Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
File: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft (raw, json)
Hash identifier: H2Utz7bxXCF7xhZVHNG/yeYRLGCEg2SovUhoCMkEsrs=
Subject key identifier: 59:15:33:F2:0D:C4:B0:EB:C1:E1:0F:B9:7D:A3:ED:2A:D4:90:DC:CA
Authority key identifier: DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
Certificate issuer: /CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Certificate serial: 0197458B64D266201AFC20A9EFFC576BEF0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
Manifest number: 03BC
Signing time: Fri 06 Jun 2025 14:00:52 +0000
Manifest this update: Fri 06 Jun 2025 14:00:52 +0000
Manifest next update: Sat 07 Jun 2025 14:00:52 +0000
Files and hashes: 1: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl (hash: ASr+fZHySEzuehckvKtTKo/FRRwbEDfbUrP+DsN0cd0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 14:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:45:8b:64:d2:66:20:1a:fc:20:a9:ef:fc:57:6b:ef:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Validity
Not Before: Jun 6 14:00:52 2025 GMT
Not After : Jun 7 14:00:52 2025 GMT
Subject: CN=591533f20dc4b0ebc1e10fb97da3ed2ad490dcca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:36:cb:a0:94:3f:79:7a:84:fc:3b:80:01:94:
55:5b:ef:ad:dc:08:f6:66:76:0c:14:96:a5:d0:a9:
90:38:f4:65:9c:34:cb:1f:4f:7d:fa:29:78:90:e6:
52:71:b7:85:59:73:79:ec:90:94:da:28:9e:a6:c2:
82:67:ca:e3:d9:9e:dd:2d:3a:59:26:e9:70:5b:9f:
42:e5:79:3e:ed:1c:a3:b3:37:0e:d2:9d:a4:e9:86:
44:9a:41:d6:a3:a7:99:71:fd:07:3c:91:01:56:6f:
3d:b1:1d:4d:b1:44:a3:4a:2f:14:3a:d6:38:b7:6d:
1b:c5:f6:54:7c:db:35:34:1f:5d:a4:62:4f:4b:d9:
b1:ca:df:8f:58:44:a1:34:4c:b0:fc:53:a7:ad:b5:
35:a2:8e:77:15:ed:77:71:03:ef:10:90:48:ca:84:
41:b8:5a:6e:9d:73:8f:be:40:39:05:d0:b7:1b:44:
8c:65:bb:78:62:8a:cc:fa:15:cf:a3:eb:43:a6:51:
23:85:bf:ac:0d:45:3e:43:ee:bf:08:5c:87:dc:d4:
ac:21:64:b1:7d:56:b5:00:75:4f:b6:6c:15:c5:8b:
58:07:71:43:0e:b9:78:4e:47:72:11:27:ef:59:d0:
13:8d:10:08:88:6f:d7:08:ff:94:53:4c:19:d5:70:
46:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:15:33:F2:0D:C4:B0:EB:C1:E1:0F:B9:7D:A3:ED:2A:D4:90:DC:CA
X509v3 Authority Key Identifier:
keyid:DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:36:eb:43:29:6c:03:cc:44:8f:ee:8b:20:c5:c8:a2:72:33:
07:f2:bc:c0:7c:28:d2:d9:69:f9:78:5c:ec:dc:02:1e:a4:18:
70:24:ce:b8:27:9e:6a:1b:57:29:2a:94:c1:fd:d4:d6:b4:f3:
33:5a:ed:3a:24:d6:59:c8:8d:0a:4f:c1:f9:9d:13:5b:48:a8:
d3:78:3f:3c:60:27:b1:9e:5c:d5:b0:2b:e1:4b:b5:af:c1:8c:
cd:e3:97:e8:c9:2b:df:33:5a:37:78:0f:53:3d:c4:14:65:31:
d7:9f:23:4a:ed:21:9b:60:8f:b1:50:63:e8:88:5e:86:fd:91:
1c:20:4e:51:1a:f1:b3:ef:fa:d8:40:5c:40:00:58:31:82:ee:
73:aa:20:7d:c8:3c:30:03:64:f6:3c:94:19:37:7d:a2:b5:a1:
49:f7:e6:be:da:97:a3:56:28:68:e2:b4:e3:20:21:51:28:04:
e7:7c:17:4d:be:b0:9c:02:28:39:23:12:09:a5:21:bc:e9:32:
41:f7:b8:e5:30:ac:7b:40:28:60:24:34:3c:b3:b7:f9:b4:fe:
e3:3c:0a:b0:d3:6e:8c:63:76:93:f2:e2:12:1b:78:3b:f5:eb:
57:1e:1a:27:4a:fc:13:77:90:78:09:64:cb:97:3e:a0:6d:6c:
31:91:3e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:56:59 2025 by rpki-client