Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
File: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft (raw, json)
Hash identifier: f1vy591vq4adFI7tLJzFagleID6pYIhVw/0nvlIpva8=
Subject key identifier: CC:D4:BE:18:4A:93:29:2B:7D:45:52:52:20:8A:F7:91:B1:21:BB:3B
Authority key identifier: D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
Certificate issuer: /CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Certificate serial: 01964E91084D7A1467FB54A75B5B81E09650
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
Manifest number: 14F9
Signing time: Sat 19 Apr 2025 15:00:49 +0000
Manifest this update: Sat 19 Apr 2025 15:00:49 +0000
Manifest next update: Sun 20 Apr 2025 15:00:49 +0000
Files and hashes: 1: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl (hash: Dv+SAgtBlmfKOAYJCcntJXAsMfWFbY4YyIGZ5VtZ9YM=)
2: wIuWmKQqKRafTdpQCAjgZGdOwSg.roa (hash: FSZWMB16h9Z2ZEIxjWe18pWkdzeyGtdch3JRTJHt/gU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:91:08:4d:7a:14:67:fb:54:a7:5b:5b:81:e0:96:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Validity
Not Before: Apr 19 15:00:49 2025 GMT
Not After : Apr 20 15:00:49 2025 GMT
Subject: CN=ccd4be184a93292b7d455252208af791b121bb3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:67:dc:0e:d9:8b:7d:e4:f7:66:7d:75:52:97:
c4:a5:72:7a:d8:62:22:f0:94:b9:dc:2b:a2:82:ff:
09:ed:ef:29:ad:af:72:da:4c:1c:fc:cb:a0:23:a1:
d3:4f:ea:7b:fe:83:f0:c5:fc:b2:66:fd:85:5f:8b:
cb:83:5d:a0:98:84:53:f3:e0:35:0e:47:cc:1b:7a:
fd:5f:ed:96:c0:97:10:c3:a6:eb:4d:fd:50:29:5c:
d6:ce:51:cf:8f:ec:be:02:bd:04:ac:be:76:2a:f5:
64:22:9a:73:73:ac:a7:77:b0:1a:5b:1a:3c:5c:94:
a2:99:37:94:b7:d8:f1:60:b9:11:cd:93:65:7d:34:
10:f2:3a:92:d3:3a:9f:f6:f2:18:01:1f:12:d7:2f:
5f:70:32:26:9a:c8:74:2f:96:e2:0c:b1:67:e3:a4:
90:50:2c:16:5e:bf:e5:11:1f:08:a7:04:c9:76:72:
cb:cf:5d:d5:ee:db:62:93:01:28:2d:0b:e9:0b:bd:
f8:62:28:06:8f:f0:44:33:e4:fe:e5:12:61:03:3f:
ff:34:61:08:0e:00:c3:3d:56:18:26:d1:b0:28:ee:
c9:e4:d5:3f:57:69:20:4d:e9:69:e8:a1:eb:f9:23:
c9:29:38:0c:bd:1a:f3:b5:9e:34:79:fb:4f:b1:af:
f6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D4:BE:18:4A:93:29:2B:7D:45:52:52:20:8A:F7:91:B1:21:BB:3B
X509v3 Authority Key Identifier:
keyid:D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:0a:b4:18:d1:6e:cc:e5:b3:dc:9b:7c:37:fd:5d:26:c9:a4:
36:53:2e:7f:39:0c:76:0e:b4:67:8e:1c:42:44:22:ef:ad:11:
49:b2:e9:f7:c3:eb:68:c4:e2:87:82:b3:7b:03:77:65:61:66:
63:31:a1:8a:c6:e8:7c:e5:a1:b6:07:d0:c8:40:c7:c8:97:34:
87:e2:89:06:dd:6b:5f:75:01:34:aa:3d:66:81:84:59:84:79:
99:fd:91:f4:c1:c7:89:12:8d:71:f8:47:74:71:57:36:bb:0a:
0f:b6:16:57:21:29:4f:7d:f6:25:bb:04:0f:4f:42:e6:22:d6:
49:ed:67:6e:08:05:b2:66:e6:47:e7:cb:9f:58:3c:c0:c7:70:
ac:cd:8c:f6:ca:12:4c:af:d0:d5:32:79:4f:95:83:01:a9:7a:
16:ab:a4:ca:93:86:8a:b5:95:53:d8:2a:92:36:8b:c8:a8:44:
16:e2:6f:48:9d:07:59:0b:ab:23:ef:70:92:94:f6:b5:23:a3:
06:59:83:79:71:09:39:2a:e7:d6:c3:a5:a8:ee:0e:a6:25:b0:
e2:e4:ae:f7:3d:d0:92:94:bb:16:91:88:e8:41:43:ae:23:72:
60:27:91:65:0b:03:d2:f6:49:da:07:0a:1b:71:cf:9e:f7:a5:
be:af:bf:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:26:49 2025 by rpki-client