Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
File: 2xTnpr6Xzsb1vBpninbqbRYZwwY.mft (raw, json)
Hash identifier: E9AL7LP1usT1sfoY+ZJ8dhapNgBRdQ5TjhnjPPiqZgk=
Subject key identifier: 7A:B1:BD:F1:8F:1C:90:45:BF:57:A4:03:3A:B5:1D:6F:5F:05:DE:39
Authority key identifier: DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
Certificate issuer: /CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Certificate serial: 0196545C34383CB624F9505D5248030FA8A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
Manifest number: 12C1
Signing time: Sun 20 Apr 2025 18:00:50 +0000
Manifest this update: Sun 20 Apr 2025 18:00:50 +0000
Manifest next update: Mon 21 Apr 2025 18:00:50 +0000
Files and hashes: 1: 2xTnpr6Xzsb1vBpninbqbRYZwwY.crl (hash: J+oQic6QZZx/52g0LX0Y3/F2xGw52WqiRULjY4UlRKk=)
2: FjL5MqcK0dv0phSETNIP5t1SBWg.roa (hash: HghvVzu9hsO9wX3NaFq2EgUKtQhDl/MHwAlkrJlofBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 18:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:5c:34:38:3c:b6:24:f9:50:5d:52:48:03:0f:a8:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Validity
Not Before: Apr 20 18:00:50 2025 GMT
Not After : Apr 21 18:00:50 2025 GMT
Subject: CN=7ab1bdf18f1c9045bf57a4033ab51d6f5f05de39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:dd:37:eb:ac:95:44:51:e6:a4:3d:3e:bc:6c:
d0:70:ad:99:3a:24:d7:c7:bd:f0:4e:15:66:b0:c6:
de:68:11:b4:87:60:b4:c4:dc:5c:f4:6d:cf:ba:3d:
00:25:fb:cc:2e:1b:14:7b:8d:55:78:1d:ed:37:0e:
7a:e6:7e:7a:f2:a1:c7:62:78:b3:29:47:0e:85:c1:
91:a6:31:c8:24:00:de:28:45:c1:2e:45:7f:50:81:
e8:00:4f:e1:42:49:3d:5a:ac:5b:0b:8b:39:e5:a6:
d3:70:f5:8b:c0:67:d3:b2:02:4e:d4:59:27:82:0b:
69:9f:cb:c5:78:87:fb:3e:50:51:e8:40:2e:10:0c:
09:2b:32:e4:85:28:c3:69:2a:3e:82:c3:0a:cb:62:
4a:ac:24:d0:34:80:f4:61:0c:5d:b7:48:03:64:57:
9d:35:37:8f:84:36:73:fe:54:3b:17:d8:dc:84:76:
f1:a4:83:a1:8a:bb:bd:75:2a:89:71:25:5d:9e:96:
3e:4c:93:60:0a:de:df:6b:ba:c3:51:4e:c3:6a:2e:
19:1a:3e:ec:0e:1f:f3:67:d8:79:ba:1e:8b:71:fd:
52:ef:3e:ca:48:13:a3:e6:4d:98:10:a7:88:83:be:
72:f3:98:52:87:13:a7:54:2b:17:01:59:1a:c6:e5:
94:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B1:BD:F1:8F:1C:90:45:BF:57:A4:03:3A:B5:1D:6F:5F:05:DE:39
X509v3 Authority Key Identifier:
keyid:DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:06:f9:4b:65:df:56:68:40:2a:da:96:55:65:ef:77:a2:26:
1d:1f:79:c5:b0:fa:fa:01:a4:8a:14:86:95:cb:5e:65:46:b1:
4a:8e:a0:67:f7:fc:b4:24:cb:ba:7c:95:80:2c:4c:a0:03:d3:
9a:db:2f:84:c5:43:62:ae:01:cc:c6:af:11:7c:54:d1:52:0b:
ec:b1:57:59:98:8f:82:76:c6:d4:29:3a:ac:d5:07:dc:6c:62:
a4:7c:5e:3f:73:7f:55:63:fb:67:c0:aa:8b:dd:e8:50:6d:68:
6b:4e:35:15:81:06:ef:0e:c5:c8:ea:0a:bc:ef:4e:8a:ab:5e:
a0:b3:e9:c7:67:bf:d3:fc:12:6c:cc:dd:e3:e7:51:7d:0e:46:
08:9a:41:10:4f:73:62:f8:f0:9c:e4:09:95:84:bc:27:a6:28:
5c:a4:be:3b:c4:9b:c2:ea:a0:d1:63:64:6c:92:7c:69:91:84:
b9:82:e2:64:82:5d:63:c6:25:0c:1c:09:c4:55:1c:43:e4:28:
59:2e:23:82:cd:d0:a6:3e:f0:9f:93:3b:87:4a:f8:6c:9f:77:
10:67:62:d7:61:e4:e5:67:7f:9b:a5:88:27:cd:36:03:a7:c9:
0b:80:d6:18:c0:bc:4f:9f:9b:73:21:c7:70:bd:82:cf:aa:58:
2a:5b:24:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:11:44 2025 by rpki-client