Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft
File: 2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft (raw, json)
Hash identifier: 0OE3lXswN48DTa/vmqsSd/fScmbh2sD6VVQCqYT6vNo=
Subject key identifier: B1:A5:5F:F8:9B:F9:23:66:C8:F2:D8:33:2A:B3:25:88:37:8C:FC:09
Authority key identifier: D8:18:43:03:21:64:E0:B6:2E:D6:DA:7C:67:55:7B:F4:68:95:D0:F0
Certificate issuer: /CN=d81843032164e0b62ed6da7c67557bf46895d0f0
Certificate serial: 019662BD3B93F2308DDB139273B93B4D6A59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BhDAyFk4LYu1tp8Z1V79GiV0PA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft
Manifest number: 060B
Signing time: Wed 23 Apr 2025 13:01:30 +0000
Manifest this update: Wed 23 Apr 2025 13:01:30 +0000
Manifest next update: Thu 24 Apr 2025 13:01:30 +0000
Files and hashes: 1: 2BhDAyFk4LYu1tp8Z1V79GiV0PA.crl (hash: KH4fZSq88UehFaftoImx9UdJWyAjZPuO9kuSGhJ1z6I=)
2: VyRcdQegnHw4kuW58Uqx25GobPA.roa (hash: lC++tHS3x+n6tHU4vit/ETgEcE0Z4ZJ+bg8pO+7AhEg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BhDAyFk4LYu1tp8Z1V79GiV0PA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Apr 2025 13:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:62:bd:3b:93:f2:30:8d:db:13:92:73:b9:3b:4d:6a:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d81843032164e0b62ed6da7c67557bf46895d0f0
Validity
Not Before: Apr 23 13:01:30 2025 GMT
Not After : Apr 24 13:01:30 2025 GMT
Subject: CN=b1a55ff89bf92366c8f2d8332ab32588378cfc09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:58:df:c8:56:75:8a:bc:34:0e:c5:5e:c7:a4:
2c:62:a2:ac:01:be:55:89:1b:af:de:8b:cf:fb:5f:
72:02:02:de:a2:52:08:f5:6f:d5:76:65:44:f7:b8:
74:e1:eb:7d:93:27:52:94:62:d9:4f:3b:db:d6:56:
42:7c:3a:24:f3:ec:2b:55:0c:35:95:9a:2e:79:5f:
ab:4f:a3:27:6a:68:29:5d:30:c6:28:40:52:01:8d:
ca:c2:55:f4:20:ca:ca:ae:06:5e:42:a6:89:de:9e:
e2:19:3e:2b:6a:54:6a:3a:fc:49:a3:83:46:9f:17:
8c:de:fd:71:5c:3b:55:14:47:7a:95:e5:d1:a7:c6:
16:2b:d6:d7:c9:58:1d:63:84:65:c5:de:b0:03:05:
67:13:34:e3:1e:79:c9:c7:e5:3f:bb:28:97:8f:1e:
c5:f1:1a:41:ce:2e:52:2e:cb:f8:f1:79:68:4f:a5:
99:45:a1:c5:b2:2c:f6:71:53:d9:ad:38:c4:ff:a7:
67:7f:0a:10:bf:37:60:49:5c:aa:80:7f:d0:96:c1:
01:c8:df:9e:8a:49:60:a1:4d:ab:8f:d2:0a:a0:eb:
92:e7:1f:3b:29:56:7e:04:e4:af:af:69:01:3b:c5:
1f:81:64:15:3a:68:04:32:e2:3e:38:20:7b:13:65:
de:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A5:5F:F8:9B:F9:23:66:C8:F2:D8:33:2A:B3:25:88:37:8C:FC:09
X509v3 Authority Key Identifier:
keyid:D8:18:43:03:21:64:E0:B6:2E:D6:DA:7C:67:55:7B:F4:68:95:D0:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BhDAyFk4LYu1tp8Z1V79GiV0PA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:2f:cf:8d:2d:bd:01:9c:6c:8f:30:72:9b:70:32:c0:4e:2f:
9a:03:53:b0:4d:ba:d4:a1:07:9e:bf:20:eb:f0:b2:b1:e2:44:
4c:37:ea:c0:65:66:07:2b:af:5d:2d:53:89:14:b3:4f:b2:93:
8d:e1:65:16:7a:bd:77:42:61:ec:ee:33:05:d3:f3:76:01:f2:
c7:6c:c9:8d:2e:c5:a2:c3:ff:50:0d:40:f1:07:8a:b5:18:e7:
e7:98:2e:64:60:e6:79:89:86:65:16:25:1a:b9:29:42:55:70:
3a:a9:59:21:29:29:b7:7b:71:e7:34:6a:1a:43:e1:a1:3d:c6:
26:6d:52:e6:df:94:95:10:88:ee:37:4f:84:77:34:14:c3:83:
07:1d:65:bd:eb:c4:35:ac:c4:7d:f0:f3:94:42:72:9f:1e:e3:
e1:f7:69:f9:df:30:a1:60:0d:82:d8:0d:f9:bb:08:60:f0:b1:
40:5f:5f:8d:d3:1c:82:56:5c:33:e8:01:c8:77:ee:e5:1a:4c:
50:43:97:3d:54:c0:f2:8e:fc:ea:dc:67:bc:cd:ba:9f:eb:af:
d8:7c:4e:9f:a9:0e:7a:2c:a8:74:60:1c:c7:43:65:c6:05:ef:
38:15:ee:b2:16:f6:82:b4:b0:44:0f:46:ab:b1:fa:06:1a:72:
eb:4a:bd:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 14:41:22 2025 by rpki-client