Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: Qn/61i0Ru/Brulv0z2RyG+4JFDfD+wwCqazGNyINnWI=
Subject key identifier: A7:19:35:1B:DC:E6:D9:6D:B6:13:10:C7:78:CB:6A:73:E5:F6:D8:AC
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 019676B0AAEC067DE2E9103ACDF52466ACEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 1472
Signing time: Sun 27 Apr 2025 10:00:11 +0000
Manifest this update: Sun 27 Apr 2025 10:00:11 +0000
Manifest next update: Mon 28 Apr 2025 10:00:11 +0000
Files and hashes: 1: WWNEma98vqvt3aWub4KvZrisRPY.roa (hash: 8ej/FxtmoHvT2+4JYPncO9OF+5JwUWMEm2sRynTw/0U=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: PYVIdhcsF811yzprcmTp+m2WnveE7/4J+XJGNqvXFJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:b0:aa:ec:06:7d:e2:e9:10:3a:cd:f5:24:66:ac:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Apr 27 10:00:11 2025 GMT
Not After : Apr 28 10:00:11 2025 GMT
Subject: CN=a719351bdce6d96db61310c778cb6a73e5f6d8ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a3:db:83:cf:c3:e2:41:b6:c5:60:ee:08:2b:
eb:fd:31:d9:64:20:f0:53:bb:88:0c:3e:d3:8b:8c:
81:97:2c:3d:8a:63:bc:f2:58:04:ef:f4:ab:88:b0:
76:18:65:0e:e3:dd:2a:10:cc:1e:00:fe:b0:e4:8f:
89:04:5e:96:ae:81:3a:dd:41:60:25:21:88:ef:8b:
1d:52:ce:29:89:19:1f:ca:8a:a0:44:b1:b5:5f:d3:
90:18:c9:0a:31:63:1f:ea:50:a9:a6:73:3f:c5:b4:
a8:f6:7e:4e:b6:6e:50:58:d9:d5:50:6b:84:47:6a:
ef:20:04:04:70:0a:49:22:13:ac:17:f2:77:3a:da:
9e:85:c2:04:05:c7:fa:38:09:6f:d5:c9:d5:03:b4:
ca:9f:17:9c:fa:ad:a2:22:34:f0:87:79:e1:2f:07:
e9:3f:86:57:cc:a6:f9:f1:c2:fd:7c:7b:92:52:14:
67:64:8c:20:e8:91:bf:86:2c:54:f6:07:9c:59:b2:
a9:46:b5:8b:4c:24:45:6c:b1:f8:ad:fe:10:fe:87:
c3:b5:72:4f:05:60:4b:28:23:67:c3:d6:6c:dc:8d:
5b:99:82:88:ae:ad:e9:ea:9a:ad:05:4b:1c:6e:2f:
ce:ee:bc:bf:4f:c1:bb:fe:d0:84:a6:0f:13:d6:b6:
9a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:19:35:1B:DC:E6:D9:6D:B6:13:10:C7:78:CB:6A:73:E5:F6:D8:AC
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:5d:85:37:1c:a5:1c:9a:09:aa:98:80:93:3d:15:06:48:90:
d4:f5:0a:7a:43:98:28:7f:48:4a:05:72:cb:21:d0:5a:d7:32:
0c:19:e4:53:3a:98:7a:4b:8b:d4:ff:a4:db:a9:5c:3a:8e:f6:
f0:b3:0a:96:5d:d5:48:f3:07:5e:c4:c1:62:fa:59:46:52:77:
ba:59:5c:60:f5:5a:da:16:f6:01:be:0d:a5:ce:a3:98:d4:87:
e8:c9:d2:ce:79:5b:87:91:0d:b6:b0:7e:c2:de:49:1b:7f:e0:
23:d4:ba:a4:2e:86:59:6a:07:71:04:2a:52:9f:21:31:c6:be:
e3:40:83:ee:cc:c8:62:06:13:e7:23:39:b9:08:15:42:5a:ae:
a8:e3:47:15:b8:63:dd:8b:df:ad:4a:15:2b:1d:5a:57:c0:63:
7d:c2:a4:5b:86:26:90:50:89:f3:2b:a9:c2:f9:85:90:5a:39:
bd:1e:c9:b7:78:fe:3d:0c:3e:40:87:22:ea:26:b6:37:e3:f9:
a9:4c:55:be:e7:4b:89:01:aa:71:d1:69:32:6a:87:b2:78:9d:
cc:96:8e:81:06:1e:3a:ef:5f:b9:8e:e2:b1:a2:3d:e0:99:78:
08:70:c0:0f:0e:0d:7b:69:aa:1a:92:10:b4:6c:0e:3b:50:cf:
15:e0:c2:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:48:25 2025 by rpki-client