Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: wZDq3jwjIxBh8/Gi8Q2GudjgPqZwTrkNS8UpKwg4o/8=
Subject key identifier: 0D:BB:79:5E:F5:0B:16:43:A9:53:1D:AA:8E:50:2F:EC:60:B0:98:DB
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 0196821069B1425B9621C06BAD7F83F1F08F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 01C3
Signing time: Tue 29 Apr 2025 15:00:35 +0000
Manifest this update: Tue 29 Apr 2025 15:00:35 +0000
Manifest next update: Wed 30 Apr 2025 15:00:35 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: 1QDnUnuDOSgY/jh2gvyOK/rTxXFZkKoTTpnPAwLK5Ks=)
2: S9_pIBHq75Wq7oGW-jAli5gxMaE.roa (hash: cpq5fUvjVAhKKLO06wh9HRGgk0x/xpun3Cli9g36l8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:10:69:b1:42:5b:96:21:c0:6b:ad:7f:83:f1:f0:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: Apr 29 15:00:35 2025 GMT
Not After : Apr 30 15:00:35 2025 GMT
Subject: CN=0dbb795ef50b1643a9531daa8e502fec60b098db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d1:4c:2d:b1:c5:d6:e3:8d:e3:fe:7c:ba:05:
38:dc:27:14:b9:ff:43:ca:00:47:8f:b2:b7:9a:9c:
bb:2a:54:a0:95:9f:36:00:08:31:bc:05:fb:52:df:
90:e6:4d:a5:5e:c5:ff:f4:83:36:4e:c9:fb:a9:da:
1f:a2:1e:bd:ad:48:3b:8e:c1:69:2c:59:65:5c:52:
a0:17:38:c7:0f:04:d0:3c:34:10:9e:27:c3:49:bb:
43:eb:b6:8b:60:2d:d0:85:d2:5d:5c:fb:cc:76:8c:
31:91:30:15:cb:1d:2f:2f:0f:d7:59:d1:0a:4a:66:
0e:78:c1:a9:5b:57:67:63:71:ee:37:db:5c:aa:7c:
27:f2:d5:fb:41:45:aa:82:99:69:79:f4:1a:f2:c9:
79:d9:38:02:5a:c6:f4:60:38:70:94:5c:a0:c7:45:
47:ef:76:87:e2:ab:ec:f1:d6:16:f7:54:9a:3e:30:
52:71:3c:f8:54:16:10:40:89:6f:08:cc:2d:63:3b:
c1:35:88:ac:34:f7:6a:d4:2b:8d:86:88:19:00:8b:
59:06:75:25:8b:79:59:2a:39:e8:62:98:ba:b0:d6:
c4:3e:2d:bd:dd:e3:51:e0:da:5f:fc:12:37:da:eb:
8a:db:5b:f4:53:22:d0:dd:96:0c:4a:66:2f:15:ed:
c9:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:BB:79:5E:F5:0B:16:43:A9:53:1D:AA:8E:50:2F:EC:60:B0:98:DB
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:cc:6d:bb:f2:66:bc:8d:f0:d5:2a:14:12:b5:fe:16:11:09:
b2:a5:ef:ff:28:4b:fa:0a:bb:2f:17:e9:cc:a5:5a:ec:08:e6:
6e:43:41:b2:c6:01:fb:f1:2d:08:d1:85:d9:eb:27:7d:f7:45:
8b:7a:d5:50:6b:98:d1:0a:0b:65:7f:cb:16:aa:2b:56:98:3a:
c9:e0:c2:b3:9a:9c:97:15:5e:9f:10:86:66:b3:b4:58:b2:c8:
d2:bd:0b:ce:b3:44:27:5d:b3:02:87:d4:20:fe:ef:62:7e:d2:
18:51:82:ce:f5:81:4d:c9:b4:af:7a:dd:90:6b:43:9b:9f:b2:
87:a2:05:7a:b3:01:f3:70:20:52:01:ec:e8:da:a8:39:a8:30:
3e:41:9c:4b:48:7d:b3:0f:1d:ac:1f:e1:73:26:ea:c1:d4:ad:
40:ad:29:f7:7b:df:a6:d8:82:97:bf:29:54:5d:5b:b8:22:53:
51:09:4f:57:54:f3:1f:81:ab:bf:41:49:9c:f7:00:38:5d:76:
f6:cc:a0:62:7e:0a:f1:79:49:d5:e6:e3:b8:4c:3e:c9:90:d8:
34:54:b4:4b:d6:03:7c:34:78:cf:47:fc:7c:e7:42:65:4e:14:
32:e8:52:46:33:2c:c5:d0:da:01:6c:aa:2a:37:b3:29:7d:f5:
3f:c1:9a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 19:57:16 2025 by rpki-client