Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: 39/z9oKIu1LB+Mep3HG8x0ObrzdlPMS8fkOaLIOMVxE=
Subject key identifier: B0:4F:76:3A:A5:0D:B1:FF:30:21:85:DE:20:D8:AE:D4:7A:75:E4:EF
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 019674FA19E62C82E153CC4D675ADCA71B6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 0E1F
Signing time: Sun 27 Apr 2025 02:01:09 +0000
Manifest this update: Sun 27 Apr 2025 02:01:09 +0000
Manifest next update: Mon 28 Apr 2025 02:01:09 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: sKDQ32Tn5AiTNiFUp3LzXWLZMUUR1FThvfNMPyYnjso=)
2: fvccoh-XRGUydolEQwVKUg__llM.roa (hash: MESTegxG3uX73jrknXUqcZY7a9Gll4oI6clWX78ISS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:fa:19:e6:2c:82:e1:53:cc:4d:67:5a:dc:a7:1b:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: Apr 27 02:01:09 2025 GMT
Not After : Apr 28 02:01:09 2025 GMT
Subject: CN=b04f763aa50db1ff302185de20d8aed47a75e4ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:68:24:e4:82:2d:eb:0a:f2:f0:24:d1:28:e4:
78:44:b9:9c:25:89:40:c1:30:4b:16:a5:37:44:ae:
30:2a:9b:ce:5d:54:1f:0c:95:50:b3:86:e0:47:d0:
65:6c:d7:7c:79:8f:9e:a8:f7:74:aa:5f:c6:0a:17:
87:db:97:d6:d9:5c:1d:35:7c:7c:2e:27:45:c8:9c:
a0:31:03:fd:17:f7:b5:7c:20:4d:93:89:07:b0:a0:
ad:b0:ee:36:22:1a:2c:18:0a:95:fe:e6:b0:0c:76:
17:97:53:ec:2a:fc:15:c0:4f:82:e0:92:bc:fa:56:
6c:39:a0:15:40:5c:7a:39:2e:91:1e:a9:14:d2:a9:
2f:6f:93:49:6c:3d:8b:e8:99:80:17:ba:02:59:e2:
a6:e5:b9:c3:6a:9a:84:84:cb:74:0f:3a:6f:a7:74:
fa:17:65:7a:a1:a9:fb:3e:26:32:bf:d7:b7:04:95:
8e:44:fe:e1:60:38:fa:88:89:e7:6b:06:65:c5:5f:
f2:a1:4f:e7:88:fd:09:43:82:6e:4c:45:35:51:c2:
dd:2b:97:25:fa:b4:d2:94:eb:ff:f4:4f:73:ae:8a:
27:65:23:8e:1d:c1:f4:fc:74:f2:bf:ad:66:13:86:
1a:10:bf:5d:8f:76:75:a1:81:68:78:66:35:ef:36:
83:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:4F:76:3A:A5:0D:B1:FF:30:21:85:DE:20:D8:AE:D4:7A:75:E4:EF
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:1e:6e:63:af:e4:0d:4d:03:4f:e8:09:dd:a8:bf:05:89:49:
1e:1e:f4:de:bf:9d:6c:b2:18:0c:d5:ea:37:8f:12:50:f2:48:
1a:a7:62:28:22:1e:0d:50:6d:d3:7f:79:6f:62:1a:45:9e:13:
2f:20:35:7b:45:4a:87:09:57:d7:ad:51:7d:f7:2e:8d:48:c4:
7f:ec:ee:06:73:0a:b4:10:36:ee:38:fd:98:18:9f:e5:03:de:
47:a4:97:ef:bc:1c:ef:6b:4f:4d:00:27:6d:0c:be:e8:10:9d:
a5:a8:b5:30:28:b6:1e:12:7f:e0:da:0e:1d:ab:a6:30:34:ae:
18:ad:56:cc:05:7c:10:e3:96:75:83:3b:85:2c:0c:9b:8b:72:
7b:a9:ca:3e:74:94:73:18:93:91:6c:52:ef:fe:de:0b:a9:bd:
3a:bd:1c:19:4d:b5:9f:4d:89:aa:88:52:cf:e7:d7:84:15:6c:
89:86:21:c3:4c:82:d1:e1:90:78:9d:30:fe:06:b9:8e:96:c2:
ec:5d:94:3e:6d:f7:f0:82:56:0f:02:ce:34:74:c2:b5:de:02:
26:cc:3a:97:b1:9f:b7:c4:05:6c:7b:ed:5a:92:96:c6:51:6e:
9d:ad:12:d8:07:3f:59:55:3f:00:f8:63:5d:84:a0:47:4a:96:
63:d6:ed:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:17:47 2025 by rpki-client