Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
File: 2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft (raw, json)
Hash identifier: K7VcZ7vgamMipNA6uGq+aYyt/sUvZQMbBzJeUybne+w=
Subject key identifier: CF:CE:C3:C7:18:DB:B5:36:DE:74:78:2B:97:30:98:96:13:CD:02:19
Authority key identifier: DA:F0:A3:9C:FA:DF:91:0F:6B:13:2A:D2:28:E6:06:56:18:87:A0:6C
Certificate issuer: /CN=daf0a39cfadf910f6b132ad228e606561887a06c
Certificate serial: 019612458E94D132391320897561433CC1E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
Manifest number: 14E2
Signing time: Mon 07 Apr 2025 22:01:10 +0000
Manifest this update: Mon 07 Apr 2025 22:01:10 +0000
Manifest next update: Tue 08 Apr 2025 22:01:10 +0000
Files and hashes: 1: 2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl (hash: 2kdwRcWHjdyq/QUVFj+p3OGhfNplKh7ut/SzmO8HQ+Y=)
2: bdqrLURz5G694Fm80xmKAo0IogU.roa (hash: hG0r7jG1QmA/uFg4gCQdR2alotLJA0SQybpT8Ey91vY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 22:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:12:45:8e:94:d1:32:39:13:20:89:75:61:43:3c:c1:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daf0a39cfadf910f6b132ad228e606561887a06c
Validity
Not Before: Apr 7 22:01:10 2025 GMT
Not After : Apr 8 22:01:10 2025 GMT
Subject: CN=cfcec3c718dbb536de74782b9730989613cd0219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:af:b1:5d:c5:2a:95:31:a9:37:42:04:15:da:
c8:51:0e:93:ac:5f:17:7c:61:16:21:50:31:88:94:
80:66:8e:21:5c:ff:c0:b5:cb:46:96:fc:9f:9b:9a:
9a:e8:b0:6e:7a:6f:cf:d6:5f:bf:9f:20:c1:dd:58:
b4:11:62:46:15:21:ff:9b:ed:01:99:39:cf:9f:ed:
ee:ea:6f:0e:d9:5d:f7:17:81:5f:75:1e:3c:be:04:
65:1e:48:7a:ee:0a:1a:5e:c4:13:d0:32:2c:ac:b4:
92:c5:56:4f:bb:d4:df:84:73:5b:2e:51:0d:aa:10:
2b:7f:e4:16:93:d1:e3:02:df:1c:d8:e2:94:98:dd:
90:6f:f1:6c:1f:48:9e:11:d4:01:89:59:94:3d:49:
53:c0:09:cb:12:74:30:fa:5a:6c:10:4f:65:be:46:
63:44:4b:4e:83:82:ed:31:ad:01:8d:ec:d9:bd:5f:
db:bd:13:9e:e0:85:7e:f1:28:ed:e5:01:bc:24:d6:
b4:ec:2e:ee:36:b1:c9:b8:aa:89:da:8c:95:86:a2:
aa:0b:ee:d4:bc:c0:81:70:aa:43:22:39:4a:d6:75:
a5:89:be:f2:ef:f9:90:e2:cb:68:ce:dd:3e:4e:48:
aa:56:ce:5b:ed:ce:b3:ee:3e:16:f4:0e:e4:27:54:
ec:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:CE:C3:C7:18:DB:B5:36:DE:74:78:2B:97:30:98:96:13:CD:02:19
X509v3 Authority Key Identifier:
keyid:DA:F0:A3:9C:FA:DF:91:0F:6B:13:2A:D2:28:E6:06:56:18:87:A0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:2f:d3:0d:0b:55:ed:a8:98:bf:4c:65:91:1e:c8:75:04:04:
ce:5e:cc:b9:13:87:26:a4:32:e7:8e:1a:77:98:6c:0a:5e:fd:
8c:45:a3:2a:c8:c5:c5:b8:87:ae:d1:d7:5c:b7:84:80:f7:b4:
15:20:0f:94:9c:a9:34:d4:d1:50:5b:73:7a:bb:1e:a4:df:fe:
02:7e:f0:b8:d9:7f:cd:f4:7c:cc:69:57:81:45:40:ac:ec:02:
23:5a:82:af:bd:73:32:27:1e:4c:37:e3:8c:d8:e3:2a:cb:cd:
05:1b:88:80:99:62:84:4e:2a:69:7a:c7:4f:04:fa:f5:ff:f5:
e5:7a:1a:b8:86:86:16:1f:f3:e8:85:62:3b:b9:9e:32:b5:f4:
f4:c3:2e:8f:90:77:79:89:c1:89:ea:c4:5e:da:42:aa:f1:53:
e6:d6:33:32:24:f5:60:cf:d8:ee:3c:b8:55:3f:ee:00:91:b5:
d6:26:60:17:ec:29:1f:64:fe:f0:f8:48:43:2d:bc:6f:da:74:
52:be:67:76:da:f5:c9:49:3c:eb:98:25:89:45:54:59:e9:52:
bc:8a:01:1b:66:a7:05:ab:c9:8d:a4:7c:a3:cc:b0:24:a9:cc:
5c:d5:e6:14:4d:fb:ea:3c:ed:49:4d:f0:b6:79:1f:95:3a:12:
b1:55:5f:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:18:04 2025 by rpki-client