Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
File: 2GucF3igUp7n4jIAPL5cmTw2_ds.mft (raw, json)
Hash identifier: SenKqayiWIbprZ5A4lALoj+0k9RUuSlZ4gFyJG9+cVo=
Subject key identifier: 3D:A4:86:96:5A:AB:D7:FC:64:0D:8A:A8:03:4C:05:45:2B:28:05:97
Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Certificate serial: 019651919200BD8B5CE1DDF1492C73C43974
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
Manifest number: 025C
Signing time: Sun 20 Apr 2025 05:00:16 +0000
Manifest this update: Sun 20 Apr 2025 05:00:16 +0000
Manifest next update: Mon 21 Apr 2025 05:00:16 +0000
Files and hashes: 1: 2GucF3igUp7n4jIAPL5cmTw2_ds.crl (hash: bLpyg+O0zktXACycAcvSO0ROXL6rP2M0VvT0ICFjpMI=)
2: xaTFNHvIwGFGt2nvvisSJGJJn1U.roa (hash: dncutlGZCp4ijfHdULe589Ce9+6dKbRvNV71t7mvtSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 05:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:91:92:00:bd:8b:5c:e1:dd:f1:49:2c:73:c4:39:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Validity
Not Before: Apr 20 05:00:16 2025 GMT
Not After : Apr 21 05:00:16 2025 GMT
Subject: CN=3da486965aabd7fc640d8aa8034c05452b280597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:07:ca:b5:a1:f9:66:c3:08:c6:f4:82:f3:9b:
2d:b7:d2:78:75:87:86:a5:56:0e:0a:92:19:71:92:
f2:df:d7:74:34:d6:c9:51:91:ef:f4:c6:7e:19:2d:
0b:20:42:60:1d:a1:21:23:9f:c1:ae:de:58:68:aa:
7e:58:da:ab:ea:85:20:8e:d3:f1:5b:f3:4b:ac:32:
6f:aa:1b:87:bd:1a:e9:83:3c:84:ab:b3:fc:c8:52:
91:73:cd:c8:c2:00:6a:14:6e:73:8f:73:58:fd:86:
a9:83:27:10:87:ca:e1:9d:77:a0:59:88:bf:14:de:
7c:01:07:84:f5:6e:55:bf:f3:d6:d5:45:9f:73:b9:
62:35:cf:2a:35:ea:e6:8d:db:5c:cc:65:20:ec:2f:
d6:a5:8c:ed:5b:2c:e3:50:01:4e:8f:b7:35:08:7e:
fa:0f:dd:ec:37:31:c7:00:83:e3:6f:62:ec:33:76:
88:ab:00:82:fd:3b:26:c6:fe:2d:41:e2:21:17:0d:
1a:20:7d:98:49:9e:3b:f0:f7:b4:5c:62:a1:c4:c2:
81:da:a5:b6:bb:9e:d5:ff:36:58:1f:9e:07:ce:5b:
68:e2:1d:32:7c:94:a7:f9:12:a6:52:f7:f7:ad:49:
8b:a2:c2:81:86:41:26:57:42:c3:2e:2a:a3:79:d7:
4e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A4:86:96:5A:AB:D7:FC:64:0D:8A:A8:03:4C:05:45:2B:28:05:97
X509v3 Authority Key Identifier:
keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:66:1a:40:dd:dc:e5:56:38:df:ac:fa:ac:87:4b:b4:2f:18:
42:06:b0:6a:72:f9:d6:ef:eb:a5:bf:29:bd:fa:2f:e2:4a:09:
bf:fa:aa:54:d5:49:ca:a5:09:e9:f7:00:48:f5:35:b8:1c:2b:
d3:25:4d:06:29:6f:dc:2a:8b:53:5c:45:dd:21:7f:c5:df:cc:
a4:6e:9c:f5:99:78:56:f3:f1:5b:8f:3a:1e:de:30:b2:01:b0:
f1:f7:26:4d:cc:66:2a:4f:a0:11:35:1e:f2:6e:c7:a1:23:6b:
44:eb:74:51:56:d5:f6:a2:cf:c9:01:19:9b:27:e4:76:d0:0d:
1d:7a:7a:1d:b0:6e:6f:be:1b:30:f8:11:51:26:0e:37:3b:8a:
b2:25:2e:ba:7b:34:6d:71:af:20:62:85:7a:cf:ce:9b:73:c7:
38:ec:f9:d7:de:2c:fd:e5:24:39:a0:7e:df:f0:dc:6d:24:aa:
df:6b:16:94:43:e4:47:8e:a1:ba:d3:75:24:f7:92:b4:7d:64:
b8:9f:53:69:6b:b9:3a:bd:cc:02:17:65:bb:93:b3:e3:8d:47:
18:f2:19:77:65:6a:0d:ea:b2:61:96:59:d1:30:a2:48:16:62:
33:98:34:16:0a:70:4a:3d:84:79:9f:61:41:24:79:df:f2:5f:
ca:b4:a1:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:10:25 2025 by rpki-client