Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
File: 2pa1va-ygzLa_oR87RT3pfrUXmk.mft (raw, json)
Hash identifier: wpsbrb6IRP5w2L4rmXgrb+Ia7dUQlAbp5TZpi4g5hqY=
Subject key identifier: DC:B2:1B:66:B0:18:77:3B:E6:F3:6A:34:BE:5E:75:98:CF:15:88:05
Authority key identifier: DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
Certificate issuer: /CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Certificate serial: 019845886E40A2970F787BC9D5728CA06A01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
Manifest number: 15FE
Signing time: Sat 26 Jul 2025 07:00:25 +0000
Manifest this update: Sat 26 Jul 2025 07:00:25 +0000
Manifest next update: Sun 27 Jul 2025 07:00:25 +0000
Files and hashes: 1: 2pa1va-ygzLa_oR87RT3pfrUXmk.crl (hash: CjzOYjOmX5NvRCjmZ/otCC14zRUS/WVsQuMWftsMgog=)
2: 99kZ91L5k4nve2PYsWtipJThPHU.roa (hash: bVtLb94sDBWJmE1C3lJHiBUqgO9xT7zdCZpTZaX8mXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 02:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:45:88:6e:40:a2:97:0f:78:7b:c9:d5:72:8c:a0:6a:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Validity
Not Before: Jul 26 07:00:25 2025 GMT
Not After : Jul 27 07:00:25 2025 GMT
Subject: CN=dcb21b66b018773be6f36a34be5e7598cf158805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:94:e4:47:5b:03:f5:ff:6d:d9:6e:74:b7:a1:
be:00:31:b3:da:b2:7a:7d:5c:6e:57:36:89:0d:be:
1b:f0:50:45:68:0e:24:c4:db:0f:a8:49:72:5e:58:
4c:c9:7d:54:c1:12:86:0f:ac:ec:81:ab:d8:2f:48:
40:ed:4a:20:87:50:f0:36:ed:f0:1f:18:36:7f:50:
9a:5c:f1:36:62:73:41:ec:94:54:13:23:5a:b6:f9:
9b:74:c7:ae:55:e1:36:e0:71:99:85:8f:71:46:77:
4c:b4:d1:3e:bc:69:16:ae:97:e0:c4:aa:ee:7e:43:
54:de:ba:5a:66:13:6f:ae:11:73:8a:f7:d4:cd:39:
65:4f:26:0c:34:ba:fe:ea:37:0b:26:d7:59:26:5b:
f0:b9:9b:57:cf:90:f8:6f:cb:22:08:92:78:36:ea:
5e:5e:ee:04:60:74:ed:4f:00:65:94:78:1e:1c:51:
b8:32:33:9b:c9:f1:89:83:1d:55:48:5f:df:fc:33:
c9:fd:db:51:89:83:f6:21:aa:1b:71:31:a3:05:ca:
b3:c5:f9:7c:48:0f:5f:54:08:fe:b7:47:81:0a:75:
62:71:1c:67:00:e3:f0:e8:ad:2f:6a:6e:8a:74:e6:
a2:4b:a1:13:e1:24:de:1d:da:22:9c:de:ea:39:20:
e2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B2:1B:66:B0:18:77:3B:E6:F3:6A:34:BE:5E:75:98:CF:15:88:05
X509v3 Authority Key Identifier:
keyid:DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:b8:a8:16:85:03:1c:09:94:f7:f0:7b:4f:23:32:18:c9:4c:
59:de:e4:45:ca:df:05:95:dc:92:db:99:ea:0b:95:af:9b:1b:
a0:02:d0:ca:6c:e9:50:6a:de:bb:48:fe:4e:12:37:1e:69:6f:
24:f3:94:02:bf:ea:f1:87:4a:db:ed:6d:4c:bc:83:51:d0:18:
de:1b:85:05:ed:2c:13:78:2a:be:f3:1e:51:d0:73:ad:47:13:
bf:7c:04:77:ac:b6:31:9b:e6:9f:33:0e:2c:09:01:bf:d8:5a:
c0:af:68:65:3f:ab:5d:c3:43:10:bd:a5:94:db:e2:f6:ce:09:
a8:b0:bb:26:05:db:91:bd:24:b8:3c:0f:fb:41:65:bc:32:b5:
38:76:7d:10:cb:20:35:bb:06:b5:1a:15:06:f1:42:34:0a:09:
81:4b:16:e8:72:68:8d:04:70:59:b3:cd:c5:20:17:da:44:74:
2c:b6:c6:e0:b1:0b:66:1a:d1:fd:d7:64:c2:8c:04:46:eb:40:
30:32:c1:1b:00:b0:2a:2e:58:08:2b:e4:72:30:2d:20:f8:6d:
e4:f1:a3:9e:e0:6d:22:32:52:5d:92:9c:e4:63:19:45:04:7e:
10:a2:55:eb:68:1e:f2:24:48:d6:9a:d6:1b:6e:b4:f6:62:5e:
d9:8b:06:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 11:48:38 2025 by rpki-client