Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
File: 2PcA7rBSdLMdwdrzDNfIExCrRS0.mft (raw, json)
Hash identifier: HiZ2iFuMK2VGJAOtAIIScPDMT4WQND1+KrcR8MjBtR4=
Subject key identifier: 37:3C:95:57:5A:4C:F1:70:94:A0:D6:41:EE:42:70:6F:32:11:E3:E0
Authority key identifier: D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D
Certificate issuer: /CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d
Certificate serial: 019643D6E7A1804CBB2A60C95A66836FC050
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
Manifest number: 0731
Signing time: Thu 17 Apr 2025 13:01:19 +0000
Manifest this update: Thu 17 Apr 2025 13:01:19 +0000
Manifest next update: Fri 18 Apr 2025 13:01:19 +0000
Files and hashes: 1: 2PcA7rBSdLMdwdrzDNfIExCrRS0.crl (hash: 8GjLeEvxaosePD9SJRnUvPfkt2ThpFvDBotRlJa25NU=)
2: xZeFO5Zwl5xEF1LyaSp03R5_7jg.roa (hash: IWeEq50Ry3wHX8kf3jXxRipWlWHUzhkegAPH2nDXTxI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 13:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:d6:e7:a1:80:4c:bb:2a:60:c9:5a:66:83:6f:c0:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d
Validity
Not Before: Apr 17 13:01:19 2025 GMT
Not After : Apr 18 13:01:19 2025 GMT
Subject: CN=373c95575a4cf17094a0d641ee42706f3211e3e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:7d:82:30:b7:1b:78:53:0b:5b:2a:da:de:25:
38:56:e3:b0:fe:b3:39:5b:ea:9f:94:79:4c:ef:f0:
71:5a:fb:e7:cf:2a:0c:9f:cc:a6:94:54:a6:9c:8b:
ab:d6:8b:76:1d:77:66:19:db:24:ec:d8:34:83:85:
6b:e8:a8:a2:21:ed:0d:00:7f:99:51:95:1f:2d:95:
f0:86:f7:0a:10:c5:dc:f8:87:b0:08:e5:a3:26:4c:
d6:f8:9d:fa:f5:e4:17:c8:24:28:05:79:fe:2c:11:
f0:a6:0c:9b:e0:91:96:27:97:8e:bb:9f:7d:ea:ba:
d3:a2:f5:07:d7:72:ae:25:cb:b7:0f:91:76:27:2d:
be:a4:cf:54:45:04:b7:d1:19:7b:27:d2:ef:b2:03:
c7:6e:bf:64:64:ed:55:45:71:09:fa:4e:cc:7f:08:
73:44:9a:4b:0c:87:5b:98:f9:fd:30:92:e9:4d:48:
85:af:28:59:d1:8c:f8:e7:97:a8:f4:2a:96:e7:89:
22:df:87:5c:fe:52:f3:0f:76:10:c2:46:fa:c0:96:
be:91:0b:6c:dc:35:53:43:af:19:d1:c0:a6:ee:e4:
b2:18:2e:8c:bf:6c:b7:f9:d3:2e:92:b1:b9:53:39:
94:c6:d5:97:8d:62:ab:92:f8:ef:86:f1:3a:8b:52:
95:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:3C:95:57:5A:4C:F1:70:94:A0:D6:41:EE:42:70:6F:32:11:E3:E0
X509v3 Authority Key Identifier:
keyid:D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:e1:b6:66:c2:62:be:b8:16:bd:27:fe:69:32:6a:7a:05:88:
db:06:38:0f:df:89:c2:5c:e6:b3:37:dd:88:84:f1:cf:2e:94:
f4:41:ad:26:70:ac:1d:28:e5:d4:33:09:61:18:92:a9:70:fd:
4a:6e:e6:75:4f:34:a8:32:1b:7c:1b:05:1c:b4:fd:27:bd:bf:
38:e6:f3:b8:56:13:3c:01:2b:c3:88:a5:2f:3a:1e:30:bc:3a:
ec:fe:eb:85:0c:e7:0c:9a:86:17:32:72:28:ae:28:ef:b6:c7:
a8:c8:2b:df:88:68:76:3f:b6:10:c8:2b:c9:e9:8f:c1:a3:23:
67:e6:71:34:8d:32:53:40:8f:11:51:87:91:b5:50:35:11:38:
51:c4:29:17:41:e4:7a:cb:92:7f:28:01:e0:85:09:04:29:2c:
d0:29:5e:61:6b:82:64:69:89:58:38:0f:fd:36:18:8b:9d:9c:
b7:72:51:7d:bb:8e:6e:c9:8b:b0:53:11:45:41:3d:dc:a6:15:
6a:18:35:88:28:9d:7b:cc:e0:f1:93:7f:fc:66:da:59:9b:09:
72:1b:65:d4:2f:70:16:32:a8:12:29:ae:93:6b:b5:5a:92:ba:
7c:2d:fe:bd:7c:c1:78:73:1e:12:21:1d:6f:d8:7b:c1:dc:93:
12:5c:15:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:40:04 2025 by rpki-client