Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
File: 2PuW6jr1HFMtfo_oyUN29R4epAI.mft (raw, json)
Hash identifier: vyBctMFCZaXxeOAXmhIasfNpei45DhGrF1jRX96wdww=
Subject key identifier: 54:79:F2:72:5E:95:53:84:80:06:88:07:46:D8:1C:99:5B:96:E7:F4
Authority key identifier: D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
Certificate issuer: /CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Certificate serial: 01974BC49464CE3BF97AF05188A2C57F047A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
Manifest number: 13A2
Signing time: Sat 07 Jun 2025 19:01:03 +0000
Manifest this update: Sat 07 Jun 2025 19:01:03 +0000
Manifest next update: Sun 08 Jun 2025 19:01:03 +0000
Files and hashes: 1: 2PuW6jr1HFMtfo_oyUN29R4epAI.crl (hash: GS+xcJ/VT9hiJZEnb855fD9K9Y2fyb441OBgxnhXSQU=)
2: qvV18edZ4nG1g9Z6XFGjfB91HGk.roa (hash: xA0FHg4k3qhHIOcw440t6o/vgKfLrTtDa1pgd5bBDMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:94:64:ce:3b:f9:7a:f0:51:88:a2:c5:7f:04:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Validity
Not Before: Jun 7 19:01:03 2025 GMT
Not After : Jun 8 19:01:03 2025 GMT
Subject: CN=5479f2725e9553848006880746d81c995b96e7f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9b:48:8b:58:48:3f:db:51:90:84:0a:d2:8a:
98:9f:2f:6c:78:fc:7c:ea:4e:da:c5:92:e8:c3:d1:
04:ba:11:47:b0:05:e5:54:bf:bc:9a:40:43:a5:bd:
eb:1c:f8:41:11:75:69:5b:13:92:8a:ab:d9:22:30:
38:6d:76:99:8e:9e:bb:18:5b:96:cc:0a:f0:aa:a0:
2d:03:b0:da:f8:dd:d3:25:cc:43:fe:23:14:13:03:
26:bf:69:8c:c9:50:0f:23:77:ee:69:47:8c:e6:fb:
fe:9b:17:ea:67:6a:45:7b:7e:31:b2:82:1b:e3:1e:
55:96:3c:d9:7b:f5:7f:f1:e1:28:18:1f:4b:b4:a8:
00:87:f4:fd:5e:34:24:76:ad:27:b6:4b:c5:2b:b0:
6f:df:f8:6b:f6:54:cf:f7:e4:2e:27:37:db:35:2e:
3a:f5:40:8d:b9:86:24:6d:d3:e6:60:7f:23:db:ec:
06:a4:97:eb:5f:41:6a:c6:3b:79:e6:96:8c:92:89:
3d:a8:11:50:61:c4:54:d5:d2:2f:d4:17:e0:c8:e5:
59:de:27:f2:29:f3:31:f3:31:ed:87:c9:48:2b:d0:
96:80:43:53:fd:27:d9:19:33:c7:1d:47:0e:02:63:
03:33:9c:11:27:1e:60:d3:87:02:c4:30:69:0e:9e:
4c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:79:F2:72:5E:95:53:84:80:06:88:07:46:D8:1C:99:5B:96:E7:F4
X509v3 Authority Key Identifier:
keyid:D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:38:09:e6:5a:db:5f:ef:a4:0f:bb:13:8b:a7:de:e7:98:32:
5f:cc:f6:fb:3a:fa:50:5e:85:3f:62:31:14:02:d6:35:7f:91:
cc:3b:14:ae:1d:ee:e9:8d:02:68:9b:2c:61:a2:ea:ba:9d:5a:
d6:13:8c:17:9d:f2:37:dd:83:bb:9c:19:7d:11:28:03:00:28:
c5:8c:fd:2b:56:f6:4f:89:f3:2f:f5:ef:69:21:12:5e:1c:be:
97:bb:4f:b5:3a:7b:a6:f5:aa:76:15:12:b8:67:47:2a:bb:52:
e8:f7:9f:0c:9c:5f:c1:02:67:4e:57:00:40:36:83:63:a2:55:
30:0e:b9:93:22:17:42:fa:27:0f:01:78:99:91:1e:a3:2b:ba:
54:ad:18:b7:b4:22:84:64:95:d8:b3:5e:83:51:6b:46:c3:13:
a1:67:9e:6b:be:14:5f:dc:ae:6d:cb:5d:c7:89:69:16:cf:ab:
e7:c8:6e:ec:c9:2c:28:35:9d:94:ef:22:5d:7f:26:1c:ea:9f:
a5:8a:4a:00:2f:32:3e:fd:36:0e:b5:0a:70:e2:4a:49:ab:a1:
d2:56:77:a9:6a:15:66:51:47:38:36:88:b1:d4:bd:b7:85:d2:
01:33:4b:f9:79:53:e6:56:98:8d:a7:35:68:27:d1:d9:ba:31:
46:39:e1:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:00:43 2025 by rpki-client