Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
File: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft (raw, json)
Hash identifier: MFnVcaqN7b3l9ZF5rjpS9S2gBT8Ayg+fasSYlC9OAQo=
Subject key identifier: 3F:64:B9:DB:C8:D2:B4:7B:3D:01:66:58:5D:37:A6:C3:60:56:62:73
Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Certificate serial: 0196451FDDB81E3ED151F23977B229D40EF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
Manifest number: 0C85
Signing time: Thu 17 Apr 2025 19:00:38 +0000
Manifest this update: Thu 17 Apr 2025 19:00:38 +0000
Manifest next update: Fri 18 Apr 2025 19:00:38 +0000
Files and hashes: 1: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl (hash: NInEiAatzi5eKdpBXKaJTQXGqBK1zlDvUZniOhNe47s=)
2: nEst59VNXuZ4VJfEimqfkDoIWMw.roa (hash: MVYyTOwc+4oCrDyXY6sI17JYzQycO6fjKklmhjG1KnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:1f:dd:b8:1e:3e:d1:51:f2:39:77:b2:29:d4:0e:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Validity
Not Before: Apr 17 19:00:38 2025 GMT
Not After : Apr 18 19:00:38 2025 GMT
Subject: CN=3f64b9dbc8d2b47b3d0166585d37a6c360566273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:85:ec:03:37:d4:31:54:3a:8e:c1:e3:b8:50:
0a:35:97:fe:14:0e:80:b9:9c:bf:51:c9:f7:15:50:
33:0d:41:73:2e:d5:74:67:ba:1f:ea:b1:d0:0f:4a:
e8:66:ad:84:4a:b1:b3:cc:a2:e5:46:1c:e8:97:62:
ee:d3:21:d9:34:60:32:85:07:b7:65:53:87:67:49:
01:60:e2:da:bc:64:db:4b:92:5f:7b:7d:67:ed:34:
3e:22:e2:26:18:e4:e1:97:06:94:e7:04:3a:30:2f:
a6:6c:a2:88:85:f6:16:99:7a:67:91:72:e2:22:01:
44:f3:c1:1e:9b:61:a1:df:ff:5f:ee:69:ab:3a:9d:
20:08:7f:5b:ba:c8:69:5e:ca:af:4e:a2:9c:e2:78:
8f:d3:aa:b4:7c:b1:32:de:38:ae:55:15:1f:1a:87:
02:2c:54:1d:df:0f:c2:e2:fd:51:e2:d3:e6:69:a0:
0e:ca:bf:85:ba:12:41:59:9d:de:f1:65:4a:e1:81:
90:7b:60:1e:ae:e6:66:5e:40:ff:eb:65:cd:5f:c4:
57:68:de:d8:b9:8e:f9:58:40:cc:3a:69:fc:85:ee:
56:15:98:8c:52:f8:27:2e:1a:9b:27:0a:91:df:37:
46:9f:a1:a3:d1:28:36:fc:19:aa:65:d4:9e:dc:7a:
ea:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:64:B9:DB:C8:D2:B4:7B:3D:01:66:58:5D:37:A6:C3:60:56:62:73
X509v3 Authority Key Identifier:
keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:a3:fe:4a:10:3f:6c:34:ba:c3:3b:26:03:0a:e1:f0:f1:f2:
60:22:11:19:aa:fc:ad:f7:fd:7d:34:a7:79:ff:3d:07:33:a4:
aa:17:ad:3b:7b:8a:ea:aa:43:6c:ef:7e:8f:4c:d6:7d:b6:d9:
d6:c1:08:88:42:cb:80:25:91:ed:f7:81:2c:f6:8b:40:19:8b:
7a:f3:8b:30:cd:b9:e5:ad:64:af:df:78:68:2d:8f:0d:35:81:
bd:11:3a:54:d1:28:12:ec:a7:8b:bd:d7:73:c5:8a:ca:4c:26:
6d:a6:c8:e1:59:88:a3:d9:5a:cd:c8:6e:3f:0e:8f:1d:be:51:
5b:06:6a:d9:8d:a7:03:93:61:97:1c:88:7f:ae:a6:6b:89:17:
cf:d7:ce:a4:3c:70:1b:1e:29:ed:58:ce:ce:cf:c0:a9:ba:39:
f5:e9:e9:35:db:2a:e9:32:c3:83:b1:d5:cc:c1:4b:cc:8f:b4:
c0:04:52:7b:a7:ec:74:64:7c:ee:d0:f3:ec:14:82:10:43:36:
ed:5a:f7:8f:56:4b:ec:94:22:71:9e:30:24:83:ea:ad:39:04:
8b:a0:15:63:45:3d:fe:94:5d:70:7f:c7:4f:6e:51:cd:44:89:
0b:24:bd:9a:ab:3f:37:e2:5b:3c:2a:d2:f0:f1:c8:90:0e:52:
b0:59:25:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:33:04 2025 by rpki-client