Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
File: H9nOye0f1PQcCx4w77lshhVTvjY.mft (raw, json)
Hash identifier: r+vVMx+jzwDzkDYrF5tknzMtKBFRKE/E8gchJd3XU2w=
Subject key identifier: 2C:7F:DD:3B:76:F3:80:F5:D9:0F:47:3E:DC:14:D5:D2:2B:13:AD:4D
Authority key identifier: 1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
Certificate issuer: /CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Certificate serial: 01968F277DDA150C553C5F64E1553C3AA399
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
Manifest number: FD
Signing time: Fri 02 May 2025 04:00:51 +0000
Manifest this update: Fri 02 May 2025 04:00:51 +0000
Manifest next update: Sat 03 May 2025 04:00:51 +0000
Files and hashes: 1: H9nOye0f1PQcCx4w77lshhVTvjY.crl (hash: /bSNGWHuyDQDIJ+5DSVl8VRVbnUW41nuJq/4+SrZivc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 04:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:27:7d:da:15:0c:55:3c:5f:64:e1:55:3c:3a:a3:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd9cec9ed1fd4f41c0b1e30efb96c861553be36
Validity
Not Before: May 2 04:00:51 2025 GMT
Not After : May 3 04:00:51 2025 GMT
Subject: CN=2c7fdd3b76f380f5d90f473edc14d5d22b13ad4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0e:d0:2f:e4:e5:7d:21:66:9b:62:f3:7b:2f:
48:d6:a8:4c:b4:34:55:64:65:e8:1b:d3:08:d1:5f:
82:3a:c2:54:e9:2f:e0:a4:e6:34:66:27:92:ea:46:
ad:b5:16:1f:c2:1e:c6:79:66:b2:03:24:17:19:5a:
91:41:bc:8f:d4:ec:66:2d:39:df:f6:32:13:20:58:
2d:f4:51:25:3a:e1:79:87:06:b2:f0:af:4c:cf:06:
e8:89:e3:5e:e3:b8:4c:f1:d6:95:9b:4b:ca:8e:59:
fa:3e:c7:0f:ef:66:61:7b:7b:89:eb:0a:b3:2d:9d:
11:f6:72:4f:c7:0a:22:b4:d6:59:50:78:19:b8:05:
0d:f5:75:3b:13:42:40:0d:c4:5c:ff:88:d1:f9:ec:
59:03:d8:df:56:f2:a4:e8:53:2a:e3:4c:7a:00:58:
9c:2b:db:fd:52:32:ce:4e:b9:99:c8:92:0e:7b:c6:
c7:83:98:c2:7b:7d:0b:f9:f1:cb:aa:21:47:a5:d4:
19:59:c6:1f:09:22:77:58:93:48:48:2c:8d:ab:9f:
fa:db:3a:bd:9b:2b:d7:9a:99:ed:5d:ab:a2:97:21:
7d:38:d1:fa:92:ba:e5:bb:52:de:c5:69:46:ea:7b:
77:a0:33:65:0f:1d:bb:09:ab:cd:e4:46:06:2a:74:
6c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7F:DD:3B:76:F3:80:F5:D9:0F:47:3E:DC:14:D5:D2:2B:13:AD:4D
X509v3 Authority Key Identifier:
keyid:1F:D9:CE:C9:ED:1F:D4:F4:1C:0B:1E:30:EF:B9:6C:86:15:53:BE:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9nOye0f1PQcCx4w77lshhVTvjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e81c1a-0c87-4825-bccc-36b7b1de045d/1/H9nOye0f1PQcCx4w77lshhVTvjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:d6:73:96:43:d0:72:df:74:44:ac:03:83:86:16:18:e1:ee:
5d:4a:75:d1:9b:6d:15:e1:16:4f:a6:c9:52:9d:a6:ff:b2:22:
01:24:0f:10:d1:3f:ba:aa:e9:c1:12:d6:18:22:e0:15:d2:d1:
7e:2e:88:89:df:ff:51:07:e7:e9:c4:64:50:c0:10:ca:73:01:
42:7d:65:31:59:8d:f5:90:f1:6f:88:41:ec:96:b5:a5:83:af:
0a:14:bc:cd:ba:3c:ac:56:3f:70:60:cd:77:94:3a:6b:bb:7b:
b1:5f:d7:8a:48:df:28:7d:69:54:f3:62:56:c9:95:c3:05:eb:
1a:a1:ce:1b:61:a7:0e:dd:78:b8:13:6d:73:0e:62:fe:3d:47:
c1:f3:d6:1b:32:a9:97:94:ad:74:6a:17:0b:8c:d0:88:d6:1a:
1c:f2:a7:0b:11:8d:a3:7b:b7:bd:f3:25:03:4c:47:38:d2:0f:
8b:77:57:4d:fc:d4:01:e6:cd:31:44:54:9e:c6:0a:ad:25:03:
e5:2f:46:77:43:a8:90:38:74:02:4b:cf:64:c3:d7:07:3c:b2:
ed:6a:46:96:fc:dd:fe:86:71:cf:c0:36:42:5b:13:5d:ed:a7:
ef:dc:ed:bc:3e:04:38:ef:08:25:e7:34:15:21:67:a9:43:ab:
5c:90:81:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 12:27:05 2025 by rpki-client