Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: RZ0k8gTutZ4u3FII3z1ciZilDiau7DE7x6BPSYBGhKA=
Subject key identifier: 5F:42:A0:7B:1A:36:79:49:D2:5F:2B:A9:D8:D7:59:E1:E5:38:9C:4B
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 019658DD4A5B325A274A567AD5E09C60654F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 0A58
Signing time: Mon 21 Apr 2025 15:00:19 +0000
Manifest this update: Mon 21 Apr 2025 15:00:19 +0000
Manifest next update: Tue 22 Apr 2025 15:00:19 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: 5ifTU5Xv7uQ7SK8Q4VW2b/UKatkyHxjJ8m8Y1wkffAE=)
2: YfAgsC_cdxTTdTc3lRuKLUA9Ek4.roa (hash: 6JxCw6QKy553BkYrq5SFqTFyUQePShSh+1QhYyHxmes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 15:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:dd:4a:5b:32:5a:27:4a:56:7a:d5:e0:9c:60:65:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: Apr 21 15:00:19 2025 GMT
Not After : Apr 22 15:00:19 2025 GMT
Subject: CN=5f42a07b1a367949d25f2ba9d8d759e1e5389c4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:49:3c:ec:bb:ee:4b:db:95:1a:d2:e7:d0:ff:
27:89:54:fa:a2:c2:38:3a:b8:23:4a:4d:5d:0e:86:
64:9f:51:26:90:04:91:fa:7f:f9:0b:6c:2d:1c:f9:
01:fd:21:38:c5:05:0a:1a:b2:0f:f8:f7:5e:9d:12:
34:3b:bc:9b:ae:bd:81:09:a9:8c:9e:f3:38:03:41:
a9:b2:38:9e:f0:80:3c:91:59:2d:74:3b:c8:62:d4:
88:34:85:01:b6:72:83:09:ce:ea:67:1d:5f:50:f4:
99:82:b4:e0:53:01:60:67:69:3b:4d:48:fe:ff:57:
18:a2:e2:5f:eb:3e:c0:c9:34:f3:b7:d0:00:d1:55:
d8:a5:c8:ff:87:1e:8e:2f:d6:10:ce:59:dc:af:13:
11:5e:75:50:88:20:21:ae:8c:3a:48:7f:a8:70:e8:
e7:40:49:6d:41:91:c3:37:0b:53:b3:ff:7e:a3:2b:
1e:c2:66:c9:c7:82:c6:b2:c0:cf:4b:ac:ad:cd:ed:
f4:69:14:c7:8e:09:96:36:74:70:54:0e:b4:0f:bb:
73:2d:7e:7d:98:c9:54:7f:1e:3a:90:5c:bc:ea:81:
d7:ca:6d:d2:0c:d3:c0:fa:72:70:48:1b:b2:1a:12:
8c:fe:aa:46:d6:2d:55:b4:c0:6f:aa:bf:c8:75:2a:
2e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:42:A0:7B:1A:36:79:49:D2:5F:2B:A9:D8:D7:59:E1:E5:38:9C:4B
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:2f:55:0e:6c:99:20:07:65:05:07:25:2f:e9:b7:27:76:2b:
95:5d:2f:cc:69:61:45:8a:d6:10:88:c2:fc:a2:12:a3:01:6d:
f6:cf:e7:04:8c:e3:21:c1:8d:e2:25:3b:19:33:e7:f0:1c:43:
c0:9b:65:f1:a5:40:8e:23:7c:07:f3:5e:a1:51:ce:f8:ec:cd:
f7:9d:54:5f:b4:54:c5:27:8f:41:fe:d9:4e:fa:bd:8a:0c:a0:
16:db:c3:3b:20:70:f5:79:2c:02:83:8c:4e:3c:61:19:34:da:
9b:97:bd:53:46:51:47:da:24:64:d4:16:9a:88:47:13:30:d6:
12:31:f5:f5:ec:1e:35:09:37:18:22:15:74:3f:af:16:cb:a9:
b3:f1:6f:e2:77:dc:40:fb:ae:44:a3:d9:e6:e0:b1:68:db:fa:
d8:a2:0d:99:42:d0:4c:8c:1d:74:fe:bb:d5:b9:c2:bb:9a:f0:
8f:82:55:17:90:da:22:00:d7:a9:29:8d:28:10:09:db:31:25:
ff:0b:42:0d:10:60:a7:a3:37:09:7a:6f:f6:25:d5:0b:98:14:
a1:6e:e4:3c:d2:fb:89:f6:bd:d8:80:25:2d:d3:25:7f:e2:04:
c1:83:e3:70:a2:ca:c1:9c:5e:d8:ea:34:5e:db:1f:9a:d1:95:
d5:61:39:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:05:43 2025 by rpki-client