Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
File: 2KzzS-KwTHzO8iIejR_LbKu0FZE.mft (raw, json)
Hash identifier: /GCqq4joQtI8wybgLwyJiurj7/eYcYpGqgRvGkQ0PwI=
Subject key identifier: 8A:41:0D:CA:00:1F:85:6D:DC:FB:9E:4C:5F:A4:37:5F:27:9B:82:B6
Authority key identifier: D8:AC:F3:4B:E2:B0:4C:7C:CE:F2:22:1E:8D:1F:CB:6C:AB:B4:15:91
Certificate issuer: /CN=d8acf34be2b04c7ccef2221e8d1fcb6cabb41591
Certificate serial: 01967943FF0CEECA40AAB21173928A1E01AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KzzS-KwTHzO8iIejR_LbKu0FZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
Manifest number: 1511
Signing time: Sun 27 Apr 2025 22:00:21 +0000
Manifest this update: Sun 27 Apr 2025 22:00:21 +0000
Manifest next update: Mon 28 Apr 2025 22:00:21 +0000
Files and hashes: 1: 2KzzS-KwTHzO8iIejR_LbKu0FZE.crl (hash: sn+iY3ajtx+xj47fflHY15vRSRv9fTsJr/myM3nimeI=)
2: tFYWfziNY6T1pgWT96la8X957p4.roa (hash: 08hpQSe8BwmYvsZjvFViF9kdWzrXeHJU+sA3OilF/oE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KzzS-KwTHzO8iIejR_LbKu0FZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 22:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:43:ff:0c:ee:ca:40:aa:b2:11:73:92:8a:1e:01:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8acf34be2b04c7ccef2221e8d1fcb6cabb41591
Validity
Not Before: Apr 27 22:00:21 2025 GMT
Not After : Apr 28 22:00:21 2025 GMT
Subject: CN=8a410dca001f856ddcfb9e4c5fa4375f279b82b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fa:a8:e7:10:30:f5:e6:8c:89:49:74:80:5c:
93:99:5a:74:12:12:09:18:e6:5b:c9:1b:2d:a3:fe:
81:ce:c9:6f:db:be:89:7b:bd:2d:02:9d:dd:80:9e:
2c:e8:d6:04:ec:2f:ef:5c:dd:a0:3f:55:1d:13:7b:
89:47:d7:c7:75:74:6b:24:fc:38:9a:fc:16:50:ee:
fd:27:1f:23:7a:94:7f:fa:7b:7e:35:ff:e8:4a:e0:
be:c1:85:08:de:2e:3d:3c:2c:71:d2:46:1f:a0:c7:
e9:ab:57:2d:66:ef:e7:0a:f1:59:2e:50:de:d4:ea:
5e:4f:7c:34:d2:f6:a7:56:ce:2b:34:2b:b5:f0:1f:
d8:b0:c6:58:28:d0:bb:76:2a:9e:30:18:e6:bd:38:
46:7b:d1:87:ce:17:a5:0f:b8:4c:01:93:03:dd:8c:
0a:63:17:a1:07:25:24:f9:a7:1a:48:1e:10:59:d0:
03:5b:d4:e1:c8:d1:bf:39:0a:d0:0b:5a:80:58:92:
40:8d:3f:a8:89:5a:77:7c:bd:24:9c:61:8b:c6:aa:
cd:1f:f9:65:d2:da:99:0b:aa:64:2b:4c:0b:6e:bc:
a8:2a:af:be:a4:3b:42:15:ba:ea:5b:c3:15:38:4f:
f9:14:7d:00:89:e5:b7:48:40:f1:27:15:8e:c8:2e:
30:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:41:0D:CA:00:1F:85:6D:DC:FB:9E:4C:5F:A4:37:5F:27:9B:82:B6
X509v3 Authority Key Identifier:
keyid:D8:AC:F3:4B:E2:B0:4C:7C:CE:F2:22:1E:8D:1F:CB:6C:AB:B4:15:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KzzS-KwTHzO8iIejR_LbKu0FZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:34:98:6a:c9:db:7d:87:8d:f4:cc:a3:62:4e:06:77:35:14:
60:8d:bd:b0:14:72:3a:8d:8c:d6:23:f0:71:1a:c0:5b:e2:95:
25:1b:1b:20:d8:2a:83:37:63:f2:20:cd:82:4a:c9:18:7d:c3:
d8:db:78:38:d4:e4:2d:bb:08:24:26:fe:10:f6:5f:ec:de:b9:
eb:6b:80:1f:1f:46:40:e7:55:5c:f5:45:c8:d3:0c:4a:8e:3d:
6d:f1:a6:41:3c:98:04:5a:0b:f4:29:43:f6:35:75:44:dc:98:
79:27:0b:e1:84:0c:0a:ed:92:23:fc:cf:e8:52:6b:5e:51:4f:
76:18:d3:81:57:1a:cb:ba:73:68:1c:e4:51:34:36:54:7b:4a:
a2:ef:ea:13:99:0c:6c:68:a5:a8:46:00:4f:e6:c0:32:1a:4a:
06:21:3c:f6:18:9b:ac:36:19:b3:cd:f1:15:1d:56:6b:b7:da:
9f:fb:39:7e:12:ba:c6:03:95:90:38:da:fa:56:12:b1:d4:ac:
6c:b9:70:e2:e2:fd:06:e7:34:b8:3e:78:2c:d5:e8:8f:45:1a:
7d:54:be:38:4d:f5:9c:fe:8a:c5:bb:0f:38:55:94:79:df:7f:
52:77:0c:6d:93:05:4f:b2:d6:7e:09:b7:57:88:05:c7:52:3a:
bb:03:c1:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 05:01:51 2025 by rpki-client