Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
File: 2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft (raw, json)
Hash identifier: c0tr/fOzngNkWh1xDMx3RpZDtqaWJo1f+AfAdUfbKBA=
Subject key identifier: FA:30:04:05:AB:AC:F3:62:E8:72:46:C1:2E:4B:87:49:D7:00:73:02
Authority key identifier: D9:77:3D:73:3D:18:45:C4:1D:3F:9A:36:2B:55:B7:4E:68:6F:9C:02
Certificate issuer: /CN=d9773d733d1845c41d3f9a362b55b74e686f9c02
Certificate serial: 01964C6B890C111A9F2BF689A5EFEE125319
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
Manifest number: 13C2
Signing time: Sat 19 Apr 2025 05:00:37 +0000
Manifest this update: Sat 19 Apr 2025 05:00:37 +0000
Manifest next update: Sun 20 Apr 2025 05:00:37 +0000
Files and hashes: 1: 2Xc9cz0YRcQdP5o2K1W3TmhvnAI.crl (hash: hqd47EcXo5zNwA5TynSlEldydQYFkO5Fv0UZqiNO6pU=)
2: jnl0pkc8VZioDFc1rU2LXYR9u10.roa (hash: hBLoItEXtLXi0Hx0eyOzMHvYDZZAUIWBeCW6pZ7dYGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 05:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6b:89:0c:11:1a:9f:2b:f6:89:a5:ef:ee:12:53:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9773d733d1845c41d3f9a362b55b74e686f9c02
Validity
Not Before: Apr 19 05:00:37 2025 GMT
Not After : Apr 20 05:00:37 2025 GMT
Subject: CN=fa300405abacf362e87246c12e4b8749d7007302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5d:de:36:3e:0b:a6:06:f3:85:c9:57:9e:f3:
3f:0a:f7:96:be:e3:57:ad:82:72:bf:8b:0b:89:1b:
b0:a1:e4:bf:e2:3a:43:2c:4d:73:0e:14:ef:a9:20:
d2:4c:39:47:db:66:50:44:9e:28:05:75:a9:63:e1:
70:32:26:bd:13:87:72:04:f7:40:a5:ad:58:f7:6c:
99:5b:44:76:24:82:af:71:d6:bd:ee:9c:d6:96:7b:
5d:33:db:09:f6:e7:51:bf:57:c4:90:2a:b4:d9:5d:
0a:88:63:20:b3:50:19:52:bc:76:13:8b:a3:ec:bd:
45:ae:9c:2d:e0:09:60:08:d7:21:e4:16:4a:d4:9b:
40:e4:35:6d:b6:36:de:c1:38:96:ee:cd:08:2d:92:
06:1f:48:0e:c0:52:6a:29:4d:6d:eb:52:21:87:35:
4c:0c:8f:77:17:65:be:79:9a:4a:57:86:df:af:f3:
2a:67:b8:46:6a:e3:e0:89:77:5d:9a:b4:05:5b:f9:
38:e2:40:b6:d5:47:0b:c5:81:b8:5e:b4:5e:89:99:
7c:72:33:3d:ad:80:03:cf:7a:e4:74:36:b5:a2:4e:
c9:8e:b7:f6:f7:98:af:12:12:44:56:a1:58:e9:3f:
32:62:e0:0d:74:c6:30:a4:0a:c1:d5:9c:78:c3:e3:
49:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:30:04:05:AB:AC:F3:62:E8:72:46:C1:2E:4B:87:49:D7:00:73:02
X509v3 Authority Key Identifier:
keyid:D9:77:3D:73:3D:18:45:C4:1D:3F:9A:36:2B:55:B7:4E:68:6F:9C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/37411e-2b89-4079-8cfc-01a29f5f6dde/1/2Xc9cz0YRcQdP5o2K1W3TmhvnAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:25:58:3f:7c:11:ca:ff:e5:6e:c8:0f:b1:95:29:2b:27:de:
49:1f:e2:d1:28:77:88:25:02:98:48:94:aa:c6:69:5a:ab:ad:
4c:b7:13:64:1b:ab:18:1c:d5:1b:e5:65:53:16:d5:bc:a6:09:
bb:09:94:f6:79:52:30:05:21:77:8f:e9:69:8a:d6:77:13:6d:
e7:95:56:d7:50:52:f2:4a:29:e4:0d:2a:40:33:d3:c8:43:1e:
27:de:3e:1e:32:09:d7:fb:91:7e:44:8d:16:29:1f:ce:94:6f:
e1:8c:24:bf:ca:af:6d:ac:ed:1d:91:15:66:d8:c1:ae:c8:ba:
6f:67:96:b8:5d:e7:8f:70:4d:4a:92:b8:ec:f2:1a:17:c4:79:
ba:39:6c:a8:b3:1d:32:b2:5e:13:04:27:9e:74:65:6b:54:45:
69:57:9f:8d:44:cf:50:1e:f7:c3:b9:44:31:24:57:bb:42:44:
cf:bd:99:12:5d:83:26:3e:e2:5a:01:8b:bb:4b:66:d6:e1:72:
75:30:03:32:d5:4c:df:b7:e6:21:17:4b:50:59:d6:c2:e1:c3:
30:56:62:83:74:97:c5:de:ce:18:1b:43:f5:12:64:08:0e:df:
62:bc:1d:16:65:4e:c5:96:6d:c2:f3:5e:f0:08:28:cb:26:62:
4b:33:1f:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:19:15 2025 by rpki-client