Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
File: 2O6Q00LYZepn8rDS-3TAOfg-Skg.mft (raw, json)
Hash identifier: b+kQysPi37QqDVhKU43fjt5MPNMaZcsceoJ8dMsKIFA=
Subject key identifier: DB:BD:54:46:DE:C1:B4:C9:CF:F1:F6:BC:0E:56:EC:10:39:2B:14:33
Authority key identifier: D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
Certificate issuer: /CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Certificate serial: 0196895CB4C87B423529A727B5A87E88EB04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
Manifest number: 023B
Signing time: Thu 01 May 2025 01:01:16 +0000
Manifest this update: Thu 01 May 2025 01:01:16 +0000
Manifest next update: Fri 02 May 2025 01:01:16 +0000
Files and hashes: 1: 1vvIkvJGRy621vVPsoLS7KLp9WQ.roa (hash: AaLmkGEE5WFi/MsCmNoVGVjYg2GotUKYwJ8yvjW+a60=)
2: 2O6Q00LYZepn8rDS-3TAOfg-Skg.crl (hash: yJnchNuthLh0xZl+DRcNlNFJNeJdjZo3N7yTSc2kILs=)
3: KLjjQzFk9GYkvqPEoe40SA-mXbg.roa (hash: 2jEymy+mMO9pWyCpodUhIwEZFiuwLfDEfoelvtg+xqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:5c:b4:c8:7b:42:35:29:a7:27:b5:a8:7e:88:eb:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ee90d342d865ea67f2b0d2fb74c039f83e4a48
Validity
Not Before: May 1 01:01:16 2025 GMT
Not After : May 2 01:01:16 2025 GMT
Subject: CN=dbbd5446dec1b4c9cff1f6bc0e56ec10392b1433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:69:86:cb:77:8c:26:b1:e2:db:c4:10:f2:b3:
9e:cb:f3:c1:83:75:46:fb:51:15:7f:8c:f1:72:26:
68:d6:02:50:fa:c1:44:a9:46:8f:a8:9a:57:08:1b:
f0:c1:c9:ab:ee:e0:1e:c1:bb:d1:8d:98:50:9b:ce:
fd:14:0a:84:1e:64:5e:c6:e1:1c:bc:a2:ea:62:32:
a3:86:9b:31:15:af:71:80:b2:a1:6e:0a:af:ba:70:
ba:62:84:3d:16:29:3d:49:f2:91:4e:6a:fd:e4:4f:
35:ea:06:29:50:b9:81:ba:c3:24:9e:3f:39:c8:d4:
6d:e4:84:26:da:4b:db:8b:00:59:19:83:84:4d:d9:
d3:ca:ad:25:35:6e:4c:dc:0b:a2:a6:18:76:44:ce:
10:4b:7c:d9:c4:64:85:01:48:ff:32:3f:55:6b:c7:
84:e0:b0:9b:3a:70:99:98:67:11:21:6c:9d:ef:d2:
13:2f:2e:63:95:7f:ff:54:07:2f:8f:39:2b:0b:8e:
de:92:b6:09:a7:36:40:bf:27:fa:6a:6e:a2:ab:01:
ed:fb:e7:47:6b:eb:e5:78:6e:41:84:3c:93:79:a1:
b7:01:d2:b4:25:56:a6:73:1f:ef:84:8a:88:a1:8f:
80:8f:4f:62:c7:fe:3d:10:65:80:61:a4:40:ce:e7:
44:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BD:54:46:DE:C1:B4:C9:CF:F1:F6:BC:0E:56:EC:10:39:2B:14:33
X509v3 Authority Key Identifier:
keyid:D8:EE:90:D3:42:D8:65:EA:67:F2:B0:D2:FB:74:C0:39:F8:3E:4A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6Q00LYZepn8rDS-3TAOfg-Skg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/cf5c10-2131-4116-b6f9-510525c4744c/1/2O6Q00LYZepn8rDS-3TAOfg-Skg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:30:2b:82:04:7d:90:a0:4f:c5:dc:6d:72:e4:4c:28:10:82:
3c:be:43:0a:7f:f9:c1:4c:37:ba:c3:bf:ca:b5:fa:3d:0c:48:
43:11:ae:f7:a7:9b:4e:71:7f:aa:1e:99:f4:bd:08:36:f7:e1:
a5:10:cd:da:5a:db:d0:a6:30:56:b0:95:8f:8c:1e:0e:42:05:
e4:f2:b8:25:d4:9e:29:74:2e:17:2a:69:52:9b:4c:1d:ff:de:
41:e2:ac:3f:83:7f:d6:f0:d7:20:ea:5e:d9:c7:28:ed:3c:c1:
2a:de:f6:ee:4b:77:a2:49:51:94:24:c7:26:3b:59:c4:b3:1f:
06:ad:35:ba:40:50:0c:23:22:01:61:f5:78:5c:75:25:45:2a:
a6:34:29:44:48:dd:03:10:a5:e2:27:7c:ee:c9:2f:90:5b:32:
ab:0c:d6:48:87:e8:c0:6d:66:32:94:b4:29:4c:9c:d3:d8:32:
c6:5d:e7:a6:de:39:b0:e4:37:4a:a0:8e:e2:04:59:27:83:ad:
f8:12:15:5a:da:ed:6b:89:81:1e:a5:17:b0:8d:ce:b0:b5:8b:
9b:e3:a9:cb:84:04:99:4a:6c:62:df:54:54:9b:46:69:4e:2a:
79:1b:a2:03:a3:00:6b:49:b6:47:46:94:bd:81:dc:b6:d3:54:
cb:19:f2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 05:02:06 2025 by rpki-client