Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
File: 2ko-wHuXhY5oNKWh-I64_jG_eyA.mft (raw, json)
Hash identifier: pSqUNORW+1UAdGGzLyWa/M3bHdImvRQ8s1sDRIgxllY=
Subject key identifier: 27:D6:23:AF:C9:A9:7A:E0:C9:31:E8:CC:C4:4E:4B:97:82:F9:AE:5D
Authority key identifier: DA:4A:3E:C0:7B:97:85:8E:68:34:A5:A1:F8:8E:B8:FE:31:BF:7B:20
Certificate issuer: /CN=da4a3ec07b97858e6834a5a1f88eb8fe31bf7b20
Certificate serial: 0196526D7D13F644B98F7E9227A03B692DAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
Manifest number: 05A8
Signing time: Sun 20 Apr 2025 09:00:28 +0000
Manifest this update: Sun 20 Apr 2025 09:00:28 +0000
Manifest next update: Mon 21 Apr 2025 09:00:28 +0000
Files and hashes: 1: 2ko-wHuXhY5oNKWh-I64_jG_eyA.crl (hash: l7SP8xDq9Wtm/x/HokyUw03Um28cSLUgpS2RKx/LbNE=)
2: SKL1Cd8Tn-ZKbcOxgMo9-wJ0gbQ.roa (hash: 4u4TOuVY+peXwBlO4N668GLOAFUf52/Bj870kxpoG3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:6d:7d:13:f6:44:b9:8f:7e:92:27:a0:3b:69:2d:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da4a3ec07b97858e6834a5a1f88eb8fe31bf7b20
Validity
Not Before: Apr 20 09:00:28 2025 GMT
Not After : Apr 21 09:00:28 2025 GMT
Subject: CN=27d623afc9a97ae0c931e8ccc44e4b9782f9ae5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:2f:81:46:a2:ce:8d:b1:f9:fe:51:75:50:1e:
86:fd:e9:4c:59:69:e9:42:1a:8c:72:2b:9a:17:6c:
86:27:2e:23:26:7d:d8:40:31:ac:fe:cd:d0:e6:0a:
0f:c9:f4:56:bc:31:45:47:ec:b5:54:4f:f2:dc:f3:
79:53:0e:fd:63:45:57:d7:f9:37:da:81:d4:9c:bc:
04:0e:44:1e:8c:48:a8:d8:1d:f3:f2:5e:e0:e5:11:
42:46:db:3d:f4:74:a0:d5:da:72:2e:4d:d9:bd:b9:
93:3d:90:af:ec:8d:03:24:76:32:c5:1b:70:a7:e7:
cc:7e:31:74:96:13:fd:d1:19:94:35:20:24:5c:bb:
59:af:ae:0b:75:21:54:52:e3:ec:94:a7:62:c5:fe:
40:f0:20:b4:4a:fb:19:0a:6c:ad:75:f7:71:90:d6:
9c:09:e2:4a:c8:bb:3e:02:9b:d1:78:40:d1:d8:30:
f4:b8:41:f6:90:52:a2:1e:9e:7e:0b:54:28:9a:70:
2c:19:8e:52:c5:a1:26:22:90:20:28:c7:74:cf:9b:
1d:62:12:f1:0e:e2:76:17:26:9b:87:3e:aa:e1:1d:
a9:2f:51:fd:9b:31:f6:cb:50:e2:72:5b:db:1c:0e:
63:06:aa:86:71:2f:36:41:db:81:54:e6:69:db:20:
4d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:D6:23:AF:C9:A9:7A:E0:C9:31:E8:CC:C4:4E:4B:97:82:F9:AE:5D
X509v3 Authority Key Identifier:
keyid:DA:4A:3E:C0:7B:97:85:8E:68:34:A5:A1:F8:8E:B8:FE:31:BF:7B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:b3:99:5a:78:31:0d:ee:d2:cf:e4:21:81:4f:0a:64:8f:ae:
3a:c7:52:2f:a5:f5:96:5d:14:b2:96:05:98:0d:9b:36:2a:ef:
0d:e0:ca:6a:15:78:b5:e0:46:ab:f5:fb:b7:45:76:22:bc:fa:
89:5e:71:67:61:b5:3a:0e:e3:4c:73:27:d3:f4:d5:96:19:0e:
21:ad:83:24:f5:f1:82:16:38:3a:84:1e:2c:d0:c0:02:18:21:
d6:0c:7f:49:4e:18:19:60:4b:b9:f6:16:8d:5d:9f:79:7d:1a:
2a:10:24:29:ec:4e:64:22:14:11:b4:02:ff:d4:76:60:8a:15:
3d:16:32:50:65:d8:ed:35:b4:39:c3:92:01:d5:93:bd:5c:db:
94:08:64:10:0f:f1:00:df:c6:84:5c:06:5d:bf:cd:d8:d0:31:
68:8c:14:90:f3:ee:e0:ff:6b:62:20:ac:a5:27:3b:f9:63:ec:
ee:a9:60:ec:9a:6a:37:a9:69:e2:d4:88:ac:ae:a6:19:5c:f0:
c6:8d:c9:65:d3:f1:d2:62:37:73:31:a2:ee:62:12:3e:6c:e6:
fc:6f:cf:45:c4:88:ec:07:01:56:2d:82:d9:d8:8b:01:1a:26:
af:38:6b:4f:15:92:48:64:2f:03:94:30:15:14:08:81:8a:b0:
3c:9e:3c:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:13:28 2025 by rpki-client