Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
File: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft (raw, json)
Hash identifier: jtSC2vyP8EsAFKXZWw66JZqBHrvvve5eGzyqbg4ahwc=
Subject key identifier: 37:A0:69:C6:17:A7:97:0E:4A:5B:53:B8:62:B3:5B:E5:5F:CA:40:89
Authority key identifier: D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
Certificate issuer: /CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Certificate serial: 01964DB516CF43A418D986E6F0437145FF47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
Manifest number: 123E
Signing time: Sat 19 Apr 2025 11:00:35 +0000
Manifest this update: Sat 19 Apr 2025 11:00:35 +0000
Manifest next update: Sun 20 Apr 2025 11:00:35 +0000
Files and hashes: 1: 0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl (hash: Rh72MHE1S2kD2ORDQssVrj50lkYNUlNwo1+0s0ZdNq8=)
2: 5tz1cuLC3Spal7LSIEjI-Qlcl6U.roa (hash: XSoR4/ODhnGd0USG7NRxHx6V9kNwJuT3OUfa19EcNCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:b5:16:cf:43:a4:18:d9:86:e6:f0:43:71:45:ff:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b36ad28e521edab4b4dea349a27772d4b2a7be
Validity
Not Before: Apr 19 11:00:35 2025 GMT
Not After : Apr 20 11:00:35 2025 GMT
Subject: CN=37a069c617a7970e4a5b53b862b35be55fca4089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:35:9d:21:52:4e:fc:a4:93:d3:2d:80:22:9e:
d2:00:0b:70:bd:b8:a8:3c:2c:fa:2a:fc:f9:23:24:
38:fa:b2:1c:6b:08:4f:81:8c:47:95:36:a8:ed:71:
b8:31:50:80:2d:ad:62:c2:01:5a:5f:28:a3:31:fd:
8b:7c:2b:17:7e:15:1f:5b:7d:b5:d1:a8:ae:1f:d6:
8e:1d:06:b1:c1:8f:03:14:04:b3:60:3e:91:9c:f7:
95:11:1d:eb:dc:e6:4c:5a:0f:37:c2:dc:4e:f8:f3:
00:cd:1d:6e:51:c0:d1:4d:a2:0b:66:cc:93:c2:2c:
68:55:54:4e:57:a8:50:f4:a1:73:0a:80:b6:e4:43:
4d:ed:47:e2:51:3d:7d:e1:52:b6:3a:32:bf:0c:2b:
4a:0e:46:43:14:8d:ba:34:53:e8:19:43:4a:cb:85:
38:d1:54:c4:9c:6b:de:fd:fa:08:7c:f1:03:ad:5d:
50:7a:c1:18:13:7a:e5:07:13:47:e8:d6:5b:3a:02:
35:3c:54:ec:50:d6:10:9b:34:e5:6b:50:d1:d7:79:
b4:57:3d:ef:73:7d:83:39:35:ef:bf:07:9a:c1:36:
3c:3a:46:fd:73:94:81:41:87:3b:81:59:3a:70:81:
74:3e:72:0a:96:05:c3:86:a2:38:07:af:46:53:f0:
a4:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A0:69:C6:17:A7:97:0E:4A:5B:53:B8:62:B3:5B:E5:5F:CA:40:89
X509v3 Authority Key Identifier:
keyid:D2:B3:6A:D2:8E:52:1E:DA:B4:B4:DE:A3:49:A2:77:72:D4:B2:A7:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rNq0o5SHtq0tN6jSaJ3ctSyp74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3a9a0b-d424-4eca-a938-92a877bb19f7/1/0rNq0o5SHtq0tN6jSaJ3ctSyp74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:f6:c1:f7:46:c5:8d:ef:4f:78:9a:7c:d7:3f:c5:23:b5:91:
e1:f5:f3:d7:32:e9:de:d0:05:54:db:e8:e7:22:39:89:da:ed:
98:7c:32:10:06:fa:39:43:75:06:69:91:09:20:c6:ac:a9:70:
3c:cb:f0:a9:ed:72:6c:a3:b9:26:b1:8a:c0:06:2a:50:ea:87:
55:f6:74:d4:6c:2d:56:cc:a4:4a:49:30:ff:82:69:7a:0b:23:
bb:2b:6a:e1:08:07:a2:77:c1:b7:90:6c:6f:69:d9:27:f1:f0:
cc:1b:dc:40:cc:1e:0c:3a:a3:ab:da:88:2b:6e:83:19:46:63:
c8:f3:a0:a9:fd:e0:8f:1f:59:f7:37:16:76:c4:89:8c:4a:80:
23:35:d7:52:3d:1d:11:24:a6:04:43:06:03:52:6a:61:0a:ad:
37:6b:27:a6:67:85:95:99:28:6c:d6:e8:00:6c:7b:77:c9:8d:
97:71:12:e2:1e:c3:f6:e0:cd:51:bb:dc:bd:05:9a:ae:41:b4:
eb:0a:97:fb:12:67:cb:20:b9:ff:05:6e:4d:0a:30:4c:b7:35:
21:7a:f2:a2:8a:a2:25:7b:24:16:50:a9:80:12:0c:cf:d3:53:
39:bd:1f:fb:bc:51:76:b1:4b:dc:0d:e4:d2:a3:e2:aa:7f:23:
d8:a5:c3:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:13:42 2025 by rpki-client