Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
File: 2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft (raw, json)
Hash identifier: /PAUGRH2ouhNlitFz+2rMIFruSNplWriKQeJPFfPu2A=
Subject key identifier: DE:87:4C:85:E8:4B:BD:77:D6:07:DD:32:89:3A:AF:12:2E:41:57:55
Authority key identifier: DB:FE:F0:D0:E3:F3:A1:13:43:BB:91:7F:CB:79:33:F4:E9:DA:E4:AD
Certificate issuer: /CN=dbfef0d0e3f3a11343bb917fcb7933f4e9dae4ad
Certificate serial: 01965CF1A8581F12A8140EADCCFC2B2F2F0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
Manifest number: 07E3
Signing time: Tue 22 Apr 2025 10:01:03 +0000
Manifest this update: Tue 22 Apr 2025 10:01:03 +0000
Manifest next update: Wed 23 Apr 2025 10:01:03 +0000
Files and hashes: 1: 2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl (hash: AzKDE9KyeaduroizAOrN+fHg1EekkNwk9d65GbSEttk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 10:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:f1:a8:58:1f:12:a8:14:0e:ad:cc:fc:2b:2f:2f:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbfef0d0e3f3a11343bb917fcb7933f4e9dae4ad
Validity
Not Before: Apr 22 10:01:03 2025 GMT
Not After : Apr 23 10:01:03 2025 GMT
Subject: CN=de874c85e84bbd77d607dd32893aaf122e415755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:48:1f:ff:b4:96:e5:3a:f5:a0:0a:b2:22:83:
bd:13:99:ea:12:8b:5b:5b:95:73:43:49:e1:0c:9d:
7d:78:7c:24:22:7d:3a:82:59:c8:6d:67:c7:03:7a:
e5:97:2b:b0:fa:48:00:35:9b:72:70:1a:e5:3e:6a:
7a:ef:8e:09:8f:ab:70:81:4f:0d:61:89:d5:20:36:
f0:6e:32:c4:ff:bf:68:d7:4b:75:fa:5d:41:2b:f5:
b6:68:df:64:ee:cb:a7:bf:a7:17:60:22:99:ab:73:
ab:6b:3e:9c:cd:53:e1:b8:4f:77:26:f2:fa:18:79:
c0:cf:2c:e9:c1:41:22:c2:50:ae:18:03:f3:ed:d7:
cf:38:fd:93:e0:46:bc:90:8b:a3:bd:72:21:fd:04:
e1:c8:6d:fa:eb:65:5d:59:b2:13:de:c1:29:50:db:
92:b2:a0:61:1b:d2:98:ea:0c:a4:ca:f8:fb:8e:21:
f1:35:c1:dc:52:71:2b:e0:19:1f:5a:2e:99:47:48:
87:6a:67:c4:e5:a4:71:aa:8d:c8:2a:5e:39:6b:e0:
4b:8f:38:67:9b:03:cb:d5:a1:0d:a1:95:00:fb:a2:
c6:7b:52:f2:3a:e3:ed:2c:13:91:2c:a2:b0:18:eb:
d4:87:af:21:82:99:8e:17:f4:34:70:5f:52:71:a4:
30:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:87:4C:85:E8:4B:BD:77:D6:07:DD:32:89:3A:AF:12:2E:41:57:55
X509v3 Authority Key Identifier:
keyid:DB:FE:F0:D0:E3:F3:A1:13:43:BB:91:7F:CB:79:33:F4:E9:DA:E4:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:13:79:42:04:80:11:49:ae:75:6b:e4:ae:ca:87:7b:dc:43:
c0:c6:42:8e:dd:9a:59:bf:07:0d:47:6f:31:93:be:58:58:25:
5a:d4:59:3a:a6:57:ae:d9:39:7b:21:ac:42:5f:1f:22:09:8e:
76:27:0d:e6:08:79:b8:08:dd:4d:c4:a4:dc:a8:f7:8c:a8:a7:
68:d0:82:24:6b:f4:d1:9e:a8:6f:94:85:90:c7:eb:23:21:ee:
62:20:d1:6e:1e:67:35:d7:82:cd:b8:dd:e6:2e:6b:e6:e0:3e:
e8:54:97:a8:cf:43:b4:af:61:4c:77:91:b5:4c:a3:ba:8f:76:
5b:29:6a:02:1b:2d:e1:bc:a7:b2:4e:cd:bc:32:f0:cd:59:33:
31:ad:16:e2:48:91:35:38:6e:e1:51:d0:10:27:51:71:7d:ac:
55:c7:23:a4:bb:32:d6:f9:02:f9:17:0a:36:5b:9b:19:a2:bc:
70:fd:7c:b6:d7:24:59:40:ca:15:88:fe:c9:0a:0f:f5:23:18:
e1:bd:1a:8a:f3:2d:42:a8:58:c9:93:6b:7c:e2:49:ba:92:f9:
67:90:a7:db:2f:e3:b9:37:bb:37:43:0d:7d:90:ab:d0:ad:e7:
55:8b:23:14:65:2a:5d:d8:21:b8:99:72:a0:8e:8f:94:e9:0f:
0d:e8:81:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:44:41 2025 by rpki-client