Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
File: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft (raw, json)
Hash identifier: GEvVZEaWeq6V3nqjx/bVD9NgTiKakz4mzeVOAambysk=
Subject key identifier: 1A:C5:68:1A:53:85:C2:90:7B:E6:CD:9A:60:F2:2B:19:C9:BA:58:CA
Authority key identifier: D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE
Certificate issuer: /CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de
Certificate serial: 01967378F7CB33783AF7ECAD99F4046CD1C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
Manifest number: EF
Signing time: Sat 26 Apr 2025 19:00:29 +0000
Manifest this update: Sat 26 Apr 2025 19:00:29 +0000
Manifest next update: Sun 27 Apr 2025 19:00:29 +0000
Files and hashes: 1: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl (hash: QpiskkiY2fWQSSjhZJCxVsi1YglxRm/rdMtqyNsFahk=)
2: P6mssWX-V0cqAzHy81OLWoJ95tA.roa (hash: 1KxuTLXZ0RpUrBX1EdO6Y3ND8ja5oUQEOKFvppcvKmo=)
3: xb1c81OFtbINdLQq-ZwRav9UWoI.roa (hash: XHYFd0tSE5d2fh7X6gspcN3JIn/ONDCV3VHTC+ocClI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 17:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:78:f7:cb:33:78:3a:f7:ec:ad:99:f4:04:6c:d1:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de
Validity
Not Before: Apr 26 19:00:29 2025 GMT
Not After : Apr 27 19:00:29 2025 GMT
Subject: CN=1ac5681a5385c2907be6cd9a60f22b19c9ba58ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c2:1a:1c:28:77:74:cb:58:d2:4d:8c:78:d3:
7f:a8:65:b7:51:84:54:c3:43:04:dc:9f:06:7a:f2:
d7:c7:73:f1:9b:ab:1a:71:f4:e8:7f:ae:da:10:99:
e6:c6:ea:9b:86:64:4f:73:dc:a0:a5:39:3f:91:da:
8c:c6:96:d6:ad:c8:e0:d8:50:8d:e4:ba:5d:f6:8f:
06:bc:38:d9:cf:02:78:7f:d1:03:89:b9:58:14:09:
fa:8f:2e:4f:92:96:69:54:c0:78:a2:0a:d5:a8:8c:
bd:18:f4:6d:59:5a:66:43:f3:4f:02:2e:e2:77:bc:
5a:38:a1:30:9c:d8:97:c3:63:3d:80:40:24:29:1f:
fe:44:e0:1f:6c:8e:55:7e:07:9d:17:d7:21:a7:84:
df:91:b9:98:da:e8:f8:3a:c0:87:e3:40:60:15:ea:
a9:f4:ef:8b:09:f2:e2:e8:eb:22:85:cf:b6:31:09:
da:33:53:d9:e1:17:80:6c:c6:e6:54:1c:77:79:34:
80:d0:8a:84:7a:ff:6f:4e:0e:cc:13:09:4b:b4:64:
eb:1e:00:c2:44:41:e4:87:9e:87:9b:1b:59:0a:23:
6c:fc:dc:2e:e4:2f:ee:1f:54:5e:58:f6:b3:17:a2:
a6:c9:4d:73:60:e3:48:38:68:ae:6c:34:e6:de:b1:
10:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:C5:68:1A:53:85:C2:90:7B:E6:CD:9A:60:F2:2B:19:C9:BA:58:CA
X509v3 Authority Key Identifier:
keyid:D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:49:56:fa:60:df:a7:9d:0c:fd:4f:ef:86:7b:4f:74:cf:90:
46:ba:0c:c1:46:89:3d:49:39:78:7f:32:c4:55:20:d0:e8:89:
31:a8:1d:f8:d2:a5:3b:60:c5:c9:86:45:60:d3:a2:f5:7c:76:
cc:57:82:19:9c:2e:49:55:3e:5b:f9:e8:88:bf:bc:42:db:93:
5d:db:00:47:37:c8:50:ff:89:59:82:70:6b:93:4b:fe:59:2f:
33:76:9f:f9:05:b5:f9:82:83:5c:70:a5:8d:ff:d8:b5:32:b4:
0b:38:6b:6f:55:94:f2:58:c7:c0:26:28:d7:40:bb:5d:10:fe:
08:be:f0:16:6f:47:b9:6b:b0:57:22:25:d3:eb:a9:17:72:68:
07:ac:1a:f3:1a:9d:d3:ef:a3:0b:64:f1:36:43:a5:8d:37:b1:
ae:cc:0b:ad:a0:2d:39:8d:c7:35:23:f0:cb:d1:b0:72:4c:52:
fc:f5:ac:29:ae:04:1a:1d:10:a4:96:ef:fd:c9:e3:46:df:0f:
fd:82:36:d7:27:f4:f9:72:90:af:e0:80:01:ac:73:c6:2f:2f:
b7:e1:6e:c7:dd:a7:62:dd:bf:04:1f:a7:3c:84:29:38:a0:6a:
0c:c7:2e:52:80:e5:5c:9e:a3:9b:13:6d:75:84:b2:69:23:18:
52:63:fe:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 00:09:44 2025 by rpki-client