Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
File: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft (raw, json)
Hash identifier: dGFQJRv5KyPkI+COf1RHEAEMwwuspqz1QMWclbY93GE=
Subject key identifier: 06:DA:A2:59:91:E4:9E:64:42:7B:0E:27:11:DB:6A:CD:27:7A:17:B3
Authority key identifier: DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
Certificate issuer: /CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Certificate serial: 01964E59FEAD38CB455A93F4A0B7D5F09BEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
Manifest number: 033C
Signing time: Sat 19 Apr 2025 14:00:42 +0000
Manifest this update: Sat 19 Apr 2025 14:00:42 +0000
Manifest next update: Sun 20 Apr 2025 14:00:42 +0000
Files and hashes: 1: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl (hash: x7YEixXoOeq+xYJCxXjanAD+WiF3d9+x/syFcj3AUqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:59:fe:ad:38:cb:45:5a:93:f4:a0:b7:d5:f0:9b:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Validity
Not Before: Apr 19 14:00:42 2025 GMT
Not After : Apr 20 14:00:42 2025 GMT
Subject: CN=06daa25991e49e64427b0e2711db6acd277a17b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7d:5d:49:f4:82:44:b9:84:ad:b0:c7:d9:b2:
99:8a:3c:53:25:98:c1:46:10:5d:6a:f6:11:01:b7:
dd:a8:03:f5:6b:28:b6:78:95:9f:81:70:65:ce:79:
9e:6e:8c:1b:4f:3f:b3:2e:76:ea:f0:37:21:41:cb:
89:1e:6d:51:24:e5:b1:72:77:ce:81:5e:a6:cd:ef:
29:6b:21:e3:7c:bd:ce:34:2b:3c:c7:db:cc:0b:d4:
81:31:0c:17:23:e5:b9:6a:48:11:39:64:55:f9:0f:
6f:61:17:97:db:c4:43:c0:87:40:9d:d5:83:53:df:
3d:a8:58:e4:cb:8f:55:b5:78:2c:63:91:ce:dd:57:
8f:31:1f:9f:b4:f2:3d:7f:a8:f7:86:b8:76:be:07:
e4:27:2b:93:8e:2e:88:16:56:81:a8:7a:a8:4a:8e:
d8:c1:1d:41:e9:1b:60:50:8c:d7:d1:7c:15:0b:5f:
78:0a:24:d3:89:8f:88:4a:f3:92:2d:c6:2f:f6:fb:
4e:d6:a5:78:bb:33:07:bb:c3:64:c7:42:b4:c0:ef:
50:75:ab:70:3e:2e:01:4b:e4:68:49:75:9a:3e:d5:
e7:3d:b9:63:8c:04:4b:a3:1c:f9:d1:eb:97:15:58:
ad:8f:2e:c2:32:6a:5f:da:ca:48:c5:07:ce:0f:b7:
68:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:DA:A2:59:91:E4:9E:64:42:7B:0E:27:11:DB:6A:CD:27:7A:17:B3
X509v3 Authority Key Identifier:
keyid:DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:ff:19:9f:cc:ae:67:56:f5:9e:48:21:b5:52:c7:bc:dd:44:
3c:9b:f0:9d:6e:48:81:2c:e5:86:ea:82:01:78:93:0d:1c:8b:
9a:20:4b:3d:0c:40:31:2f:8d:49:e1:9c:37:eb:d2:95:ec:da:
b8:e9:78:b6:35:d4:09:97:6d:27:a2:27:0c:e5:cd:f6:d4:9b:
81:d3:fb:53:f3:4e:7f:58:41:85:a4:cf:64:a3:1a:0a:3b:d7:
dd:8d:6b:4c:a3:84:9a:8e:01:12:9a:60:77:46:05:49:15:51:
9f:4e:d5:73:2c:67:fa:a8:7a:0e:b2:30:6a:0e:42:34:27:19:
68:b7:8f:79:af:79:52:2a:b9:96:c2:a5:f4:6a:55:3a:a2:d1:
0b:2e:d8:cd:11:f8:42:34:7c:ac:3f:95:df:58:ec:3d:4d:82:
ec:51:57:65:c9:3e:a4:38:63:c6:c4:cc:29:37:3e:72:4f:d7:
e8:79:f2:e0:b9:c9:9d:67:10:12:dd:cd:ed:3d:5d:e4:54:94:
f6:03:9c:a9:ca:07:6a:59:9a:96:bc:f6:07:4b:d5:79:f5:f8:
b1:f9:e2:4b:68:8d:e9:65:4d:ce:b9:82:d0:37:f9:98:b0:2d:
13:53:9d:c5:23:38:00:e3:1e:a3:87:7f:b6:d0:7e:aa:5e:fa:
37:45:bb:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 17:14:00 2025 by rpki-client