Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
File: 2q_pD50IEzTMko7e6bxzFUBwjf0.mft (raw, json)
Hash identifier: RzNW20+0AOGm2cke2TwAeJdNCFrcnHxtY0pjnAf3lrc=
Subject key identifier: 6C:BD:FD:20:32:DD:8C:2A:63:4F:CB:53:88:EC:46:A9:FC:68:6C:E4
Authority key identifier: DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
Certificate issuer: /CN=daafe90f9d081334cc928edee9bc731540708dfd
Certificate serial: 0196458DD86570AF6463E00214CA47B00B07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
Manifest number: 084B
Signing time: Thu 17 Apr 2025 21:00:45 +0000
Manifest this update: Thu 17 Apr 2025 21:00:45 +0000
Manifest next update: Fri 18 Apr 2025 21:00:45 +0000
Files and hashes: 1: 2q_pD50IEzTMko7e6bxzFUBwjf0.crl (hash: na1Ht9VXp2rj8mdyKiLC/0jFTYaFGFXjEnGVEGjxp2U=)
2: ptCjyawSJ9frfP9fH_ikMswCnsI.roa (hash: qlAjQ7L6msxhMlwj1dEaHE32m8HH4N1buR0Bga+2/Qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 21:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:8d:d8:65:70:af:64:63:e0:02:14:ca:47:b0:0b:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daafe90f9d081334cc928edee9bc731540708dfd
Validity
Not Before: Apr 17 21:00:45 2025 GMT
Not After : Apr 18 21:00:45 2025 GMT
Subject: CN=6cbdfd2032dd8c2a634fcb5388ec46a9fc686ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8b:81:2d:f8:3f:c6:2b:4d:1d:78:58:34:02:
73:ea:f4:28:66:74:9b:cd:43:f8:98:b0:97:62:73:
de:f4:e6:2f:d5:87:59:74:d4:c1:f2:2c:18:96:88:
2f:34:8b:ba:4b:3c:50:c2:08:1a:ff:94:1b:6a:0c:
32:64:e3:ce:40:2f:02:dc:bf:b3:21:ab:7e:79:39:
b6:a5:48:c6:2f:fd:42:dc:58:07:55:63:20:b3:bb:
08:d6:85:ac:17:51:11:5c:bd:d7:ab:d7:e0:cc:4f:
00:a5:f8:61:4a:f4:85:47:2c:e0:22:cc:92:02:5f:
96:85:15:67:c0:32:18:ee:50:2c:0b:44:58:63:97:
c4:eb:d2:b3:e6:d3:c3:c0:dc:15:ef:1a:e7:f3:96:
39:cf:28:f3:94:0e:1a:d7:20:87:6e:d1:6b:ba:21:
ad:bf:69:ef:7c:b6:c1:98:98:8b:80:be:54:f4:cd:
a7:82:40:e9:15:12:61:22:25:4d:fc:28:df:20:1d:
a6:56:df:04:8c:15:35:24:ed:2f:d9:c6:bd:5e:7c:
4d:82:fb:c6:a9:63:7f:e9:dd:84:55:d2:fb:80:3c:
6b:7b:7e:43:18:83:82:76:27:57:b5:7d:1c:17:c3:
0d:b6:48:91:10:c5:07:33:63:1f:16:bc:9c:1c:f1:
93:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:BD:FD:20:32:DD:8C:2A:63:4F:CB:53:88:EC:46:A9:FC:68:6C:E4
X509v3 Authority Key Identifier:
keyid:DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:bb:e9:dc:42:c7:3d:37:ad:f6:ec:c9:6c:b8:7c:12:c7:6c:
2b:ee:37:36:2c:c0:7b:1c:ac:ee:25:5e:bf:4c:e8:ce:59:2f:
dd:b8:16:9e:d9:49:e5:ad:f0:fa:d0:79:0e:f6:2e:d2:69:93:
38:dc:f6:25:bb:27:1a:0f:2b:5d:6f:94:e2:45:dd:21:1a:7c:
1a:60:e1:02:ff:d6:e6:dd:60:32:86:ca:0a:c4:70:3b:b4:0e:
a8:c2:d9:83:6a:c6:75:71:e4:b3:a9:4a:65:1d:b2:e5:ae:0d:
37:5d:b5:08:13:e3:8d:4c:b5:52:76:ae:af:fe:9a:91:4c:36:
9c:11:c4:66:cc:1c:00:24:8f:56:ad:1d:65:db:cb:8f:b5:50:
66:59:13:d5:a8:5f:a7:0e:54:b8:5a:9c:82:e1:b5:cc:25:2a:
29:5d:f6:1f:dc:29:ce:26:68:0e:86:a6:37:e1:94:4c:5e:94:
5e:4f:b0:c2:f1:e5:e1:6b:19:a0:ea:9b:f8:38:e6:49:9f:d0:
1c:bf:53:a0:fd:87:83:16:a7:8a:84:01:b2:8a:bd:bb:dc:99:
7b:8b:90:63:e9:b7:10:e2:62:55:e7:cd:5d:b9:b1:d2:a2:32:
12:bd:7e:7f:a5:d1:38:a0:40:63:f3:6d:37:a1:0a:e9:f0:6a:
39:b7:24:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 06:57:47 2025 by rpki-client