Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
File: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft (raw, json)
Hash identifier: 7vgacY5iFrlRXtA1uVvtB/z4JQL4I3sqNvdrPwLw8i8=
Subject key identifier: 2C:1D:D7:27:98:5E:7E:B4:F0:27:0B:29:12:ED:51:01:9C:AF:D1:56
Authority key identifier: D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
Certificate issuer: /CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Certificate serial: 0196523672FB705B86BBF3AAB2B035C06745
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
Manifest number: 0EC4
Signing time: Sun 20 Apr 2025 08:00:21 +0000
Manifest this update: Sun 20 Apr 2025 08:00:21 +0000
Manifest next update: Mon 21 Apr 2025 08:00:21 +0000
Files and hashes: 1: 0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl (hash: GTBZ2oFxkmLwlyaPu7HDg+4Y/WGBLDF4LRHwur77Y+E=)
2: Ut4z4tImR83ncGrwpXNPaCBz4dc.roa (hash: x3Tb8uXmHgRhBdCjWUywrl5EoWV8hOlCverEGcV2UXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:36:72:fb:70:5b:86:bb:f3:aa:b2:b0:35:c0:67:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a3c8cc63d0e7e069ca523f34efb3953ee21b65
Validity
Not Before: Apr 20 08:00:21 2025 GMT
Not After : Apr 21 08:00:21 2025 GMT
Subject: CN=2c1dd727985e7eb4f0270b2912ed51019cafd156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:30:54:0c:9a:bd:96:4f:e2:40:4d:41:ea:01:
b1:d6:53:c5:a7:d3:05:cd:85:78:56:c8:bf:2c:c6:
ab:e4:82:e0:0e:e3:95:ba:23:5b:4e:00:06:c3:00:
d2:be:88:4e:7f:63:c8:94:54:91:52:c5:6b:08:b7:
82:65:be:79:6c:1d:94:38:25:cb:bb:70:98:1c:57:
30:45:ad:8a:93:b7:fb:42:c1:31:f4:90:3c:c4:36:
f7:1c:f8:e1:3a:b0:00:cb:78:e7:73:05:fc:43:52:
f1:16:4a:6d:58:af:f8:b8:fc:ed:9b:b4:70:90:b4:
1e:7f:ef:22:84:34:92:a4:e9:4d:0e:6f:cb:c8:b5:
a7:dd:f3:cd:5d:ba:63:79:3e:e4:33:ed:38:cb:c9:
9b:c0:38:98:43:fe:39:a0:7b:82:99:db:a2:58:b0:
83:8c:ad:d5:f8:e5:80:d1:77:71:70:14:39:f0:bf:
4d:d0:1d:2c:60:ac:57:86:d5:a5:82:86:f7:32:82:
e3:b5:29:3a:cf:6e:a5:f3:5d:85:d6:f2:10:53:5d:
55:d5:c5:66:54:87:7e:78:8d:5a:37:71:df:28:57:
f7:58:64:ed:82:94:2f:4c:6b:69:b5:43:47:10:2d:
07:99:55:c7:46:9e:0c:75:e4:a9:49:b2:17:64:45:
af:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:1D:D7:27:98:5E:7E:B4:F0:27:0B:29:12:ED:51:01:9C:AF:D1:56
X509v3 Authority Key Identifier:
keyid:D2:A3:C8:CC:63:D0:E7:E0:69:CA:52:3F:34:EF:B3:95:3E:E2:1B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qPIzGPQ5-BpylI_NO-zlT7iG2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d0a1fe-0b65-4d50-ae2f-12898697a862/1/0qPIzGPQ5-BpylI_NO-zlT7iG2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:52:f3:11:b4:65:01:af:0a:89:aa:0b:e0:04:73:6e:c7:9f:
64:5e:7b:25:4e:10:8d:72:81:c1:53:f0:e4:b8:20:47:fc:57:
49:1f:ef:e1:d0:5c:4f:2f:e7:8c:15:3d:3a:c8:49:2c:b7:04:
cc:83:19:20:23:43:dc:40:42:8d:d3:2f:45:55:00:a7:15:c8:
f6:59:70:52:3b:d6:e6:af:9d:24:c9:69:73:f0:9a:80:81:0b:
37:88:7b:7f:26:74:97:c0:c6:a9:89:38:40:cd:85:bd:fa:0c:
bc:c9:d5:03:0c:d0:9c:d5:42:32:fd:ba:56:b5:97:53:fc:79:
d4:74:3d:8d:c5:72:5b:d0:fa:3d:10:e4:e8:ff:52:01:c8:d5:
2b:3e:fb:2d:02:91:77:31:95:8e:c9:0f:c4:ba:ff:fe:e4:22:
2d:66:a0:0b:b2:4e:87:19:b7:f3:bc:c8:4c:a3:1b:c0:72:21:
b7:5c:38:54:f3:be:86:db:52:c7:57:21:ab:18:81:e2:a1:a9:
37:2f:98:bd:01:ff:d5:9c:0f:09:f6:9e:ed:7a:46:75:23:11:
0f:78:2b:db:83:ff:94:91:f6:53:20:dd:7a:ca:38:1b:0a:a9:
07:8c:e3:50:fb:d2:09:8a:e8:78:e5:a8:c1:41:51:de:a1:71:
ca:aa:49:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:14:57 2025 by rpki-client