Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
File: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft (raw, json)
Hash identifier: y6I+QNPeKwQcr4nO4sQBLklaifrXuCV/48eCGrPngt4=
Subject key identifier: DA:B3:54:3E:46:CE:96:F9:B8:8B:08:91:3F:FC:BE:07:C9:96:CD:39
Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Certificate serial: 019682EC68EE92CB41DF1E0E221343E97C73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
Manifest number: 0CA5
Signing time: Tue 29 Apr 2025 19:00:53 +0000
Manifest this update: Tue 29 Apr 2025 19:00:53 +0000
Manifest next update: Wed 30 Apr 2025 19:00:53 +0000
Files and hashes: 1: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl (hash: J5/qGXb/lEXpoF82E2aUd7mgIo96zloQHhOtK4WUSlI=)
2: nEst59VNXuZ4VJfEimqfkDoIWMw.roa (hash: MVYyTOwc+4oCrDyXY6sI17JYzQycO6fjKklmhjG1KnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:ec:68:ee:92:cb:41:df:1e:0e:22:13:43:e9:7c:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Validity
Not Before: Apr 29 19:00:53 2025 GMT
Not After : Apr 30 19:00:53 2025 GMT
Subject: CN=dab3543e46ce96f9b88b08913ffcbe07c996cd39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f1:0f:b4:58:18:d7:8a:f6:c4:03:4d:a4:e7:
2e:fd:84:f5:a2:48:28:c8:47:64:33:67:52:6d:f9:
e6:c8:48:26:28:b2:60:4e:99:ba:4b:af:f9:a4:d9:
af:22:65:bd:32:b8:a0:7e:83:76:75:a5:c2:4a:ec:
12:49:b1:5b:c8:0d:c6:ee:0f:ed:b2:f8:b9:d6:38:
fd:bb:ab:f7:48:da:d2:b1:4b:69:9c:60:8f:65:b4:
ff:22:6a:50:93:d7:4d:8c:89:6c:3e:7d:df:d3:3c:
37:7f:17:ee:22:f8:ac:a5:a9:9d:55:5a:0a:8d:83:
31:84:fe:af:fc:bf:e9:5c:2a:f3:c9:25:24:a7:f3:
05:48:9b:b7:2a:1c:20:97:d9:47:c9:6e:fb:80:48:
1c:08:89:8d:54:ac:12:9c:b3:2c:ea:53:3a:bf:aa:
88:d2:66:c3:4f:c4:5b:31:6d:35:e4:41:92:a9:c4:
d5:be:e3:7a:46:b4:95:f1:c1:0f:69:f5:43:bc:8e:
32:07:53:de:02:da:63:b3:a5:2a:94:dd:31:65:1e:
1f:32:2b:49:31:23:32:4d:87:f6:b6:03:da:50:b4:
e7:c3:bd:f7:21:c1:10:55:bd:1e:db:24:01:ad:56:
f7:50:ad:ed:70:94:46:f2:c3:e8:37:5a:97:97:f8:
9f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:B3:54:3E:46:CE:96:F9:B8:8B:08:91:3F:FC:BE:07:C9:96:CD:39
X509v3 Authority Key Identifier:
keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:e0:0c:48:df:29:67:a5:5e:ba:76:68:77:9c:c6:b7:e9:44:
c4:6a:4e:4a:cf:2d:8d:55:7d:dc:df:2f:63:1d:cc:82:b0:96:
f5:7f:3a:3b:06:38:12:99:84:65:a3:b6:c2:e6:94:3a:67:a9:
c6:d7:7d:46:a0:eb:94:12:6b:6c:5e:2a:a6:75:36:aa:7c:1c:
43:57:0d:c7:6f:58:84:11:f8:18:cd:20:00:39:bc:4c:be:10:
20:07:56:87:4b:f7:dc:e9:78:81:b0:0a:fb:5e:9f:fa:67:e5:
dc:de:58:09:8f:4e:f3:c1:39:1c:c6:8a:51:ac:3c:50:65:44:
8d:a2:52:9e:f9:79:bb:40:05:43:85:7c:67:3f:ac:a6:b8:09:
1c:8d:39:d1:c1:0b:72:dc:35:dd:d9:1d:f7:20:15:f4:b9:74:
41:7b:27:83:ba:49:6e:6d:5d:60:5e:03:61:3d:60:73:2b:5f:
7b:18:37:77:28:00:82:e5:73:1f:63:7b:44:84:43:3f:3b:3e:
43:95:1d:94:8b:9e:cf:70:ba:9b:e7:fc:82:07:a4:8b:6d:59:
b0:0c:45:53:09:10:e5:67:84:34:e9:4f:3e:e2:cd:22:7f:dc:
5b:70:f2:48:30:83:77:ee:fc:15:9f:fe:b1:b1:cb:69:29:6e:
bb:57:5f:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 22:18:03 2025 by rpki-client