Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
File: 2QrRERMYMAumeOiOBQKx_FHjU3k.mft (raw, json)
Hash identifier: zeU3ACsr0ccyNQOrxsIeAKEOTU8fcox35rY6Ma3WO54=
Subject key identifier: 99:E3:84:4C:E0:83:CC:2D:C2:5B:DE:66:1B:17:B0:F6:58:D2:0C:E7
Authority key identifier: D9:0A:D1:11:13:18:30:0B:A6:78:E8:8E:05:02:B1:FC:51:E3:53:79
Certificate issuer: /CN=d90ad1111318300ba678e88e0502b1fc51e35379
Certificate serial: 0196556E96E3AA49B06538A6CF4DAD38510D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
Manifest number: 0108
Signing time: Sun 20 Apr 2025 23:00:33 +0000
Manifest this update: Sun 20 Apr 2025 23:00:33 +0000
Manifest next update: Mon 21 Apr 2025 23:00:33 +0000
Files and hashes: 1: 2QrRERMYMAumeOiOBQKx_FHjU3k.crl (hash: I4CBrb+OvyAyO/p2sGiMcyPzKnz5FBurl3dh9yOl5mw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 23:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:6e:96:e3:aa:49:b0:65:38:a6:cf:4d:ad:38:51:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90ad1111318300ba678e88e0502b1fc51e35379
Validity
Not Before: Apr 20 23:00:33 2025 GMT
Not After : Apr 21 23:00:33 2025 GMT
Subject: CN=99e3844ce083cc2dc25bde661b17b0f658d20ce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a3:fe:3a:d8:97:5c:8e:dd:fd:aa:04:fa:3d:
79:da:a5:2a:df:c0:59:10:4c:d1:a4:61:53:94:d7:
1b:d6:a0:be:96:08:31:68:dc:3e:da:6d:c5:e2:44:
52:72:98:30:29:95:d5:a3:03:a5:26:02:68:83:28:
96:31:2e:f9:8f:53:07:8f:63:a7:3d:a5:49:08:07:
27:ce:c2:e1:8d:d4:7f:76:d1:33:27:d4:e9:5b:0d:
72:06:49:a5:9c:ad:39:8e:c8:2d:46:65:76:13:11:
1f:c8:fd:43:a8:18:c0:78:b7:28:1e:ae:c1:2d:1f:
08:01:24:28:c4:1a:c2:fa:19:f1:f5:4b:08:dd:61:
31:10:f1:d3:c2:00:32:31:ce:38:19:d7:e7:5b:ac:
66:dc:95:63:3e:16:76:18:a2:4b:42:65:91:06:68:
b9:07:5b:6a:fa:f4:f8:99:f8:4c:a2:cd:4a:b2:1f:
e2:5b:df:8b:98:3f:ee:ad:f3:6c:ad:15:de:36:19:
aa:e1:f9:f7:0e:ea:4f:f5:d6:3e:fb:e0:df:f3:3c:
d9:93:71:fc:cb:4b:57:1d:31:1c:22:48:85:24:ce:
25:38:42:53:42:20:0f:c2:03:3f:1c:c3:f7:82:2f:
60:b7:f7:44:3a:20:53:ab:c6:16:55:0b:a0:c9:89:
9d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E3:84:4C:E0:83:CC:2D:C2:5B:DE:66:1B:17:B0:F6:58:D2:0C:E7
X509v3 Authority Key Identifier:
keyid:D9:0A:D1:11:13:18:30:0B:A6:78:E8:8E:05:02:B1:FC:51:E3:53:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:16:a8:86:36:bf:df:76:bf:04:af:6c:6b:83:92:6e:26:7f:
e4:54:b2:70:83:e3:0f:b7:30:99:fe:24:90:19:df:38:66:9e:
96:09:ae:d8:90:34:45:89:58:f5:af:f4:59:29:4c:cf:71:2d:
ba:58:a9:74:77:b3:d3:f2:cd:5f:92:18:fc:ce:b0:dc:cf:5c:
72:a7:36:bd:ea:82:8d:66:a7:9d:a0:49:61:d6:cb:d7:e6:89:
68:89:93:b1:46:86:03:6b:67:b7:8b:59:7f:48:0a:4d:8a:fe:
5d:ca:80:af:74:5c:d3:e0:25:5a:c1:f5:a8:20:25:b8:25:5f:
ab:ab:40:4c:78:5c:bd:45:88:f8:6c:6b:4a:3d:60:d6:94:cf:
c1:b3:a5:8a:af:b3:2f:4f:08:07:a3:8c:51:93:b0:54:16:d6:
8c:58:f3:2e:02:c8:11:36:84:05:63:40:73:eb:51:02:b5:de:
31:59:88:96:a7:91:c3:a6:90:e6:33:41:3c:f9:0b:6a:57:47:
f3:94:2d:19:16:27:45:2c:ec:07:cb:ca:4b:3a:9c:c7:a8:af:
e7:61:55:73:a3:38:e9:bd:43:2d:09:79:d1:e8:6f:7e:89:ab:
43:69:6f:7e:fb:3a:0a:aa:5b:eb:d5:8a:00:58:e6:11:94:ab:
43:26:18:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:35:01 2025 by rpki-client