Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: qPuSgapXX8Uq+k3G9tPT1ZQMgtu6il8lZ+PYM6Wusns=
Subject key identifier: E2:E2:BC:AA:55:0E:E9:2A:DE:6C:C8:89:FD:DA:AA:31:1F:DD:8A:A1
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 019659B996D78BD54379CB7C2F66C598ACF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 1503
Signing time: Mon 21 Apr 2025 19:00:56 +0000
Manifest this update: Mon 21 Apr 2025 19:00:56 +0000
Manifest next update: Tue 22 Apr 2025 19:00:56 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: sZURlPJ7x8ENdux8n+3NwfHS6PIQqMX8/tv7iM0GV/Q=)
2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=)
3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:b9:96:d7:8b:d5:43:79:cb:7c:2f:66:c5:98:ac:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Apr 21 19:00:56 2025 GMT
Not After : Apr 22 19:00:56 2025 GMT
Subject: CN=e2e2bcaa550ee92ade6cc889fddaaa311fdd8aa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:10:0c:f5:57:70:18:cb:8d:1b:4f:40:0a:c5:
24:76:cf:25:b8:5b:3d:fd:b4:83:5f:db:31:a3:e5:
8a:b5:9c:97:d8:48:c7:03:20:80:d9:7c:d5:a5:ce:
23:40:8e:ac:ef:b4:31:92:07:0d:61:04:25:65:8b:
ed:50:60:b2:e6:d1:9b:46:2e:ca:b7:2b:8b:60:d1:
f4:1c:36:07:9b:d0:94:c8:23:62:98:08:77:a2:9f:
da:2f:5d:64:3b:a2:4f:5a:df:1a:63:db:6c:2f:5c:
15:c9:91:11:5b:95:4b:d5:f3:bf:82:f5:f2:77:69:
ca:a4:73:ed:dd:27:df:ec:10:54:b4:96:be:ce:95:
3a:64:34:88:2a:13:2a:28:02:ba:2d:a3:fa:d6:f9:
52:91:79:60:36:ed:87:bb:af:2a:9b:28:e7:85:82:
ab:c1:5d:9f:db:46:73:cf:69:4e:8c:10:4e:1a:c9:
a8:6b:cc:45:c5:96:19:5a:40:a2:8a:9f:8a:72:98:
40:f8:43:8b:06:fe:4f:76:ef:1f:90:ac:28:22:04:
1b:3c:ce:88:50:59:ff:99:93:c3:f1:86:3c:17:ac:
ec:04:9b:45:e4:25:c5:8e:d6:cb:41:dd:ee:3c:bc:
25:60:ba:fe:38:6b:b6:24:6a:07:7a:61:1f:2f:77:
5f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E2:BC:AA:55:0E:E9:2A:DE:6C:C8:89:FD:DA:AA:31:1F:DD:8A:A1
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:38:9f:c1:b9:14:a0:d7:97:ae:45:c6:39:af:94:40:a4:22:
df:8f:df:57:75:1c:2a:50:e4:6a:05:c2:1c:05:e4:51:d0:0b:
5b:ea:1c:16:6b:07:04:f5:2d:85:65:6a:c5:20:b4:b9:d4:c7:
29:7d:19:8f:b3:6e:7e:6c:06:fc:70:e4:29:04:e0:ef:a3:98:
e5:8c:d4:23:5c:1f:ee:b5:f9:6e:99:59:a2:c5:a3:a2:d1:be:
8e:16:74:ad:ff:7f:bc:b2:ca:c4:56:b2:af:81:d1:97:8c:36:
fe:19:d1:0a:0f:e6:09:3e:f3:54:9f:23:01:0c:f8:76:4f:9c:
de:29:aa:bc:c1:ff:87:81:dd:ff:84:24:fc:36:2d:c6:7c:f9:
e4:3d:37:fc:e6:7b:3f:73:f2:db:9a:23:92:04:5b:bb:5b:ba:
48:56:84:0e:54:74:01:7e:3a:21:6f:21:e8:d4:12:f7:8c:17:
7d:99:96:c9:29:e7:60:6d:a6:4b:11:85:f1:1e:21:34:14:19:
d1:06:76:16:14:e0:51:45:2b:e5:2a:3b:8b:53:3e:f5:2e:10:
ec:84:99:f0:97:96:82:e2:50:5d:e4:f4:cb:25:50:37:2d:f5:
df:d5:0b:f9:4d:21:80:48:43:7b:41:82:a6:85:1d:61:74:a2:
3d:65:23:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:58:21 2025 by rpki-client