Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: 5XPWUc34mkS+JiirbT5aTKlZ2Q6fxG3FN4zkTDCxh9M=
Subject key identifier: 4B:F6:73:B9:5B:45:59:1A:A7:AD:CD:7C:59:56:55:6D:37:6B:A4:A4
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 0196851126BC92E2A214FD71E5B343D0571E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 10E4
Signing time: Wed 30 Apr 2025 05:00:15 +0000
Manifest this update: Wed 30 Apr 2025 05:00:15 +0000
Manifest next update: Thu 01 May 2025 05:00:15 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: uOkJzL/Hslqe4RThCCYfqTA4QkETXyZmyv89lDCDSJY=)
2: B9-JyKOh9vcA8Yt248kp1OHsLjE.roa (hash: IbF0FRhBYEIf5hZ2KcvfEljtf1YgGGazPG/5I71dHJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 05:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:11:26:bc:92:e2:a2:14:fd:71:e5:b3:43:d0:57:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Apr 30 05:00:15 2025 GMT
Not After : May 1 05:00:15 2025 GMT
Subject: CN=4bf673b95b45591aa7adcd7c5956556d376ba4a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c6:7d:ea:48:f9:38:5c:c6:4a:4b:a7:27:49:
63:ff:7b:28:ca:a5:4b:ba:14:92:87:4f:1b:7d:7a:
2f:e9:5f:9e:af:76:9e:bd:6c:b4:33:31:c6:be:0c:
dd:e1:6b:a2:4b:3c:a2:5a:66:12:38:c8:63:c7:85:
90:ee:47:cb:fe:50:7d:3a:b4:92:a2:2f:3d:40:5f:
c8:15:fd:f5:4e:70:ef:84:4d:10:8d:15:d6:41:9a:
e9:63:ae:e3:66:c0:2d:4f:01:c3:57:42:74:38:84:
0b:99:a7:d1:b5:2c:9d:69:1c:48:8f:fa:4d:6f:24:
f6:8f:08:31:75:27:33:40:a3:73:61:9a:11:5e:71:
83:f5:46:5f:ea:e1:1e:08:30:b9:5f:f2:e0:36:70:
5e:c9:e5:f5:be:71:d1:a2:9a:f1:42:eb:67:04:87:
10:cb:ee:d2:f3:48:76:fa:21:2e:7e:49:1c:46:d9:
ad:d2:27:d7:fb:81:44:67:71:ec:dd:89:b5:e9:cd:
3c:61:49:ae:5c:b8:2f:50:4c:ef:56:b6:b0:32:17:
d3:5f:b2:f3:d3:95:aa:aa:85:e4:54:56:60:59:ea:
50:be:d3:7d:2a:0a:50:e2:9a:bc:8a:39:1d:9c:28:
b9:3b:31:65:d7:1c:a6:aa:13:be:a0:e8:72:15:24:
95:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:F6:73:B9:5B:45:59:1A:A7:AD:CD:7C:59:56:55:6D:37:6B:A4:A4
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:39:42:cb:3a:eb:41:ba:cf:8c:bd:00:59:e2:f1:e5:c6:a8:
aa:cb:97:36:87:40:ab:d0:1a:bb:43:a0:df:19:8b:46:b7:1c:
78:f5:08:93:9e:48:d5:f1:93:f7:b8:86:58:b6:4f:ff:8d:28:
b9:8c:1c:bd:ad:ea:02:67:e2:6e:6a:bf:ae:d1:80:d6:25:3f:
29:32:a1:7e:5b:c4:c5:be:2d:f9:78:37:3b:6b:10:14:90:c6:
6b:b2:69:00:6e:da:50:46:21:4e:a1:f1:ef:3f:f2:75:27:9c:
8e:c9:c0:c6:61:3c:c8:04:54:a8:fd:e9:4d:20:42:4d:f7:c8:
13:01:e9:4d:84:6a:b4:24:58:69:7d:a1:38:3c:c0:01:c1:b4:
76:4a:89:79:58:53:d0:f5:ae:0c:5f:71:a9:f2:7e:b5:a2:2e:
fd:03:c6:9f:e5:f0:f4:78:e2:7b:d5:7d:2a:05:14:49:7c:e8:
cf:00:97:25:6c:79:ff:a1:96:c1:3e:dc:17:0e:e3:88:d8:ff:
9f:ef:7f:26:f2:5a:a1:fd:c1:49:c4:48:70:72:c7:64:b3:6f:
31:3a:e3:79:3e:32:b8:de:47:4c:44:a8:4f:81:8b:30:cd:b3:
2d:ab:69:03:a3:b9:c0:2b:64:c4:76:3f:b6:6a:08:36:43:f4:
3b:2a:c3:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 15:59:58 2025 by rpki-client