Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft
File: 2ilr0AMdba2mxzBzYI89EeRFzkQ.mft (raw, json)
Hash identifier: 1xw+2hJTp/xt+78F0dDrFM1qIXo6mLKk09RrAok4YqQ=
Subject key identifier: F2:54:FB:2D:DB:E2:9F:61:51:69:1E:1D:38:31:A9:AB:0C:6A:B2:88
Authority key identifier: DA:29:6B:D0:03:1D:6D:AD:A6:C7:30:73:60:8F:3D:11:E4:45:CE:44
Certificate issuer: /CN=da296bd0031d6dada6c73073608f3d11e445ce44
Certificate serial: 01963E0B015ED5C9E54CE4093D7F36F18437
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft
Manifest number: 0334
Signing time: Wed 16 Apr 2025 10:00:30 +0000
Manifest this update: Wed 16 Apr 2025 10:00:30 +0000
Manifest next update: Thu 17 Apr 2025 10:00:30 +0000
Files and hashes: 1: 2ilr0AMdba2mxzBzYI89EeRFzkQ.crl (hash: smRv2OQ4C8nIR245y9313tUCYF6pVSS3c4OlFYVfolc=)
2: xbFh-XL0EOh1euSo-ddC7jaGUKM.roa (hash: 8IT/bBcEgFQE8EaggOanI6nAulFvf6rnXMDUQLI1njI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 10:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:0b:01:5e:d5:c9:e5:4c:e4:09:3d:7f:36:f1:84:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da296bd0031d6dada6c73073608f3d11e445ce44
Validity
Not Before: Apr 16 10:00:30 2025 GMT
Not After : Apr 17 10:00:30 2025 GMT
Subject: CN=f254fb2ddbe29f6151691e1d3831a9ab0c6ab288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:07:26:2b:5f:59:ff:ba:03:87:ea:6d:fc:ad:
89:89:f5:08:a6:01:81:7a:e3:86:f2:55:45:e8:f7:
ef:45:aa:4c:b0:16:22:47:57:c4:78:ce:82:6c:25:
52:cb:3f:64:78:bd:dd:a9:65:62:84:cd:c0:11:1b:
1e:20:f5:0e:83:1b:c7:1d:0c:42:cb:8d:bb:8c:03:
d8:fa:cd:47:84:08:c5:a9:fa:00:40:a7:f2:f1:73:
3b:02:31:4c:34:29:42:27:50:8d:c1:46:e2:42:8d:
25:a9:a6:1c:40:b9:bc:eb:de:5d:3a:4b:e0:c8:fa:
da:67:fa:57:74:1a:d5:34:bb:de:86:9a:c1:6a:32:
14:e4:d4:30:10:c2:c6:e5:4f:3f:c5:21:10:e2:44:
38:21:7d:dc:1c:6a:d8:81:40:5f:30:92:ca:18:10:
c0:f6:17:99:dc:a2:40:1b:f7:32:bb:a1:c5:ef:ef:
bf:73:95:12:9d:21:6c:1c:18:35:80:74:58:6b:9d:
cf:b6:1f:be:f4:7b:e0:a5:3f:cf:ee:e3:2c:26:e3:
ef:a1:d9:00:a5:40:3b:8e:71:79:58:58:b9:51:93:
12:4f:3c:2d:6e:20:14:82:29:86:ec:4a:88:9b:53:
22:50:c6:14:5c:1f:5f:e6:7a:ee:38:ec:c7:f6:96:
f8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:54:FB:2D:DB:E2:9F:61:51:69:1E:1D:38:31:A9:AB:0C:6A:B2:88
X509v3 Authority Key Identifier:
keyid:DA:29:6B:D0:03:1D:6D:AD:A6:C7:30:73:60:8F:3D:11:E4:45:CE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:2e:d4:0e:e9:61:1e:b9:83:40:c7:e6:10:2a:94:3b:9f:1e:
7b:07:ee:1e:27:23:c1:25:da:15:c0:2e:97:3e:9d:bc:45:20:
8b:6a:7d:04:73:2b:70:7d:6a:5c:77:58:fe:fe:25:ee:01:ee:
7c:41:11:9b:3d:00:ff:3a:14:3f:ef:85:5d:bf:97:86:d3:8b:
e8:18:9f:db:2c:12:6e:e2:2f:71:47:ef:8f:3d:0c:0a:f1:f3:
3a:92:7b:06:1e:9f:64:c4:05:7c:86:8d:2d:4e:bd:4d:d1:91:
58:66:b2:bd:4e:eb:79:4a:1f:57:0d:bf:f9:e0:0c:57:fd:a5:
c9:e7:a0:61:21:ea:0d:7a:8a:10:2b:dd:4e:17:07:b7:7f:b6:
06:80:0a:3f:90:4a:8d:b0:86:a8:d7:37:a4:99:1b:46:de:e7:
bc:8e:91:86:a7:93:dd:29:de:dc:23:c7:83:96:e4:9b:70:c3:
cb:41:fa:0c:3c:92:ec:14:ea:93:59:c5:76:da:bc:b4:da:97:
68:ed:4d:50:16:28:80:e1:7e:dc:56:79:3d:d7:37:6a:a5:0a:
66:a9:41:ad:a0:03:55:47:b0:44:46:a7:16:f8:d7:79:d5:7a:
56:8e:b0:f5:1e:5e:8b:b2:da:da:f0:09:2a:86:7c:44:1a:ce:
e2:3e:08:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:58:11 2025 by rpki-client