Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: WInOaYWLs1ErH/g20AfZ4HF/D45O1FPq+rbsWXYXAqY=
Subject key identifier: CD:6B:32:A6:6D:BF:99:A7:0B:C5:D8:CB:B6:98:00:E4:35:46:26:0C
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 019750B3EFFE7EE3509C035FDDEAEE132AE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 1581
Signing time: Sun 08 Jun 2025 18:00:59 +0000
Manifest this update: Sun 08 Jun 2025 18:00:59 +0000
Manifest next update: Mon 09 Jun 2025 18:00:59 +0000
Files and hashes: 1: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: cm4INuueZavpxxkkI8lszN6NNavSDDQvZtKw7E1lpwk=)
2: Lr1Je63vs8PyvkKI1_N9un3D4qE.roa (hash: hbRmpQBdQ4b6GdZPWppZ6a4wJHdosMiH1PY+13rdPiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b3:ef:fe:7e:e3:50:9c:03:5f:dd:ea:ee:13:2a:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Jun 8 18:00:59 2025 GMT
Not After : Jun 9 18:00:59 2025 GMT
Subject: CN=cd6b32a66dbf99a70bc5d8cbb69800e43546260c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7d:67:ac:0f:ff:2f:04:a5:06:02:08:00:77:
db:ae:6b:06:c5:ae:fb:ef:75:5a:03:f3:5a:eb:b1:
58:55:dc:94:ff:c8:03:7d:db:4d:e0:a5:3c:3e:d2:
08:95:84:8c:d6:3d:03:73:fb:81:d9:6a:7a:1a:a3:
2f:41:99:c8:75:d1:f0:75:b3:55:c0:33:d2:69:ba:
94:12:dd:8d:3f:ad:cc:97:98:a1:e3:ce:c0:f1:7e:
53:16:56:19:24:d7:d5:82:db:93:63:d0:95:2a:54:
d2:ab:2f:25:0a:6f:c8:04:2d:b4:3c:0c:e9:62:59:
94:a2:07:4e:c6:36:9f:2e:29:a2:e5:a9:71:c9:ba:
6f:10:42:15:77:68:ec:e0:4a:02:12:98:05:f7:e8:
ee:a7:2b:c9:17:af:57:c1:4a:b1:00:b1:dd:0d:00:
bb:37:ea:af:ec:09:04:f8:2b:c8:a6:e3:53:13:88:
81:ce:a6:f3:74:1f:06:82:12:5b:6a:bc:1c:17:05:
2e:5b:be:f5:27:6d:bb:b7:d2:8c:3d:45:88:01:da:
03:ab:6a:9d:9c:e0:b7:1d:75:8e:3b:87:21:9e:6d:
4d:bf:25:9d:fc:d7:b7:ae:d0:a5:fb:dc:39:99:c8:
f4:44:93:4c:89:a3:68:c1:03:ee:94:c5:61:4f:dc:
2f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:6B:32:A6:6D:BF:99:A7:0B:C5:D8:CB:B6:98:00:E4:35:46:26:0C
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:6a:6d:07:0d:27:c2:8d:82:db:e0:a1:a8:17:31:f6:6e:ec:
19:8d:1b:f1:fd:5f:a3:33:46:53:d8:7c:2c:2e:0c:a7:0f:be:
af:fb:d7:48:3f:e1:32:fe:e8:4d:f2:e9:2b:a6:e9:b4:f0:00:
b6:af:18:55:02:15:3c:36:1e:03:56:e5:a1:40:67:86:2a:61:
98:38:81:a4:e0:a1:2b:37:b3:3d:56:37:99:35:65:27:67:21:
77:c6:d2:7f:29:41:95:81:96:ca:71:76:31:63:2a:58:ca:a7:
65:e1:3f:7c:9a:cf:c8:8f:c8:52:1b:d4:4b:d8:2d:91:79:2f:
c9:7a:3e:b2:59:48:05:17:2a:6e:15:29:e9:89:70:c3:d3:45:
d0:83:74:e4:f3:63:41:27:ab:8e:8a:24:90:c8:17:2b:5c:52:
5e:c0:7b:69:06:1f:ca:f7:83:e4:8f:52:20:f1:fc:b3:c2:b1:
3b:ee:92:80:d8:50:ed:62:93:a7:6c:a5:94:cd:3c:d1:87:a9:
4e:05:a8:7f:bd:86:0c:2f:1f:0a:14:b8:1d:6d:4f:38:e5:64:
6e:46:55:9b:ed:f5:a4:25:bd:91:a5:66:38:60:d2:13:fd:9b:
3c:d0:7a:18:c5:e4:b8:14:15:42:19:0d:db:b2:aa:a7:0b:99:
0d:89:01:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 21:44:24 2025 by rpki-client