Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
File: 2gKPaUMDSrdg84rkIJFU4iVciek.mft (raw, json)
Hash identifier: LewDL3XBD9WxUb8MAWv8yJc0o4Hn8hrJHUASenS0qWk=
Subject key identifier: 33:F5:BF:1F:D4:E2:1E:89:E2:25:D5:36:0B:19:46:41:7F:CD:88:2F
Authority key identifier: DA:02:8F:69:43:03:4A:B7:60:F3:8A:E4:20:91:54:E2:25:5C:89:E9
Certificate issuer: /CN=da028f6943034ab760f38ae4209154e2255c89e9
Certificate serial: 01951210D7792EFED70934D03BA607CAA1F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
Manifest number: 03B7
Signing time: Mon 17 Feb 2025 04:00:48 +0000
Manifest this update: Mon 17 Feb 2025 04:00:48 +0000
Manifest next update: Tue 18 Feb 2025 04:00:48 +0000
Files and hashes: 1: 2gKPaUMDSrdg84rkIJFU4iVciek.crl (hash: OQNltN9C34tba6cJXMbs0BFr+kFl5K95o6QZVB+ble4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:10:d7:79:2e:fe:d7:09:34:d0:3b:a6:07:ca:a1:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da028f6943034ab760f38ae4209154e2255c89e9
Validity
Not Before: Feb 17 04:00:48 2025 GMT
Not After : Feb 18 04:00:48 2025 GMT
Subject: CN=33f5bf1fd4e21e89e225d5360b1946417fcd882f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a2:c3:ef:91:82:b9:98:8a:3e:27:b4:1b:df:
58:95:16:e6:a6:42:94:97:b2:a6:a2:9a:cc:3d:d5:
98:dd:66:39:9b:f6:e4:a6:45:3f:98:81:8e:a2:69:
d0:6d:c1:02:83:34:56:b2:62:db:b8:f2:40:a2:60:
ce:eb:31:96:6c:b0:ca:72:3e:4a:67:c2:6a:11:6c:
99:5a:36:83:d6:da:12:7e:f9:79:75:c2:29:b2:5b:
65:4c:74:7b:6c:93:33:35:1e:a4:f6:9d:1f:9a:cc:
48:d6:39:9e:97:5f:18:1b:e0:37:fe:a7:75:f3:76:
86:06:0f:cf:b8:c1:fd:05:bd:b2:f6:7c:f4:ba:b5:
ee:b5:99:bf:79:34:91:b8:28:c6:36:9e:fc:3d:9a:
82:a7:9d:98:60:f6:72:e7:f4:06:9f:08:05:8c:90:
22:b2:49:1e:77:67:f5:b6:67:73:8a:4f:07:b8:e7:
66:42:c1:c1:b9:e2:f5:bd:86:1b:06:10:fb:6a:cd:
db:ee:15:14:11:e1:00:4f:71:51:57:3a:72:1c:9d:
bf:b2:26:db:8f:29:95:ad:34:3e:68:95:96:18:59:
dd:1e:ce:04:5c:2e:23:84:83:dd:04:4c:90:d0:22:
aa:6c:fa:8c:31:80:33:5e:a7:93:28:4f:02:90:d0:
ca:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F5:BF:1F:D4:E2:1E:89:E2:25:D5:36:0B:19:46:41:7F:CD:88:2F
X509v3 Authority Key Identifier:
keyid:DA:02:8F:69:43:03:4A:B7:60:F3:8A:E4:20:91:54:E2:25:5C:89:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:a7:8b:80:13:97:09:22:4e:30:ec:0a:15:ab:92:eb:09:ad:
9a:d3:fe:8f:fd:5b:b8:a5:d8:f9:37:6d:f8:f2:b1:81:05:35:
23:bb:a5:42:9e:46:92:68:28:0c:35:74:e7:22:01:c7:1b:1c:
30:b5:7d:f9:b7:92:98:9d:7f:bc:ed:2d:de:79:d2:fc:39:80:
35:3e:49:ad:26:59:d9:60:2c:50:15:11:be:45:c9:57:57:1a:
2a:3e:a1:49:25:e1:69:e0:ec:1d:8f:8d:71:2f:bc:ea:96:ba:
cb:77:f9:88:bd:bc:c6:1e:6a:e4:84:14:2d:56:ba:59:1e:4a:
63:da:54:08:eb:12:6e:fd:3b:9c:56:6b:3b:c3:6d:9e:9a:23:
85:9f:12:ca:11:3b:67:f2:44:4d:7f:73:64:a1:5b:06:b9:85:
52:8a:b1:a7:8a:c7:c5:4f:cc:41:c3:02:e4:67:d7:52:c5:9d:
29:b0:de:96:64:95:52:11:a1:d2:b0:79:ea:9f:09:e4:f2:ed:
a4:4b:21:b9:ce:46:e4:63:45:7a:8d:a7:89:95:2c:87:eb:e6:
84:0b:2b:b3:15:ad:52:85:35:8f:b9:04:29:12:55:26:b9:0d:
f2:05:dd:f8:68:c4:26:f5:12:c3:ed:c9:38:89:11:e5:3d:b5:
61:b0:22:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:53 2025 by rpki-client