Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json)
Hash identifier: 37hR/nYxBErxoN6iKEzGrnvxyhsX2e4HDSn7XiVm7L0=
Subject key identifier: 0A:13:91:F5:96:92:37:E6:5C:EA:07:C0:D7:81:2E:8D:AF:6D:CA:E6
Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac
Certificate serial: 01958C29308E6C3C723D47B04B0D21AC97F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
Manifest number: 0A2F
Signing time: Wed 12 Mar 2025 21:01:04 +0000
Manifest this update: Wed 12 Mar 2025 21:01:04 +0000
Manifest next update: Thu 13 Mar 2025 21:01:04 +0000
Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: TnTl7kzMg+AEYMjnIncLkom6ABJk04n3KXWMxSAWzkI=)
2: x6hLDer_XW1q_iEu4GXkzkZyC4s.roa (hash: WqVvea5/LNqbNIIZsdml33Mg9/QcNbUM12u8YdmaIWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:30:8e:6c:3c:72:3d:47:b0:4b:0d:21:ac:97:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac
Validity
Not Before: Mar 12 21:01:04 2025 GMT
Not After : Mar 13 21:01:04 2025 GMT
Subject: CN=0a1391f5969237e65cea07c0d7812e8daf6dcae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0e:e8:0a:c3:6f:ec:98:39:00:82:4f:0a:89:
87:36:2a:51:c4:27:52:a7:13:b7:0d:42:fa:68:f6:
4c:83:88:21:0f:91:8e:43:0b:d4:c7:1a:53:85:b2:
82:4e:5c:56:fe:0d:9d:9a:e7:02:e4:e5:f3:1c:1e:
e1:94:1a:08:e0:8d:50:0c:36:0a:54:bc:00:c0:d1:
64:fe:83:8e:37:bc:5c:3a:2c:ef:ce:3e:7c:16:3d:
fe:a6:c3:a4:6d:e9:90:d9:de:92:df:39:cf:02:77:
20:8e:91:fa:dd:fc:8b:c0:80:82:61:81:28:eb:70:
d7:52:18:ca:12:00:87:7b:33:00:58:62:18:50:cc:
36:a7:27:29:94:a1:19:e5:d4:6a:fe:1c:48:5a:8d:
ba:cd:01:c5:2e:78:74:9e:87:66:f1:ab:73:f1:19:
41:13:70:08:1b:e0:7d:0b:6d:01:79:8e:14:9a:e6:
25:42:c5:5e:6a:15:99:60:6a:b0:70:38:8a:7c:3e:
c6:b6:3e:15:30:0a:7d:14:a4:59:fc:72:45:ae:3e:
38:7e:7c:a1:58:a2:ce:f0:08:fd:9a:53:e2:91:bb:
91:0f:85:27:8d:6a:14:e2:93:2e:f2:e6:89:54:19:
53:70:c0:ef:9a:21:07:14:df:9d:40:6d:3b:bf:07:
8c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:13:91:F5:96:92:37:E6:5C:EA:07:C0:D7:81:2E:8D:AF:6D:CA:E6
X509v3 Authority Key Identifier:
keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:8b:44:45:c7:81:ff:72:f4:41:64:f7:16:ba:e3:1e:3a:d3:
62:85:49:23:91:37:54:02:a1:6a:65:eb:e6:09:af:9c:44:0d:
c1:26:d9:db:c5:0e:75:bf:4d:d6:33:79:fa:c2:2f:da:ff:5a:
67:dd:d3:f4:76:a5:e0:e2:45:27:7a:dc:3a:33:57:26:33:27:
3f:d8:c8:d8:1f:20:88:fc:e2:96:8e:6d:10:a3:b1:41:6f:10:
79:5a:70:f4:23:ce:3f:a8:27:fd:99:2f:f3:04:01:23:eb:4f:
c3:32:22:ba:56:16:2a:d8:14:3e:ce:ff:ba:6b:d6:e6:63:9b:
04:f5:70:7f:d1:7b:9a:b1:38:52:fe:80:99:d6:c6:29:65:ec:
28:62:31:cc:dd:05:c4:85:89:06:97:66:d1:bb:09:5d:99:fa:
63:b9:e2:a1:fa:eb:66:d3:9d:a7:5b:b1:60:c0:66:69:5e:51:
8e:7c:9e:e3:13:85:1a:8d:e3:58:71:45:25:d5:f1:32:d0:99:
2c:66:eb:8f:24:a6:b2:cb:97:de:cb:85:4b:a4:fa:9f:02:5e:
91:e7:b0:22:f5:96:5f:07:c0:f8:8e:b8:cc:e7:10:f1:cb:a0:
e1:bd:77:79:c4:ce:cd:6a:c1:bd:58:09:07:1e:ef:a9:45:cd:
9b:95:ab:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:27:02 2025 by rpki-client