Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
File: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft (raw, json)
Hash identifier: wsoX3oBtFQZK5vSv4fvTHuIXmaUehCxqQuBLYFDkq8g=
Subject key identifier: 42:69:9B:16:8D:7A:1E:97:2B:5E:09:65:66:D3:34:3E:A4:91:81:4D
Authority key identifier: DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
Certificate issuer: /CN=daddd1b636fe3df1df3d811f644583312a651337
Certificate serial: 019677FA8C06168D5A162A5DB5344C0B16B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
Manifest number: 1177
Signing time: Sun 27 Apr 2025 16:00:30 +0000
Manifest this update: Sun 27 Apr 2025 16:00:30 +0000
Manifest next update: Mon 28 Apr 2025 16:00:30 +0000
Files and hashes: 1: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl (hash: sPu/4xV0gzZ9lEy5A5mj+kdYQRuXjoWhnxBI3bJRnDo=)
2: Ayr05U3NKAd6mblS63pAVZbHnEI.roa (hash: PYCcEhQQfZIx55w6ukJcbUlLU5BAsDen0FIJwdgcRtk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fa:8c:06:16:8d:5a:16:2a:5d:b5:34:4c:0b:16:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daddd1b636fe3df1df3d811f644583312a651337
Validity
Not Before: Apr 27 16:00:30 2025 GMT
Not After : Apr 28 16:00:30 2025 GMT
Subject: CN=42699b168d7a1e972b5e096566d3343ea491814d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:57:da:63:80:6e:3c:f8:ff:99:be:dc:0e:ab:
8f:1b:f0:02:78:42:18:89:d7:c2:82:15:00:76:04:
81:87:79:66:b1:2d:f2:e2:07:e9:bf:15:c1:4e:41:
6a:d3:e5:9d:d0:ef:f8:67:4f:0e:4e:ef:f6:67:d4:
2a:9c:3d:cb:6f:14:06:ac:69:75:be:b4:d4:10:5f:
1b:56:f0:0e:80:61:ee:3e:c8:1d:a0:ab:7c:c0:23:
c3:86:b4:38:21:4d:f6:f1:b4:84:d8:d0:2d:cd:7c:
55:8e:f3:3c:f6:ad:96:b7:9a:b7:28:88:cf:90:bf:
e1:aa:9e:cf:76:22:2d:b6:bf:a4:6c:73:a9:9c:2a:
ee:d4:13:ec:ab:ed:3d:22:e2:7c:38:64:42:86:8c:
f9:21:21:af:8f:ba:48:93:64:40:fc:e4:20:e5:f2:
c2:ea:4b:78:08:77:a9:c2:40:b2:c5:54:90:25:38:
51:21:43:75:9c:03:ad:27:bf:a6:97:75:1a:bd:c9:
62:95:78:5b:a2:dd:16:36:ce:eb:20:47:c2:a6:b4:
93:5a:90:16:b4:db:36:6a:e8:33:9a:01:9b:2b:6e:
51:02:9d:04:f4:3a:8e:b7:91:47:8e:0c:62:1d:71:
7a:1b:09:83:38:a1:e0:17:da:a5:09:27:2f:c9:3f:
c8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:69:9B:16:8D:7A:1E:97:2B:5E:09:65:66:D3:34:3E:A4:91:81:4D
X509v3 Authority Key Identifier:
keyid:DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:55:c6:f7:42:56:18:4f:eb:d8:4e:fc:77:d6:80:d5:d2:e1:
56:f1:5c:b6:20:cc:81:a1:bb:81:ae:3a:ee:86:d1:65:6f:2d:
4a:90:67:62:b8:d7:ad:09:a3:4b:32:07:03:cb:9b:89:89:b5:
21:57:84:e1:19:c0:94:e4:2d:b8:fe:ce:9b:a2:2c:ac:83:e2:
29:9e:7a:d1:ae:55:d0:ef:80:52:00:56:bb:27:e2:14:06:62:
6d:94:0a:3c:2e:5b:e6:46:a6:0a:a9:16:08:f3:12:c3:cc:4b:
a2:a9:12:b1:a1:38:ca:4a:f8:7d:17:bf:17:dd:f6:54:82:e8:
ee:ff:2d:3f:4d:b6:33:88:5f:6d:17:26:08:98:54:00:d2:50:
fd:82:38:77:dc:13:7d:96:fb:50:b9:40:c8:92:dc:bd:30:c0:
b8:28:dd:fd:11:a5:ee:60:0c:46:1f:17:22:77:1b:0e:03:b5:
61:e8:47:de:f2:7e:50:86:20:29:0c:40:31:c5:cf:88:60:3d:
dc:6a:fd:d8:0b:60:f2:3a:a1:eb:f9:7e:45:3e:58:ef:27:98:
b5:33:16:1d:f1:87:c9:e8:bd:c2:df:24:73:86:f4:7a:c8:d4:
2e:cc:77:1f:dd:29:61:fd:06:d6:ba:bd:b5:89:5d:a2:ea:b3:
d7:8c:6c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 20:55:18 2025 by rpki-client