Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
File: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft (raw, json)
Hash identifier: qKpnvItaVt9iffIwJFIHtzg2CoJkJF/GhBJXJ/YYx9M=
Subject key identifier: 06:29:DA:FC:95:DB:66:18:83:28:E8:ED:B9:F7:75:C9:7E:AE:8E:12
Authority key identifier: D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09
Certificate issuer: /CN=d90d2681514aefee9d3c86e1eae35736c84d1c09
Certificate serial: 01963B7811B175B07585247DC60B59D9D612
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
Manifest number: 14F3
Signing time: Tue 15 Apr 2025 22:00:46 +0000
Manifest this update: Tue 15 Apr 2025 22:00:46 +0000
Manifest next update: Wed 16 Apr 2025 22:00:46 +0000
Files and hashes: 1: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl (hash: xsekSm5QQw9EIp97q9PqMir+2eqog54nu39wIozQNe4=)
2: Y1iEUL6HkZgDZU0_OFEdoFw8lAQ.roa (hash: CDvGigjNlLt/aSYIESg4jn5aQHhCGPQhN6LUC2qBNmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3b:78:11:b1:75:b0:75:85:24:7d:c6:0b:59:d9:d6:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90d2681514aefee9d3c86e1eae35736c84d1c09
Validity
Not Before: Apr 15 22:00:46 2025 GMT
Not After : Apr 16 22:00:46 2025 GMT
Subject: CN=0629dafc95db66188328e8edb9f775c97eae8e12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6b:f5:3e:8d:6d:7e:23:46:24:4d:c1:be:fd:
37:64:91:0e:2e:cd:0b:09:5f:b4:28:83:ff:84:5d:
81:7e:44:e5:3d:78:3f:be:cb:54:e5:d9:f4:b4:8c:
10:5f:0a:a7:da:01:16:b3:14:34:cd:b7:52:65:73:
e9:ce:31:61:1b:ce:d6:12:9d:89:be:99:7d:fc:d1:
b8:c0:fe:fd:84:30:6e:21:9d:06:0a:72:81:e7:b7:
76:bc:bb:a0:47:64:70:5a:c9:07:e6:90:ff:08:30:
b5:64:9d:68:8a:73:a5:ec:4a:b5:00:f2:9b:cd:19:
d0:85:13:79:20:2b:f3:fe:0f:f2:e5:64:72:25:72:
90:8b:a6:1e:a3:95:7e:b7:28:cf:83:17:c8:64:d9:
9b:c7:1a:80:19:9e:1e:5f:b1:43:32:58:71:22:cf:
15:46:6f:06:4b:89:84:96:43:61:f7:68:e0:fb:ad:
5c:50:c4:51:ff:35:95:c5:df:a0:eb:5c:66:e1:30:
a2:3e:1d:c1:1a:e8:6f:84:a6:07:0c:4b:19:52:66:
fa:c5:25:5d:9a:93:51:2f:a6:4c:cb:fe:8e:52:14:
4f:60:9b:19:e8:36:cb:2c:01:b6:e6:53:77:e3:e6:
10:e6:c4:c0:df:78:6a:6b:d2:e7:b8:20:62:db:ff:
09:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:29:DA:FC:95:DB:66:18:83:28:E8:ED:B9:F7:75:C9:7E:AE:8E:12
X509v3 Authority Key Identifier:
keyid:D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:2f:a2:ec:2d:e4:f5:ba:75:9a:aa:08:5c:bd:49:47:4c:25:
9e:a4:c6:53:84:cc:a2:1d:8b:74:bd:0d:be:09:ee:39:fb:23:
75:ed:1d:ac:35:5e:1e:73:4a:72:ac:17:1d:94:ef:7f:07:c3:
c8:23:9d:3c:59:46:d1:d9:07:af:7d:7a:62:90:46:38:7e:2a:
66:50:67:1e:b6:33:09:4a:3b:e1:87:e1:bb:a4:f0:cc:25:2c:
73:fd:e6:00:c8:0f:44:e5:63:c7:c1:cd:b1:b1:fe:29:8b:b2:
dd:e0:e8:3d:fe:af:ac:84:75:25:de:27:2d:be:88:e1:a2:be:
90:bc:4f:23:96:2b:d6:85:f3:db:6b:6b:b3:3e:a2:a9:32:ed:
c2:86:ed:5c:fa:e9:4e:ae:c6:b1:c6:b6:22:bf:63:18:1c:5e:
45:5e:17:2f:47:89:4a:ad:7e:b4:1b:60:89:03:7f:16:02:e9:
96:48:80:91:7c:74:e6:ce:c4:58:4e:9c:f4:0b:d7:f3:f9:86:
f2:f4:26:19:c3:97:22:4c:98:83:78:72:19:54:66:a1:02:8b:
92:26:8b:7d:89:05:30:97:bd:3f:18:4a:79:71:21:0b:fa:94:
39:66:07:88:26:99:0d:3f:95:c7:9b:1a:d1:ae:af:de:6f:d2:
e4:e5:95:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 02:28:48 2025 by rpki-client