Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
File: 2sTLURUIAqQBjMJWrSn1RyBnXtU.mft (raw, json)
Hash identifier: yfL6qrTRS47lw/rHQiKaQFb/FwOTMIGMVjtQxms1vJ4=
Subject key identifier: E1:88:B5:E7:E9:12:45:CD:E9:AA:7C:56:52:4D:9F:29:A4:E5:0E:6E
Authority key identifier: DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5
Certificate issuer: /CN=dac4cb51150802a4018cc256ad29f54720675ed5
Certificate serial: 01968391B39BFAA8F463B96092277BA93A4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
Manifest number: 1029
Signing time: Tue 29 Apr 2025 22:01:26 +0000
Manifest this update: Tue 29 Apr 2025 22:01:26 +0000
Manifest next update: Wed 30 Apr 2025 22:01:26 +0000
Files and hashes: 1: 2sTLURUIAqQBjMJWrSn1RyBnXtU.crl (hash: HKchXVN0zIXt2AvQ0dp0WilD7co5Pgq2veNi1by78Yg=)
2: 49hgdGQLZzb2UEr0v1DR3B_4G88.roa (hash: ieB3PoGbaENiV1L+4PpT2lhh7W1Z3Cv1HFM+GYljVmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 22:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:91:b3:9b:fa:a8:f4:63:b9:60:92:27:7b:a9:3a:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac4cb51150802a4018cc256ad29f54720675ed5
Validity
Not Before: Apr 29 22:01:26 2025 GMT
Not After : Apr 30 22:01:26 2025 GMT
Subject: CN=e188b5e7e91245cde9aa7c56524d9f29a4e50e6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:37:38:b0:5c:aa:93:fa:21:99:66:5f:a0:86:
99:65:3d:74:19:6e:29:2a:1a:1f:3a:aa:6c:f5:eb:
07:9e:72:d5:c7:b5:03:c3:9f:d1:6d:c0:8c:36:4e:
38:f1:6d:9e:2c:c1:0b:e9:63:ef:74:b5:db:fc:4a:
fa:aa:12:55:83:92:ff:15:1f:d9:72:73:35:63:85:
2a:73:bc:4b:73:4f:4c:5f:5f:61:25:cf:7e:d5:c4:
e1:4f:9c:f0:62:e3:28:de:32:c6:2c:2d:f4:4d:f1:
3b:8f:25:b8:e3:e8:70:a7:50:d4:fb:f8:d7:e9:6f:
aa:f8:7c:36:e3:99:00:30:6a:fe:4e:9d:0c:0e:74:
7f:5e:81:8e:ba:bf:1b:0f:97:36:a2:ef:a8:13:0d:
29:cf:8e:d1:cc:da:5e:b9:d4:84:62:f4:62:23:7f:
49:e4:ba:f4:64:a9:01:cf:f1:fa:79:40:0b:2b:c6:
d9:dc:17:e9:d4:c7:ac:19:09:c2:f7:f7:1a:6a:9d:
e8:11:f8:72:06:d7:8d:55:eb:64:17:2e:68:bd:dc:
8e:78:0e:26:d4:22:00:9c:0a:ad:33:b7:db:db:03:
dc:9a:35:7f:67:60:bb:7f:86:7d:c8:17:34:08:e1:
cf:01:ae:b6:ed:35:08:c5:cf:41:73:7b:06:f4:36:
7e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:88:B5:E7:E9:12:45:CD:E9:AA:7C:56:52:4D:9F:29:A4:E5:0E:6E
X509v3 Authority Key Identifier:
keyid:DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:8f:49:a0:51:45:f6:0c:83:72:9f:d1:52:68:a0:cc:fa:64:
5e:7c:ae:34:3f:39:b1:1c:0b:3e:38:05:b9:38:8c:8a:66:9f:
62:a3:53:87:38:7d:96:16:0a:9a:ce:7a:74:d7:f2:56:27:71:
ba:7a:ca:d0:e7:63:c7:bd:dc:76:26:e2:12:c6:56:ec:dd:a6:
b4:24:a0:da:0e:2b:00:bb:90:39:ab:3d:00:3b:03:11:fb:ce:
89:c6:78:2d:2d:35:b0:7b:73:11:b5:e9:93:20:cd:ab:e4:b1:
33:c1:da:8e:80:ff:2d:c3:da:8b:48:6d:0e:bb:9f:da:f5:f0:
01:31:1a:13:93:df:15:9f:7f:9a:ee:38:1b:a3:e3:2e:db:fb:
d0:a2:8f:86:06:5b:8a:e8:b0:ef:c0:07:f5:f4:2e:ef:79:3a:
db:8a:eb:b7:cc:9d:24:a4:d6:21:2d:bf:10:14:dc:f6:ac:04:
c2:ea:19:28:65:8a:02:46:20:87:4f:74:7b:d4:00:98:b2:a7:
98:a6:a7:54:99:a0:c2:02:9f:75:fe:5c:a7:33:9a:6f:ba:a2:
38:a1:9c:2e:84:51:8b:90:01:7c:80:db:5a:67:28:b3:61:c7:
bc:d0:5f:06:b8:38:7f:67:2d:45:49:a7:1e:c0:fe:0f:7b:a1:
8d:9a:cc:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 05:37:02 2025 by rpki-client