Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
File: 2AtJfVG9n0e4T2k9aH--jPbP-3U.mft (raw, json)
Hash identifier: VL9PfQLimXiRTOnLLepJM7WJkx/5wr45X4/uGyrTtx0=
Subject key identifier: 1B:E3:1E:B5:5B:C6:48:1C:BA:B8:DB:A6:59:D8:32:C5:4A:41:54:5E
Authority key identifier: D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75
Certificate issuer: /CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75
Certificate serial: 01967B6971B5BD5AB59C51EC076BFEFFFCD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
Manifest number: 0621
Signing time: Mon 28 Apr 2025 08:00:30 +0000
Manifest this update: Mon 28 Apr 2025 08:00:30 +0000
Manifest next update: Tue 29 Apr 2025 08:00:30 +0000
Files and hashes: 1: 2AtJfVG9n0e4T2k9aH--jPbP-3U.crl (hash: +EtEAVraCPiQ1H6jpp6fX/XV86VQDDMSSEJALFaFbpg=)
2: hdAMTn4jDkrD2hHAq0_eM98drDA.roa (hash: tBnX0T05qx7IyB4+d81WJZpMceoIZZmZdpDJiqlpcEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:69:71:b5:bd:5a:b5:9c:51:ec:07:6b:fe:ff:fc:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75
Validity
Not Before: Apr 28 08:00:30 2025 GMT
Not After : Apr 29 08:00:30 2025 GMT
Subject: CN=1be31eb55bc6481cbab8dba659d832c54a41545e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a4:12:b8:99:e6:ac:db:93:8b:02:95:27:4d:
0e:1e:8b:c4:74:5c:c8:c0:f3:ff:d1:2c:7e:9c:2e:
5b:2f:df:19:b2:80:0b:df:f0:cb:c4:4d:84:81:0c:
7d:a8:80:38:25:e8:ba:3a:2a:73:15:9f:71:45:be:
22:49:73:ee:14:ed:e9:41:6b:fe:fe:97:ea:eb:18:
d3:f5:b2:de:74:45:94:7d:ae:12:b0:ba:60:aa:c6:
b3:71:2f:01:1f:76:6c:52:74:6f:e1:ae:b3:ce:a0:
9f:93:60:b6:0f:88:a6:64:b8:d3:a2:0a:82:f5:df:
e7:ba:92:fb:d6:88:69:78:e7:65:7d:bd:34:3c:98:
2c:48:bd:b4:f9:da:99:82:28:56:e7:8c:30:b1:f3:
49:74:3a:f4:c5:9e:f9:85:9a:da:9c:50:ac:eb:a2:
ed:2a:39:fa:b3:c1:6f:91:bc:2e:ef:91:95:61:7d:
f6:2e:b1:81:c8:d6:bb:a9:87:f2:a5:db:9a:6e:7c:
89:15:f9:19:26:8c:07:15:f0:96:a6:c7:66:52:3d:
7a:5e:5e:52:d7:98:b4:d3:40:aa:3f:51:8c:e5:99:
f1:5c:6b:04:32:0e:f5:2a:9d:ad:0c:8b:39:31:b9:
b3:52:44:1d:75:76:88:c2:37:90:7a:6c:46:6f:fa:
52:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E3:1E:B5:5B:C6:48:1C:BA:B8:DB:A6:59:D8:32:C5:4A:41:54:5E
X509v3 Authority Key Identifier:
keyid:D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:10:ee:36:94:b8:42:42:67:f7:e7:7e:db:2c:3d:14:a3:9f:
db:e0:a0:73:05:6a:eb:7b:aa:88:f6:4c:99:5a:d8:05:87:61:
8a:ec:5a:43:bc:20:48:47:dc:59:34:08:1b:f4:99:e2:32:07:
27:1e:c1:10:8a:de:d4:b9:f3:08:bb:60:cd:17:f1:fa:e9:e2:
cc:b9:11:d3:26:dc:d9:75:04:83:eb:ca:c7:51:86:1e:f7:99:
6c:61:f2:dc:9a:38:f2:bf:ea:a8:e2:eb:e3:5c:bb:39:0d:9a:
f4:ff:e4:8a:0c:b6:fe:30:88:d9:95:59:af:7c:90:fe:b6:b8:
fa:ac:f6:ba:cb:79:da:9c:27:e9:70:55:e6:07:0b:4c:69:34:
42:2e:b4:6c:c9:42:88:18:13:da:14:da:eb:1a:3a:0e:bc:b8:
2f:73:05:09:4c:85:a3:56:ff:0c:3e:78:b7:a3:08:74:67:c5:
e1:4a:4a:c1:3f:09:ab:4e:b0:69:59:11:fd:91:bf:35:0a:ec:
55:36:93:a4:9d:e4:0d:1e:92:06:a2:51:42:30:b6:ce:71:48:
44:b3:ac:79:ca:a4:48:70:05:84:f2:70:db:4e:91:76:a2:75:
4c:d4:dc:e7:3b:63:fd:4c:be:58:f7:3a:30:79:ab:5e:a2:a7:
d9:26:75:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 14:59:29 2025 by rpki-client