLmlbBCsQjAU9whdFPQ=
Subject key identifier: 06:45:47:7D:9D:FC:3E:B5:F4:63:C3:59:BF:A2:33:E4:4A:03:41:1F
Authority key identifier: DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
Certificate issuer: /CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Certificate serial: 0196C615EE9E26F0A242DBCA31A53FA23AE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
Manifest number: 0BA2
Signing time: Mon 12 May 2025 20:00:48 +0000
Manifest this update: Mon 12 May 2025 20:00:48 +0000
Manifest next update: Tue 13 May 2025 20:00:48 +0000
Files and hashes: 1: 17FLk26rZWNpnvEJucbEAG-7zqY.roa (hash: qMmpcRGKwOqOR5+GsVwNkgRbdBAdNorVpaMiale+nXI=)
2: 2gszzdt5m3vPXT3OAE_bqMPoZP8.crl (hash: KJkBdinB4aWJ3A8rax4penDpJh0QYFvprScdsOaOJdM=)
3: bBGzNd5qGUUIPYH3-5zWMnwwyJg.roa (hash: 290Z2J6Jo9xanYpdqpciKr53wSmtU/PW4k3Qs+NnOTs=)
4: k29cbE30TGhu-1q8rRu7-jpqTg4.roa (hash: 9mQL8HUgIQzEZ7MXmoS/sUavd/K/UaaalJ5/ztoLSTk=)
5: s7mUu7WrVHVPJEBCCdi0H3bHpis.roa (hash: ExGJpFM76OJZURK1GFJNiBKKffY4pIrBrUBBm9tcC8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:15:ee:9e:26:f0:a2:42:db:ca:31:a5:3f:a2:3a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Validity
Not Before: May 12 20:00:48 2025 GMT
Not After : May 13 20:00:48 2025 GMT
Subject: CN=0645477d9dfc3eb5f463c359bfa233e44a03411f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a4:0d:10:bb:1c:c6:c2:84:02:05:60:43:4d:
64:12:42:a6:37:cd:fd:9d:16:15:ff:cf:29:e8:12:
7b:c7:96:3b:f9:a7:3e:1c:22:8d:94:fd:9e:c5:4a:
9c:54:5f:40:63:48:75:86:fd:d7:3e:1e:27:f5:4b:
86:5b:cd:a0:5b:ef:9f:49:86:da:bb:6b:7c:da:1a:
c4:02:47:b5:63:d0:53:2c:e5:28:7b:f7:8c:11:97:
ef:04:51:89:8a:cd:95:14:90:41:5c:12:40:da:31:
fd:eb:df:7a:91:81:a5:3b:94:64:5b:af:63:26:76:
b1:e4:3b:0a:69:07:29:d9:56:19:01:b1:e4:e4:20:
7f:db:36:4d:3f:fe:89:fd:b2:44:32:d8:d2:f6:8f:
57:d3:fc:0e:ee:50:1d:97:7e:d9:82:af:6d:b1:dc:
63:06:13:90:a0:ca:6c:c7:05:17:9e:5a:4c:bc:1f:
e7:98:78:01:14:2a:d7:98:54:da:db:0d:3f:4e:61:
a8:0c:c3:e2:35:d9:2d:14:0d:38:76:95:5b:19:b5:
8b:23:52:aa:55:95:9f:f1:25:cc:63:31:15:01:c0:
95:a6:2d:47:cd:b6:bd:aa:9b:05:e0:77:29:96:cd:
10:59:0f:33:dc:3a:1e:e5:07:f2:a1:9f:9c:be:9c:
19:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:45:47:7D:9D:FC:3E:B5:F4:63:C3:59:BF:A2:33:E4:4A:03:41:1F
X509v3 Authority Key Identifier:
keyid:DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:ba:3b:f9:e2:99:da:af:24:30:1c:2f:8f:25:29:d3:dc:b3:
f4:fc:79:23:19:dd:e5:92:1b:c6:97:2b:69:14:1b:76:ec:50:
b5:27:2c:5f:b9:1d:f9:e7:4e:3a:d6:cc:1c:24:15:50:4a:72:
42:b4:78:bb:06:b5:33:fb:47:d6:b1:dc:6d:c1:26:bb:05:76:
e8:03:37:67:29:19:50:e6:42:ce:98:5a:14:68:42:d8:72:4a:
b8:1c:cc:40:9f:02:0e:24:67:66:ca:f6:db:e5:47:e7:2c:36:
fe:38:b6:ce:94:ef:d4:ce:ef:7b:17:31:ba:71:34:be:60:f1:
54:25:8a:e6:dd:14:36:d0:1d:00:83:25:4b:21:0f:54:41:92:
72:85:89:3e:0f:75:b7:80:12:3f:17:59:b6:05:21:56:af:b6:
40:1a:72:92:19:dc:ee:bb:eb:57:aa:9d:ab:8e:5b:94:9f:07:
2e:fb:46:12:c1:4e:65:eb:40:9d:50:80:7f:af:c0:db:8b:09:
ad:4f:ba:6a:f2:cb:97:ea:9c:e0:1c:b3:da:83:33:ce:c6:49:
ae:9b:22:09:89:4c:b4:89:06:86:19:e1:8c:16:43:0f:8a:fb:
8b:ae:9e:37:34:86:4f:03:b2:72:c6:dc:97:54:fd:2c:a9:c1:
07:a9:15:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 01:44:31 2025 by rpki-client