Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: K8vKf2qvKIvRWL9ZBSLdIaXy/2icqN9ytTiImPso0ik=
Subject key identifier: AC:B5:85:4C:D9:48:1E:89:A1:16:F3:95:83:F4:82:68:B9:9A:C0:43
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 01964BFD494A5FB594691557E7C3E6DBFC19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 01A7
Signing time: Sat 19 Apr 2025 03:00:12 +0000
Manifest this update: Sat 19 Apr 2025 03:00:12 +0000
Manifest next update: Sun 20 Apr 2025 03:00:12 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: aY2n1qzH0y3lJEUENGBS5y482MmcvPnXWAKGA9TqiC0=)
2: S9_pIBHq75Wq7oGW-jAli5gxMaE.roa (hash: cpq5fUvjVAhKKLO06wh9HRGgk0x/xpun3Cli9g36l8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 03:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fd:49:4a:5f:b5:94:69:15:57:e7:c3:e6:db:fc:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: Apr 19 03:00:12 2025 GMT
Not After : Apr 20 03:00:12 2025 GMT
Subject: CN=acb5854cd9481e89a116f39583f48268b99ac043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d2:9f:f1:67:42:ef:25:62:7e:84:dc:23:cf:
2d:52:e1:38:39:a2:69:07:fd:0a:60:2d:59:bf:40:
2c:c2:82:24:85:d3:a3:74:ba:bc:9b:7e:16:48:24:
99:69:4b:ac:12:fa:c5:0f:fe:29:a6:49:0c:ef:b7:
43:f9:f3:de:64:60:3f:d3:61:06:7b:ac:0f:cf:c4:
79:00:01:fb:be:4e:f4:5b:a6:3f:46:2d:9f:d1:64:
fc:dc:6c:38:a4:55:0a:26:cf:a0:4b:53:99:55:78:
0c:68:88:3f:17:f8:e3:22:44:6b:22:68:49:73:96:
0c:2c:bd:df:7c:97:b8:f8:6f:94:49:9f:08:d3:0b:
c6:c3:0d:d2:86:d5:d3:b2:6c:13:bd:08:d1:80:2a:
88:ad:08:33:d6:56:eb:db:c8:4c:4c:16:a3:aa:5d:
3e:6d:d8:10:5e:bb:39:fc:0b:71:6e:43:f3:48:60:
06:1c:a3:63:be:67:2d:eb:48:88:17:ad:07:12:8d:
11:75:28:3f:34:86:c8:59:8a:c2:3b:05:8b:f6:c9:
e8:7f:68:16:8e:eb:99:27:5b:09:e8:de:0a:83:19:
cc:e9:4a:60:08:73:61:4b:a0:76:1b:c6:8f:8a:2c:
f0:6c:41:b2:7a:96:ff:ea:d2:f4:5e:a0:d0:f7:dd:
3a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:B5:85:4C:D9:48:1E:89:A1:16:F3:95:83:F4:82:68:B9:9A:C0:43
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:3a:43:43:a2:c9:bb:0c:fb:8a:59:61:5d:76:e2:df:78:78:
13:66:cb:c3:3e:85:21:a2:4c:53:18:6e:21:a8:47:1e:0e:98:
37:95:5f:3f:ba:c2:c9:f3:69:31:3c:f5:20:78:fb:d5:09:64:
ac:48:f1:98:aa:5c:14:73:b0:c4:bb:70:8e:30:0e:6a:19:2d:
62:7f:de:0f:42:6d:a6:93:a5:66:41:4c:7b:92:d6:94:fe:3c:
6d:54:52:c6:c1:8e:7c:26:3d:85:42:d6:90:2d:05:fa:6c:28:
9e:15:74:16:2f:03:d5:bb:9a:af:4b:8f:ec:ea:fc:30:49:44:
a1:74:35:43:04:a9:a8:74:4c:c4:3e:5e:11:1f:58:57:dc:c8:
fd:74:1f:9d:5e:73:6d:f5:d7:3c:f9:5a:b7:9d:39:65:ab:e9:
89:7a:a4:65:95:c5:15:a7:d3:00:ef:55:0e:03:8c:f7:d3:da:
71:b4:5c:d2:25:a7:89:b2:26:29:51:05:e5:0c:e1:ba:8e:7d:
b9:87:0e:1e:e5:a3:d5:fe:9f:9e:0e:76:08:73:e6:02:14:3d:
c8:50:d1:84:0d:05:79:e1:c7:02:48:37:12:41:fe:0e:1c:fd:
c0:05:69:ed:4a:76:a1:aa:11:37:67:e0:43:e8:00:68:b2:a0:
d9:e8:02:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:43:56 2025 by rpki-client