Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
File: 2axioKJWftFz3CqtN25FXIW8trs.mft (raw, json)
Hash identifier: b3UPLwV1C8zsICfodvRL7OplNsx+h8CsnBjwK+1Pjck=
Subject key identifier: E4:90:5A:BC:6C:D8:88:7A:5B:B7:36:A9:1D:66:02:24:09:45:FF:AA
Authority key identifier: D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB
Certificate issuer: /CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb
Certificate serial: 01967DC65A71C12C02D074AEEDD17F2D7E2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
Manifest number: 150F
Signing time: Mon 28 Apr 2025 19:01:13 +0000
Manifest this update: Mon 28 Apr 2025 19:01:13 +0000
Manifest next update: Tue 29 Apr 2025 19:01:13 +0000
Files and hashes: 1: 2axioKJWftFz3CqtN25FXIW8trs.crl (hash: J/Ezl2j/EX5RokIF9U+TXbhFsuZQSW5Wu1wF8jc1Z14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:c6:5a:71:c1:2c:02:d0:74:ae:ed:d1:7f:2d:7e:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb
Validity
Not Before: Apr 28 19:01:13 2025 GMT
Not After : Apr 29 19:01:13 2025 GMT
Subject: CN=e4905abc6cd8887a5bb736a91d6602240945ffaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:e1:68:b2:7a:5a:2f:05:ec:2d:e1:18:f2:59:
c8:51:3d:fd:5a:6e:4c:7e:99:96:2b:b9:65:a6:75:
57:9c:0b:ac:2d:27:e0:f7:28:b9:f2:4a:53:2f:ed:
39:d4:cb:8f:20:a0:21:70:90:5a:e6:09:3b:ca:6c:
f2:75:1a:0a:4f:20:cb:b3:57:5b:79:65:13:3b:5c:
c3:47:66:e4:57:3b:f7:62:e9:79:bd:ed:d0:8d:7d:
c8:6c:0f:c4:8e:cf:78:5e:d0:c3:76:4d:fd:5c:c4:
7e:6d:cc:be:47:7b:d8:ab:75:87:5e:0c:68:26:8a:
7b:6d:a3:6f:6e:16:0a:cf:63:c8:7c:e8:05:41:b2:
8a:0a:7b:7d:e1:17:0f:39:cd:a6:52:48:25:f0:d1:
b0:fe:23:b4:72:99:bf:8c:c4:1b:b5:6c:4e:18:56:
37:c5:2e:bc:8a:c7:98:a7:b9:15:00:ac:5e:83:cc:
82:09:a4:30:ed:ba:07:3d:0a:ca:fb:92:0c:6c:cd:
11:eb:15:78:1c:19:e8:0b:76:96:42:85:ab:60:ab:
1a:dd:82:59:b3:0a:09:b3:23:7f:03:ff:f2:16:1b:
c3:5a:d7:32:45:c1:65:a6:39:c7:1f:af:11:bb:65:
11:7a:bd:e8:d8:10:38:bb:a7:ab:c6:0b:d1:c0:8b:
55:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:90:5A:BC:6C:D8:88:7A:5B:B7:36:A9:1D:66:02:24:09:45:FF:AA
X509v3 Authority Key Identifier:
keyid:D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:87:a0:7f:a7:2b:7c:a0:6e:9c:81:e9:36:e4:17:6f:80:9e:
6b:f9:94:3b:57:0f:c4:79:37:5f:68:06:35:9c:09:2f:92:20:
c3:24:b3:b4:1e:60:04:fb:9b:fc:e4:ea:5a:e3:b4:4f:80:0f:
d3:5c:bb:2a:b0:4f:36:85:df:72:86:d1:94:cf:67:a4:38:a7:
b9:ea:d7:23:34:5c:60:c8:85:90:38:12:51:34:22:71:7f:e8:
97:e8:a6:e0:e2:ad:de:79:f4:19:d1:42:20:ba:d2:37:f1:bf:
e1:02:bb:a4:ae:9b:68:fe:97:b6:36:a3:c9:4f:38:a8:bf:e6:
ea:d5:60:89:9b:34:cd:78:d0:18:d2:1c:85:57:b9:44:5d:61:
1b:c5:80:4f:f0:2a:f4:47:9d:41:2c:76:8c:ab:85:85:3d:94:
2a:78:89:49:98:72:df:ef:4a:69:8d:83:04:61:49:1f:10:48:
9c:90:f0:dc:ee:6d:33:ab:41:24:88:be:af:0c:bd:7c:6f:f9:
b7:d7:d7:35:5e:4d:6d:e9:af:4c:49:7f:97:38:aa:e6:c4:d3:
72:11:14:72:6a:0d:5c:8d:ab:8a:98:06:b9:ea:2c:c3:11:ff:
ce:2d:8e:32:da:70:0c:db:8e:f3:cf:88:a6:f5:bc:b2:9e:f3:
e3:15:4a:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:50:09 2025 by rpki-client