Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: L2CfO8N3hSnEyTtrWx7lYwd9S0+wvpd/XkyfvxJ3yhQ=
Subject key identifier: 04:46:E7:F4:09:70:45:B2:0E:E0:E1:CF:CE:8B:0F:00:26:07:FE:A0
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 019641E7C38CFC71E94D11F280CAB7C3F13C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 1201
Signing time: Thu 17 Apr 2025 04:00:30 +0000
Manifest this update: Thu 17 Apr 2025 04:00:30 +0000
Manifest next update: Fri 18 Apr 2025 04:00:30 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: +EqY39H3EvJ74J/v3/tg/XNdaTXypX/CuUlKU0ueRyE=)
2: ogQz1j5jLQsKEpzhS2JSyEZnZ6I.roa (hash: B7xqxcI+bkCsaT71C5rhEWIjLfcjAKzC1lxv7kehuvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 04:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:e7:c3:8c:fc:71:e9:4d:11:f2:80:ca:b7:c3:f1:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: Apr 17 04:00:30 2025 GMT
Not After : Apr 18 04:00:30 2025 GMT
Subject: CN=0446e7f4097045b20ee0e1cfce8b0f002607fea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f5:4f:e1:0e:f2:39:33:12:24:48:80:36:b9:
2f:9b:43:18:9b:35:62:09:ce:0d:7e:cd:b9:88:75:
44:5c:e5:01:3d:4a:0c:21:69:38:02:4d:10:38:27:
4d:d6:8f:fc:c0:7d:b0:c8:d3:22:52:d6:3f:7b:03:
60:58:3e:f8:4d:fa:ee:52:c4:49:86:db:7b:df:d6:
04:ac:cb:49:d1:9a:cd:ff:ad:97:e8:1a:11:13:72:
0b:41:88:83:26:e5:dc:32:ce:26:af:2e:c1:6c:40:
e8:be:33:dc:43:5e:bb:ee:f5:0b:fd:7b:12:f0:35:
2e:72:f9:07:95:6b:fa:eb:ad:59:8b:22:09:35:88:
90:f5:69:d1:5b:09:ce:25:7f:05:6c:58:34:21:0b:
08:fd:2a:1b:1e:6a:50:a3:ca:9d:c5:5b:3a:8b:79:
72:8c:4c:ce:87:7e:34:2f:d2:63:2d:2b:57:54:11:
57:00:0b:d3:7c:c1:19:73:95:80:64:8a:95:47:3b:
8b:d6:25:d7:e9:ad:b3:2d:56:15:45:58:38:94:ea:
34:09:40:ec:05:29:63:2d:a7:f5:29:1c:5e:96:f4:
e1:56:12:d3:ad:d3:22:73:81:ef:57:e2:a9:aa:58:
a1:56:c9:27:16:43:64:28:ba:57:9a:a9:16:36:e0:
e1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:46:E7:F4:09:70:45:B2:0E:E0:E1:CF:CE:8B:0F:00:26:07:FE:A0
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:b1:4f:ea:0b:7b:58:d5:55:4b:ae:e5:9f:d1:b5:1f:f5:25:
7c:5c:8c:f3:7a:7e:7f:7a:c2:49:0b:0e:93:d6:76:c9:8c:6e:
45:d8:aa:03:77:ca:23:f3:5b:70:22:e8:db:7a:35:9b:15:98:
8b:38:1b:cb:10:9a:fa:04:f3:f5:f6:90:7c:59:d7:6c:8d:4d:
d4:44:67:6b:7d:29:77:eb:15:dd:6e:b8:f5:a9:e7:91:52:9e:
e8:92:1d:a7:2f:94:a0:cf:0b:ef:d9:f8:73:4a:e7:3b:e0:89:
6d:52:4f:d6:30:d5:9d:c9:36:00:43:5d:d2:e6:5c:a0:19:ef:
61:26:05:c3:bb:b9:a8:04:0d:38:f0:95:18:f7:42:8e:d4:c3:
6b:d7:d9:b0:d7:4f:03:16:1d:6d:d8:0d:93:a7:f9:a5:33:c8:
96:92:6f:29:8e:05:f1:17:d0:a3:17:55:e1:24:59:df:26:80:
c1:60:30:7f:37:6a:ea:55:44:be:5d:74:e7:74:35:6e:37:d0:
94:50:07:e4:d4:55:11:c7:0e:25:b1:03:79:e5:3b:78:11:6e:
6c:00:62:00:d9:c7:d8:06:ff:3e:26:8c:ab:36:bc:07:44:24:
f5:bb:d8:71:6d:a3:1a:68:43:31:80:04:51:17:63:a5:20:68:
e2:20:45:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:32:30 2025 by rpki-client