Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
File: 2CsoRvCTvJQWBBvmiix4MWHrBN8.mft (raw, json)
Hash identifier: zbT1KH8qy3NVEggMr1jJX/eSMwvKUG4HCI4vhDNArsg=
Subject key identifier: 8D:F6:8E:A5:34:9A:2A:A9:E1:A7:D9:17:7A:D5:46:BB:53:23:0F:16
Authority key identifier: D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
Certificate issuer: /CN=d82b2846f093bc9416041be68a2c783161eb04df
Certificate serial: 019658A687642E937E82ECE7A0A969C808EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
Manifest number: 06A7
Signing time: Mon 21 Apr 2025 14:00:30 +0000
Manifest this update: Mon 21 Apr 2025 14:00:30 +0000
Manifest next update: Tue 22 Apr 2025 14:00:30 +0000
Files and hashes: 1: 1tdaIrt9xypJtReKdxeXXdM964s.roa (hash: 2jF3CjF80ww6ITNBk+zVZgXhV0QGg1umOnc7I4ePaOY=)
2: 2CsoRvCTvJQWBBvmiix4MWHrBN8.crl (hash: P7HnOQr3CMIO7RSfkLbxJKSMXf+8E4X48zzlpKq0mxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 14:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:a6:87:64:2e:93:7e:82:ec:e7:a0:a9:69:c8:08:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d82b2846f093bc9416041be68a2c783161eb04df
Validity
Not Before: Apr 21 14:00:30 2025 GMT
Not After : Apr 22 14:00:30 2025 GMT
Subject: CN=8df68ea5349a2aa9e1a7d9177ad546bb53230f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fb:76:0a:a8:b6:27:2c:1d:52:b7:9f:33:98:
a5:24:9b:d4:f4:a6:61:21:25:76:8a:d0:88:85:4f:
0d:f6:e4:00:4a:c1:89:12:f5:44:fa:4c:fd:f9:c3:
67:77:94:72:08:b6:cf:c1:99:25:4c:83:b6:fd:95:
ce:ff:6d:c9:23:22:1d:90:ec:8b:45:4c:b6:11:78:
df:c6:1a:e2:37:14:a0:09:70:17:8d:e5:b3:20:c3:
79:df:14:b5:f0:84:79:8e:d3:01:b8:f4:ad:9d:df:
60:ff:a5:fe:a2:4a:a5:68:87:ea:6c:80:01:df:99:
86:bd:32:99:01:69:39:60:f3:29:47:0f:5e:9b:db:
c0:95:ce:a4:cd:30:3b:e8:2e:c6:7e:82:ee:89:44:
d8:02:cc:e7:f6:1a:bf:68:be:3a:5f:d4:b6:4d:7d:
a3:40:a2:3c:cb:07:55:fa:bd:8e:94:2f:04:6f:e4:
6e:14:a1:c4:c6:d2:c2:e7:bd:b9:17:6c:dd:5c:1a:
37:44:37:91:ff:7a:84:40:20:25:93:22:df:c0:81:
d4:f7:bd:0a:95:44:11:b2:ed:d8:38:26:ef:a3:db:
f6:b5:fc:74:9e:30:ea:13:88:20:4e:9c:b3:41:ef:
b5:78:20:ae:8a:d3:e2:a1:4f:99:f4:0d:50:83:dd:
66:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F6:8E:A5:34:9A:2A:A9:E1:A7:D9:17:7A:D5:46:BB:53:23:0F:16
X509v3 Authority Key Identifier:
keyid:D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:ef:5a:65:36:a7:31:10:ce:d9:83:31:11:bb:0d:31:2a:a4:
4c:aa:b1:21:4c:cd:bb:c5:53:0d:26:f7:5d:6b:d5:65:3c:b0:
26:ef:58:16:56:a0:0b:56:d3:5a:d4:32:be:02:97:7a:f3:14:
74:4d:0a:d1:41:ee:5c:42:c6:6a:db:f2:3a:10:58:58:d9:75:
24:bd:56:d2:28:10:49:76:84:ab:10:6a:7c:26:76:c4:b9:6a:
57:00:5a:b7:68:20:fe:4b:dc:99:2b:14:b5:04:a8:a8:0b:4b:
d8:aa:7e:6a:d4:ca:76:96:b7:7c:58:74:b3:10:dc:c7:9e:f0:
4a:84:fa:4c:ad:44:ef:bf:a5:49:39:5b:65:c9:f5:f8:d8:7b:
43:f4:53:54:ba:86:71:76:a4:b6:11:76:56:ed:c9:62:6c:63:
a7:26:98:69:f4:24:8f:b5:c2:46:43:69:02:73:8a:20:e0:23:
11:1a:f5:19:71:d0:9e:bf:9f:45:fe:d0:fb:ba:ad:78:e8:e1:
88:dd:04:c4:f0:3a:b1:35:bd:16:27:eb:c8:20:57:de:d8:b2:
dd:b0:82:9c:3e:7c:5e:da:2e:76:d8:f6:ce:8f:9f:c3:e5:2c:
55:92:43:28:88:ec:a8:3e:bc:5b:bb:76:d7:99:c0:15:f9:ce:
a2:33:e5:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 22:51:27 2025 by rpki-client