Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
File: 2pa1va-ygzLa_oR87RT3pfrUXmk.mft (raw, json)
Hash identifier: T0g0O+BUWMbA2UcIUzcucllKnGuq/Bl9Sl0LDv2KVZ8=
Subject key identifier: 4A:B5:D8:A7:EA:42:4C:F5:3D:29:01:33:A5:82:B2:12:AF:85:A0:CE
Authority key identifier: DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
Certificate issuer: /CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Certificate serial: 019645C483022F461B58E6CAFFC34ABF50B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
Manifest number: 14F5
Signing time: Thu 17 Apr 2025 22:00:28 +0000
Manifest this update: Thu 17 Apr 2025 22:00:28 +0000
Manifest next update: Fri 18 Apr 2025 22:00:28 +0000
Files and hashes: 1: 2pa1va-ygzLa_oR87RT3pfrUXmk.crl (hash: 9/hzbgjYGOZdkguEqKvHV1uR2ucezIga/PTFX1ab1go=)
2: 99kZ91L5k4nve2PYsWtipJThPHU.roa (hash: bVtLb94sDBWJmE1C3lJHiBUqgO9xT7zdCZpTZaX8mXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 22:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:c4:83:02:2f:46:1b:58:e6:ca:ff:c3:4a:bf:50:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Validity
Not Before: Apr 17 22:00:28 2025 GMT
Not After : Apr 18 22:00:28 2025 GMT
Subject: CN=4ab5d8a7ea424cf53d290133a582b212af85a0ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:43:26:89:2a:3a:9b:af:51:46:b2:ac:c0:ec:
e9:61:b8:e3:c9:b1:48:24:b1:bd:bc:90:ca:e3:b2:
64:cd:bc:4b:b9:91:c9:9c:d5:98:4e:c4:9c:c3:f7:
3e:10:0c:07:86:25:3a:1f:88:fa:c5:01:7e:ae:ac:
88:ba:22:a8:72:e1:1d:67:80:ab:11:66:bd:5a:cd:
d3:61:2d:df:cb:2d:15:96:0c:4b:19:d9:14:5a:87:
40:44:6f:0a:b4:c6:c1:b4:57:23:eb:eb:3f:2b:fd:
f1:6b:5e:82:33:d1:37:7d:9b:e7:a2:bb:66:1d:bc:
6f:29:0c:95:fe:0b:fd:08:f1:d3:29:7e:2b:78:32:
1a:00:d2:14:4b:db:3a:5d:95:b4:a4:23:80:2a:5e:
41:b3:9f:dc:14:09:f7:1f:29:af:f7:b9:45:e1:95:
19:3d:7b:6b:a7:9f:15:2b:c2:55:dc:24:a2:0e:8f:
35:b3:1f:a1:cd:8a:59:9d:09:52:47:5f:4c:2a:1d:
81:25:86:84:2f:41:39:7c:d4:8a:09:e7:c2:14:91:
40:b1:67:01:02:46:a1:b8:68:40:fd:bf:20:d2:fa:
01:05:43:74:bb:55:fb:76:fd:da:e9:75:c2:d6:c6:
76:b8:27:7f:dd:51:62:52:f5:be:5e:f2:da:aa:83:
e6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B5:D8:A7:EA:42:4C:F5:3D:29:01:33:A5:82:B2:12:AF:85:A0:CE
X509v3 Authority Key Identifier:
keyid:DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:4f:e6:42:b6:b7:cf:c0:39:d8:c9:32:1b:86:bc:1d:b0:02:
24:57:e5:17:15:92:60:74:50:8a:c4:0f:80:d1:3a:0e:17:85:
3d:1a:61:f6:50:1a:03:75:b0:69:85:41:8a:f5:57:b0:58:60:
f9:df:e9:d4:e8:23:12:d7:89:af:8f:bd:60:59:6d:0a:67:e4:
6d:33:21:25:0a:cb:e2:b1:86:1f:a1:88:96:47:a1:cd:a0:7d:
78:a7:82:cf:38:af:99:62:ab:a2:4a:3a:00:01:26:f6:d1:88:
e1:89:cf:0f:b7:55:ee:64:98:02:d3:80:26:03:ad:13:2c:ce:
8d:c7:ee:da:3e:b7:fa:b6:c9:3b:e8:49:45:62:57:d7:fe:ec:
4f:2a:74:2d:cb:a8:2a:df:f7:95:88:33:bb:e5:e5:bc:b7:f5:
66:6e:ac:fb:63:b0:20:cf:62:b0:9d:fb:82:f1:6f:56:6c:16:
df:66:48:12:21:f5:8a:11:fd:93:ff:ce:22:25:95:12:0f:1a:
cc:ac:c7:d5:06:02:44:a9:a0:ec:f5:a1:52:54:b5:ff:08:26:
9e:36:56:9b:38:3a:ad:f1:69:0b:08:5f:9a:79:bc:ac:10:73:
bc:df:0f:71:6f:04:6d:30:67:a2:fe:2e:13:49:69:b2:ed:5c:
65:6e:5c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 06:53:50 2025 by rpki-client