Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
File: 2My6s6LYEMX6KdzanVAgJhbvueg.mft (raw, json)
Hash identifier: k2ntS0i6nkZymXb0+0ZOOAvDpZTS4KSWS/u1MTK9/9Y=
Subject key identifier: C6:A3:B5:51:1C:4F:18:0A:D4:77:2E:C6:0E:3C:5A:E8:9A:F1:2F:24
Authority key identifier: D8:CC:BA:B3:A2:D8:10:C5:FA:29:DC:DA:9D:50:20:26:16:EF:B9:E8
Certificate issuer: /CN=d8ccbab3a2d810c5fa29dcda9d50202616efb9e8
Certificate serial: 019827EC93426C5FCEED61DCEFAB9B43FDD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
Manifest number: 5A
Signing time: Sun 20 Jul 2025 13:01:12 +0000
Manifest this update: Sun 20 Jul 2025 13:01:12 +0000
Manifest next update: Mon 21 Jul 2025 13:01:12 +0000
Files and hashes: 1: 2My6s6LYEMX6KdzanVAgJhbvueg.crl (hash: bRDgrsuVa1mAcWIDC4AhwgDUokwWflxBMryr5AYjNTY=)
2: KOSoig2OcfAUHpP5S4cPuKe0-qQ.roa (hash: h7WOd3FoOyE3z3s6Su64D7SfxJalvzda0YokBEiVb1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Jul 2025 13:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:27:ec:93:42:6c:5f:ce:ed:61:dc:ef:ab:9b:43:fd:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ccbab3a2d810c5fa29dcda9d50202616efb9e8
Validity
Not Before: Jul 20 13:01:12 2025 GMT
Not After : Jul 21 13:01:12 2025 GMT
Subject: CN=c6a3b5511c4f180ad4772ec60e3c5ae89af12f24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ea:e9:7e:c7:fb:17:ff:1a:a0:0f:bf:f2:6d:
d9:d4:75:08:36:22:ea:c0:79:17:7b:be:06:f3:1b:
f7:0d:49:d3:1e:29:64:eb:10:ef:0e:d1:52:f2:64:
3f:f8:c0:d4:c2:e5:77:0b:47:f9:fb:06:84:6d:30:
55:b1:61:46:c1:e6:09:7a:5c:a1:30:e8:76:ac:8c:
53:b8:49:2e:22:d0:13:cc:8e:8f:6a:d6:b6:98:f7:
26:40:15:7d:b2:be:8a:8a:cb:40:32:a9:df:67:cd:
47:c7:c4:8e:c8:c9:c5:0b:3a:2a:33:0b:de:94:e3:
0e:1c:f6:39:7c:8f:2b:00:c7:98:51:13:64:c9:fc:
7b:df:3d:e6:a9:b1:98:40:aa:51:9d:41:12:06:e1:
82:df:98:2e:81:3f:fb:71:d3:be:8d:b5:1a:07:36:
2f:16:9c:cb:1e:51:f8:ba:d5:ff:a7:c6:a7:7c:48:
07:ef:01:c6:a4:47:af:ab:90:f2:ee:d3:e2:6f:58:
4d:61:a6:ee:e3:04:f5:21:72:c0:ec:9f:a9:44:d8:
26:64:37:fb:6c:c1:a4:99:80:86:2f:85:72:aa:5a:
f9:0f:fd:11:1e:3b:33:8a:d6:d1:cf:2b:73:8a:7d:
16:af:3e:76:b6:7e:1e:d0:b3:1a:36:9d:8a:47:9f:
22:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:A3:B5:51:1C:4F:18:0A:D4:77:2E:C6:0E:3C:5A:E8:9A:F1:2F:24
X509v3 Authority Key Identifier:
keyid:D8:CC:BA:B3:A2:D8:10:C5:FA:29:DC:DA:9D:50:20:26:16:EF:B9:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:5a:ac:f7:f4:2a:cf:af:89:90:f6:dd:ff:70:bb:be:fe:65:
9d:70:c6:52:40:05:e7:4e:fe:68:8b:4f:3d:cd:a2:8c:6c:27:
08:0b:d7:7f:fc:fb:b9:cb:0d:01:5d:a7:eb:6b:69:22:26:1a:
af:5f:19:6d:b4:29:bd:26:5e:7b:c8:a4:c4:0d:f4:69:1a:6f:
43:d4:e3:a4:83:a3:2b:cf:85:e3:94:22:d7:ff:04:bf:c5:97:
59:1f:fb:20:3f:a2:18:60:f4:37:1b:90:e6:2b:0a:7f:56:05:
e6:b3:e3:16:4d:72:5a:75:16:35:5f:68:c8:0d:59:18:4e:1b:
e1:07:2c:38:fc:d4:6b:f8:33:57:cf:d0:aa:f8:dd:7e:6d:ee:
41:f9:77:d7:c9:d8:8d:b5:72:c2:7e:eb:05:0a:0b:da:4c:07:
52:ac:49:95:1c:51:d6:55:15:d1:ae:77:49:a7:89:e6:ea:64:
a9:df:0a:fc:43:6a:06:e5:48:61:9f:83:1a:53:89:92:76:23:
bf:13:f1:ad:2d:d9:12:5c:b7:20:d0:95:79:67:d1:a9:fd:3b:
1a:e8:7d:8c:3c:ee:0a:67:62:04:a8:21:d0:5c:e4:43:74:ae:
b8:ad:a3:c5:c7:cb:18:96:c7:e4:23:ff:f4:b9:af:83:b3:68:
a7:9e:c8:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 16:22:33 2025 by rpki-client