Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.mft
File: 2rsdAWAvFSERMu1IGFqZs2IlEX8.mft (raw, json)
Hash identifier: KR7Z0pfmme+rOUU9hhU7MtORiRAdVUzPMnweFqHaFr4=
Subject key identifier: AD:DD:7F:21:B0:7E:09:55:5B:5C:96:02:22:FA:8E:DD:8B:D6:8E:6E
Authority key identifier: DA:BB:1D:01:60:2F:15:21:11:32:ED:48:18:5A:99:B3:62:25:11:7F
Certificate issuer: /CN=dabb1d01602f15211132ed48185a99b36225117f
Certificate serial: 01964C348A8DA3543981E5C6AF3AC7F20B23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2rsdAWAvFSERMu1IGFqZs2IlEX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.mft
Manifest number: 0D64
Signing time: Sat 19 Apr 2025 04:00:33 +0000
Manifest this update: Sat 19 Apr 2025 04:00:33 +0000
Manifest next update: Sun 20 Apr 2025 04:00:33 +0000
Files and hashes: 1: 2rsdAWAvFSERMu1IGFqZs2IlEX8.crl (hash: IHmSCrTDCdbClk3hgZzSVzd0dhxM0CaYx/xWyj45jto=)
2: 787WsGeG_PtOH4NifJLvSRcdjKE.roa (hash: LXK7T54I67xPwZvLYoiPIC1z9h7T9ebkz0cAqwvP0HU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2rsdAWAvFSERMu1IGFqZs2IlEX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:34:8a:8d:a3:54:39:81:e5:c6:af:3a:c7:f2:0b:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dabb1d01602f15211132ed48185a99b36225117f
Validity
Not Before: Apr 19 04:00:33 2025 GMT
Not After : Apr 20 04:00:33 2025 GMT
Subject: CN=addd7f21b07e09555b5c960222fa8edd8bd68e6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0d:cf:2a:72:e2:53:33:88:4f:bf:89:0a:59:
be:91:3a:6a:c0:74:7d:4a:75:e6:35:5b:ba:99:14:
22:4f:d0:75:4c:28:2e:cd:5e:ab:83:4e:3c:18:0c:
ed:56:f5:64:8c:ad:07:92:fa:8f:75:c3:01:33:61:
58:97:bd:d7:8e:a3:e8:34:1f:94:81:03:bb:b7:44:
84:32:ea:9d:89:ab:bb:ab:d7:9e:4b:e0:7b:b9:02:
db:be:1b:7d:6f:44:c6:84:4b:91:4c:c3:05:e2:e1:
b0:5d:ef:de:ae:74:ad:49:8e:c9:d8:0e:3e:46:a4:
56:04:56:7b:bb:85:96:af:89:66:ae:65:25:53:0c:
b9:98:a6:f4:0e:53:9f:94:b6:99:86:54:41:3a:81:
be:56:2d:71:32:b1:2f:43:d3:a3:52:1e:a4:5c:8f:
cf:6c:fe:b9:cb:b7:ca:fe:00:cd:83:3b:af:c8:e6:
e7:50:62:5f:22:e3:05:4d:29:13:be:2a:41:05:b8:
24:11:f7:25:f7:8c:ee:bd:0f:ba:1e:47:f1:93:f4:
35:14:d0:9b:83:71:ad:6c:9b:83:2a:84:a2:5a:f7:
85:4e:0f:42:f5:84:b7:20:0b:cb:b8:77:e1:7d:2e:
8a:99:e6:38:95:f8:93:f9:73:90:4f:ca:ee:39:d9:
a6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:DD:7F:21:B0:7E:09:55:5B:5C:96:02:22:FA:8E:DD:8B:D6:8E:6E
X509v3 Authority Key Identifier:
keyid:DA:BB:1D:01:60:2F:15:21:11:32:ED:48:18:5A:99:B3:62:25:11:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2rsdAWAvFSERMu1IGFqZs2IlEX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:8e:12:5a:5f:c9:83:d0:9b:2d:cd:57:e5:72:03:22:b9:0a:
d2:c8:3f:c9:b8:41:57:0b:c6:32:b7:a9:d5:0b:cb:ba:09:74:
be:3d:0f:bf:4e:c2:c2:35:f5:d4:71:42:e7:75:05:1b:2f:95:
c3:78:63:d6:b2:16:4b:f7:92:fd:97:3d:4c:4c:1a:10:43:ac:
c8:50:00:2b:31:46:08:86:d5:e8:47:a2:4c:52:11:5a:94:9e:
52:42:ab:af:5c:18:ab:1b:2f:52:f3:e6:00:69:1b:0c:e1:f9:
52:9d:1c:22:29:e9:2f:57:2c:76:6f:55:e8:d0:da:f3:9b:b5:
b8:39:a9:5e:b2:c5:70:9b:d6:e0:e3:c4:c6:a6:d2:9e:40:07:
52:b0:a5:81:60:94:23:ed:fb:d5:58:a0:16:f3:8c:75:d1:d5:
8c:da:3c:40:67:48:f3:83:56:1d:14:aa:80:4d:6d:e2:6b:7e:
72:d3:e5:a5:71:5a:76:41:8a:fd:b2:2c:ef:e0:0d:ac:b4:fb:
c7:63:e6:ae:eb:de:40:77:b0:c1:a0:1b:71:7a:53:da:a0:ef:
32:56:1b:e7:e0:cb:76:bc:42:6b:b2:44:a2:6b:70:08:c2:03:
a2:10:c3:97:37:c4:e6:6d:8d:7c:80:df:49:7f:dd:eb:94:22:
28:c7:8e:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:02:56 2025 by rpki-client