Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft
File: 2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft (raw, json)
Hash identifier: gUAzP19LnZIn4ul3VhWeeixGZS4DcZelsG568RsjwDk=
Subject key identifier: B2:28:6F:9D:B0:C5:FB:56:3D:02:40:95:39:70:AF:2D:FD:CB:40:8D
Authority key identifier: DA:3D:25:80:C5:49:80:CA:B3:DB:13:56:18:2E:D8:CC:81:9F:FC:07
Certificate issuer: /CN=da3d2580c54980cab3db1356182ed8cc819ffc07
Certificate serial: 019652DB6C15EA21A615BC6BC314E93E9AC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft
Manifest number: 14F9
Signing time: Sun 20 Apr 2025 11:00:33 +0000
Manifest this update: Sun 20 Apr 2025 11:00:33 +0000
Manifest next update: Mon 21 Apr 2025 11:00:33 +0000
Files and hashes: 1: 2j0lgMVJgMqz2xNWGC7YzIGf_Ac.crl (hash: FBulMRopHTQZgBE+v/tcvxFbBEnA30itZ3KfveM1poo=)
2: aVrm11uPiyldKPviAWZVNw7mX_s.roa (hash: +aUpO78+V+9JLiQkkmCO8C80eoccRFxUM2jJ9r7mFkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft
rsync://rpki.ripe.net/repository/DEFAULT/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:6c:15:ea:21:a6:15:bc:6b:c3:14:e9:3e:9a:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da3d2580c54980cab3db1356182ed8cc819ffc07
Validity
Not Before: Apr 20 11:00:33 2025 GMT
Not After : Apr 21 11:00:33 2025 GMT
Subject: CN=b2286f9db0c5fb563d0240953970af2dfdcb408d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:19:07:e5:34:0f:02:69:3b:f8:1e:62:e4:d3:
b2:b0:07:67:86:ab:0c:94:a9:71:91:1b:72:4c:7e:
54:a4:3b:b4:6b:d5:2e:b4:ca:ed:a1:89:5d:44:4b:
ac:ad:6d:41:40:cd:2f:92:b0:ea:f6:5f:ec:22:67:
96:e2:1d:7c:9d:8d:e6:d0:ab:d5:82:2e:ce:dc:e0:
56:d3:fc:80:50:1c:bd:e0:23:b4:e6:e0:70:0a:ce:
6b:d1:a7:14:86:ee:4c:1b:58:34:ff:78:be:fb:b0:
c1:89:36:a1:47:ad:9a:5b:99:66:3c:3c:bd:29:13:
35:fb:ac:73:32:f8:e1:44:d6:ec:e5:5e:96:9f:35:
55:e0:e8:84:a9:22:ed:4a:ac:4d:e7:b0:5b:80:de:
34:7e:b7:50:f0:20:c1:2d:26:d7:91:2d:c0:fb:2e:
ce:6a:dd:b6:e8:74:c5:86:e9:52:06:fa:f8:7b:89:
94:f8:a4:12:e7:2f:5d:7e:3e:ad:24:7c:1c:b3:07:
88:62:a2:7e:e3:ff:02:ba:39:1b:bf:71:e6:21:5a:
11:86:4f:ae:25:7b:a1:46:8a:7e:46:f7:98:46:e5:
b3:d9:e6:e6:cb:21:e8:4a:eb:8b:ef:60:ee:33:fa:
0b:6b:82:3a:2a:1a:b2:74:f4:02:a0:fe:4a:2b:9b:
e7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:28:6F:9D:B0:C5:FB:56:3D:02:40:95:39:70:AF:2D:FD:CB:40:8D
X509v3 Authority Key Identifier:
keyid:DA:3D:25:80:C5:49:80:CA:B3:DB:13:56:18:2E:D8:CC:81:9F:FC:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:1b:65:e8:15:fc:ae:81:3d:fb:e7:51:17:9b:d8:13:56:c5:
2c:79:d9:67:1f:f6:02:bf:03:9c:ef:bd:be:d5:bc:17:9a:f9:
7e:e9:77:23:5a:d0:50:15:30:c0:a4:23:c6:60:fc:ae:4a:73:
a4:d3:40:9b:84:42:39:db:e1:af:0a:e8:bc:99:63:1f:b5:10:
17:1f:75:66:fa:64:b8:ec:95:4f:74:2d:70:dd:9f:ac:ce:55:
f5:7e:fb:29:92:74:eb:d9:34:02:5f:26:5d:16:70:a6:58:11:
05:43:71:b1:23:4e:66:73:b4:35:41:f5:04:b4:a4:e5:71:71:
18:57:76:28:b8:c1:27:df:cb:f2:18:96:a0:1d:2c:03:39:d6:
66:c1:9f:4c:a6:6e:bd:a1:86:d1:71:b5:8e:f9:d9:5d:26:24:
61:3f:30:b7:5b:a7:a8:ef:cc:e2:ec:fc:ea:24:c7:58:0c:75:
08:88:3e:10:fb:80:1e:20:0e:97:ec:30:7b:70:c5:7c:3f:a6:
c8:73:b3:b8:5b:4b:5c:fc:cf:73:97:1b:f6:cc:55:b8:b3:1f:
e5:4b:f4:0a:67:ee:d4:e4:91:99:bd:5e:7e:b5:f7:27:91:71:
70:40:86:40:ec:aa:78:5c:22:91:02:e6:70:c4:e9:d5:82:60:
15:fc:92:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:53:20 2025 by rpki-client