Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
File: 2xqlqI_mUM51-73mL66AzGIz3Ms.mft (raw, json)
Hash identifier: em3vQO8yBSDwxTMXgsxatZyYQ0qpzNB2CzjCCeWwYqw=
Subject key identifier: 00:2D:81:FA:9C:A2:57:E1:36:83:17:CF:E1:B7:91:0C:C1:DF:D2:DC
Authority key identifier: DB:1A:A5:A8:8F:E6:50:CE:75:FB:BD:E6:2F:AE:80:CC:62:33:DC:CB
Certificate issuer: /CN=db1aa5a88fe650ce75fbbde62fae80cc6233dccb
Certificate serial: 0196760C33656BE5F438D0C72E9E6ADD91BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xqlqI_mUM51-73mL66AzGIz3Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
Manifest number: 0E14
Signing time: Sun 27 Apr 2025 07:00:33 +0000
Manifest this update: Sun 27 Apr 2025 07:00:33 +0000
Manifest next update: Mon 28 Apr 2025 07:00:33 +0000
Files and hashes: 1: 2xqlqI_mUM51-73mL66AzGIz3Ms.crl (hash: iADr6Yh8zNFXyOYFax8JpWD9s3zHC+MbKFZ8Y3KQgtQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xqlqI_mUM51-73mL66AzGIz3Ms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:33:65:6b:e5:f4:38:d0:c7:2e:9e:6a:dd:91:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db1aa5a88fe650ce75fbbde62fae80cc6233dccb
Validity
Not Before: Apr 27 07:00:33 2025 GMT
Not After : Apr 28 07:00:33 2025 GMT
Subject: CN=002d81fa9ca257e1368317cfe1b7910cc1dfd2dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:81:25:f7:49:a7:1c:e1:22:b7:0c:a0:56:3b:
db:51:a7:83:18:ab:46:32:76:24:6f:ee:aa:02:98:
19:29:2c:1f:35:d9:c7:51:08:29:f5:55:7c:aa:0a:
25:87:42:26:68:1c:26:ac:a4:56:0d:f1:24:94:28:
13:5d:06:35:eb:5a:06:15:d9:f3:67:a0:f3:7c:f8:
25:32:d9:e6:58:d5:e1:f7:af:4f:7b:4e:e3:66:d3:
00:6a:d2:e7:59:68:c1:c8:d3:fe:fb:d9:31:6d:12:
0f:ae:67:61:2d:da:95:7f:0f:2d:7f:33:dd:92:28:
23:a7:c9:d7:37:1e:94:01:69:db:b0:0a:8d:e1:4b:
1b:4a:41:20:ea:30:eb:2d:b8:67:4c:72:83:c5:e3:
2d:b9:4a:46:12:ac:23:51:08:15:ab:38:9b:44:12:
22:75:0d:f8:f8:3c:4e:f4:12:ba:e7:44:f7:d1:77:
c8:b5:0d:20:76:99:d4:cd:03:3d:03:46:54:a8:c1:
c1:7d:24:17:07:63:60:a5:00:8a:72:7f:31:6e:c1:
00:7d:f4:d8:ec:f8:37:71:52:6f:f6:ba:8c:ca:25:
22:cc:fc:32:12:50:51:22:72:39:a3:2e:4a:5f:96:
e6:13:d4:6a:27:8a:59:a3:de:9e:5f:5e:33:e3:6d:
2a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:2D:81:FA:9C:A2:57:E1:36:83:17:CF:E1:B7:91:0C:C1:DF:D2:DC
X509v3 Authority Key Identifier:
keyid:DB:1A:A5:A8:8F:E6:50:CE:75:FB:BD:E6:2F:AE:80:CC:62:33:DC:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xqlqI_mUM51-73mL66AzGIz3Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/7db3b8-9863-49bb-90f0-d5bdcb630177/1/2xqlqI_mUM51-73mL66AzGIz3Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:03:df:a3:3b:44:61:5a:a8:bb:22:70:7c:eb:65:c5:b3:9a:
5e:3d:d6:2e:04:6f:da:5c:e2:e0:29:60:60:42:a7:2d:98:26:
5f:83:1b:12:28:9e:ae:42:09:c4:3f:29:d4:a6:05:e1:ba:eb:
64:c6:7a:ac:3b:88:eb:90:66:15:7a:f7:32:ac:f3:d4:69:34:
89:91:57:38:1a:c9:ab:20:42:9e:14:ca:03:79:15:7c:20:ba:
86:08:22:1c:a8:ee:62:81:89:7c:3d:fb:0b:24:74:ce:48:44:
f0:f7:88:b3:61:b9:7b:4d:2c:3a:c9:f7:43:6b:13:0a:37:2c:
48:b5:01:27:d3:0b:3f:52:70:c9:02:12:4f:b2:23:03:af:51:
b4:9c:3a:0c:11:f3:31:81:20:1f:60:5f:63:4f:a7:5c:ee:98:
be:2e:3a:5b:d7:3d:99:b2:be:0e:f5:f7:92:76:f5:33:a2:4c:
c6:59:bf:57:af:a6:6b:f4:28:44:e7:9e:5e:9a:d5:d4:4a:f6:
ce:3e:93:05:a0:d3:13:c8:ac:a9:c1:b7:ed:1f:ff:74:b2:20:
8e:43:53:a0:ca:4d:f5:50:db:31:b2:3f:da:52:b1:57:32:3e:
92:d9:0f:0a:46:85:c3:58:24:10:b7:dc:12:9a:53:b2:20:72:
f0:b6:58:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:45:12 2025 by rpki-client