Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: RK1Gua1ccGaRgZYGpQUNV7COSJ0AkFhhvmCHgAXG9Dw=
Subject key identifier: 70:92:47:44:7A:C0:E3:A5:74:E9:12:7F:89:08:8F:88:49:F0:D5:F0
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 019849D2D43700398729BD7494E2ADB788A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 1602
Signing time: Sun 27 Jul 2025 03:00:10 +0000
Manifest this update: Sun 27 Jul 2025 03:00:10 +0000
Manifest next update: Mon 28 Jul 2025 03:00:10 +0000
Files and hashes: 1: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: d+Nz5QV9QoTImunkWgfu5OfoWEqXwjthJJsmN4X44mc=)
2: Lr1Je63vs8PyvkKI1_N9un3D4qE.roa (hash: hbRmpQBdQ4b6GdZPWppZ6a4wJHdosMiH1PY+13rdPiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:d2:d4:37:00:39:87:29:bd:74:94:e2:ad:b7:88:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Jul 27 03:00:10 2025 GMT
Not After : Jul 28 03:00:10 2025 GMT
Subject: CN=709247447ac0e3a574e9127f89088f8849f0d5f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d5:ce:a4:08:e5:cd:df:1a:97:19:ee:09:fa:
d7:9e:30:36:5e:f0:f9:93:76:ec:c9:fd:3e:7d:94:
60:0c:13:03:4f:94:81:eb:56:de:05:1b:35:a4:fe:
2c:98:b2:ce:6a:79:b6:d5:15:70:59:79:db:87:f3:
4b:77:5d:20:06:90:8d:0c:69:14:28:c5:4c:a2:36:
85:a6:0f:29:d0:cf:c3:c1:6d:75:e3:af:e0:7f:93:
68:78:44:0b:e2:e2:3d:6b:a0:d9:ee:58:a5:b4:16:
ac:fc:91:a8:5c:1f:c3:ee:4a:44:d1:be:3f:f3:0a:
4e:67:5e:f4:d8:51:66:0c:20:c6:c0:5a:61:cb:47:
d0:24:66:ee:89:45:10:c6:bf:45:52:cf:62:1a:36:
90:57:c8:08:b5:47:0f:0b:52:68:65:33:b8:4a:fd:
3e:dd:0e:d1:33:cd:03:63:0f:58:7a:40:9d:f4:d8:
94:45:14:60:c0:26:e6:25:6c:ee:5e:3b:28:70:76:
f3:8e:db:7d:16:3c:7d:47:bf:ff:e0:6a:ca:bc:37:
bd:d2:50:90:43:f9:cf:45:84:cd:b3:27:13:2a:9e:
50:24:9b:50:09:94:11:90:8c:60:97:d9:04:f3:d6:
14:5d:d4:f8:f8:16:6e:09:28:66:dd:bc:66:99:bd:
c9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:92:47:44:7A:C0:E3:A5:74:E9:12:7F:89:08:8F:88:49:F0:D5:F0
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:88:06:4a:19:97:b7:67:c4:da:4e:b8:ee:45:3d:07:13:df:
a0:49:2c:87:e9:ab:95:86:da:8e:89:1e:12:fd:aa:bc:d1:67:
77:8e:6c:53:c7:5f:1f:07:0a:1f:0c:57:01:a9:43:2c:4b:bd:
2c:e6:0c:91:af:5a:e3:ea:58:ea:d6:c2:9e:85:d8:9b:62:b2:
e6:93:08:9f:0b:e6:f0:64:81:69:9d:c1:e1:0b:74:6d:27:d3:
1a:a7:b0:7d:3d:88:de:da:e6:ea:3d:30:af:c8:d0:5f:82:0d:
6a:1f:8d:aa:c5:1d:e1:a7:35:2c:51:8b:19:c7:f0:a4:0d:e5:
98:43:c3:b8:a5:8f:4e:55:2a:3d:90:dd:f1:d7:a8:00:2c:eb:
5d:b1:e5:e8:47:7b:3d:af:2c:5a:c2:24:e9:f6:f6:60:c8:0d:
bb:1f:c0:63:38:a0:77:a0:b7:e3:3e:a0:b7:53:99:ad:22:94:
e2:0f:75:e8:3d:9d:ea:ba:78:bc:b7:a7:d9:04:94:5d:37:b1:
5a:2e:f9:d7:de:fd:5e:9a:bb:37:d5:c6:57:98:9e:96:c6:fe:
a9:3a:d6:8c:dd:fd:7b:3e:7e:ca:54:35:27:ab:3a:2f:00:14:
da:c1:4d:d7:f5:0e:46:75:f4:78:61:8a:28:ea:7d:a3:5f:64:
47:36:d2:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:52:42 2025 by rpki-client