Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: UECv+R+cN5i5o65oOpF5jI0h93z1RsZ53XkmY5Jkynw=
Subject key identifier: 88:D7:17:99:E5:87:F4:B9:D9:D7:3B:AC:33:6C:EC:C6:74:57:0C:1D
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 019655A5C08C5475BBD85F17502704DAD14A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 14FF
Signing time: Mon 21 Apr 2025 00:00:48 +0000
Manifest this update: Mon 21 Apr 2025 00:00:48 +0000
Manifest next update: Tue 22 Apr 2025 00:00:48 +0000
Files and hashes: 1: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: Xdct0lfRP1KHy7Q/Y8iTzaP/O5RR8R1Fbf4B6DQiM5o=)
2: Lr1Je63vs8PyvkKI1_N9un3D4qE.roa (hash: hbRmpQBdQ4b6GdZPWppZ6a4wJHdosMiH1PY+13rdPiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a5:c0:8c:54:75:bb:d8:5f:17:50:27:04:da:d1:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Apr 21 00:00:48 2025 GMT
Not After : Apr 22 00:00:48 2025 GMT
Subject: CN=88d71799e587f4b9d9d73bac336cecc674570c1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2a:d6:39:50:b3:a4:03:b5:58:b0:97:c5:ac:
ff:00:c5:ca:49:fd:9c:f1:3b:09:d7:5f:dc:b7:4d:
c0:f5:5f:99:d7:09:2f:92:3b:f2:4c:6f:d5:2c:e2:
64:6f:ab:9a:b0:88:e0:24:1f:5f:be:56:2c:66:7d:
09:da:23:14:40:82:90:d3:52:35:63:76:07:28:12:
16:15:d1:f2:40:f7:48:91:48:39:3f:3b:3c:82:84:
7b:31:fa:a1:3a:28:7b:c1:63:f0:78:19:43:67:eb:
14:6b:d7:3e:cc:94:53:43:ff:8f:8e:82:84:5e:d9:
dc:e9:d1:7e:f2:7f:f3:eb:3b:a3:0d:8b:a3:3c:85:
dd:f6:3d:e1:91:f7:15:d6:38:ce:60:c8:14:d2:c5:
68:00:42:70:33:c2:f2:de:76:73:24:3c:6d:90:ca:
93:4d:f8:2f:de:23:01:f2:71:9d:a6:eb:62:46:59:
09:34:65:f3:3b:53:e9:e2:58:5d:72:ed:dc:17:24:
5e:e5:21:42:56:22:45:51:51:d0:58:75:7b:79:48:
2b:52:9e:35:c6:60:2d:86:11:ca:7b:42:6a:93:57:
38:24:e6:35:56:06:35:63:28:d0:27:08:7c:07:2d:
03:27:c7:8d:64:9e:4e:77:0d:01:33:b6:65:3a:64:
b3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:D7:17:99:E5:87:F4:B9:D9:D7:3B:AC:33:6C:EC:C6:74:57:0C:1D
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:09:52:58:9f:26:2d:2a:1b:94:88:78:15:a4:64:3f:d1:1d:
ae:73:61:d7:3b:bf:30:1f:b4:45:ea:1c:32:fe:43:d2:78:3f:
b0:0d:da:e4:e2:fa:d7:b9:ec:7a:ad:b7:6b:78:89:d0:84:d8:
56:50:5a:5a:89:1a:ad:53:0d:2b:61:18:58:8e:f9:cc:73:d7:
fa:a2:86:28:ee:27:5c:78:04:ea:7c:2f:78:46:1c:ed:0c:fd:
23:b9:eb:fe:7e:95:9f:0b:0c:dd:9c:87:00:46:79:cd:3f:75:
90:c9:44:02:29:a7:b6:74:b4:5d:11:b3:bd:e2:ef:c3:50:50:
bc:be:29:b3:ba:53:35:ca:cb:b9:ed:3f:45:4f:7b:66:69:0b:
b4:44:f2:87:0e:49:d7:d1:2c:f0:5a:7c:94:b2:68:3a:b5:51:
84:31:eb:42:34:f9:ae:21:e2:0a:1f:01:d8:4a:f0:92:07:fc:
3f:cd:7a:f7:43:10:5a:6d:14:69:bc:60:98:dd:0d:85:86:86:
23:f7:48:1b:bc:41:45:4f:aa:a1:ac:56:96:5d:3b:b6:20:f5:
9f:52:3b:39:61:e3:a2:7c:39:ce:00:05:c1:e3:4d:d5:56:66:
49:15:14:b2:5c:1c:59:76:6d:50:22:85:3a:78:be:2e:ec:b3:
d1:66:f0:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:02:05 2025 by rpki-client