Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
File: 2xTnpr6Xzsb1vBpninbqbRYZwwY.mft (raw, json)
Hash identifier: zKsO06svj3Txdl5Iixqz3b6ndCNnR3lkHOquXyymrXk=
Subject key identifier: 21:13:51:97:96:4E:68:97:27:97:15:3A:EC:D7:93:FA:00:E1:40:18
Authority key identifier: DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
Certificate issuer: /CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Certificate serial: 01984A77DFE7D033C9AA4D64FDC05E1D3892
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
Manifest number: 13C5
Signing time: Sun 27 Jul 2025 06:00:26 +0000
Manifest this update: Sun 27 Jul 2025 06:00:26 +0000
Manifest next update: Mon 28 Jul 2025 06:00:26 +0000
Files and hashes: 1: 2xTnpr6Xzsb1vBpninbqbRYZwwY.crl (hash: q8hKPA6bW1pQ61dO9f+gWI0t2hMHw9mQsMiW7jtz7Nc=)
2: FjL5MqcK0dv0phSETNIP5t1SBWg.roa (hash: HghvVzu9hsO9wX3NaFq2EgUKtQhDl/MHwAlkrJlofBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 00:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:77:df:e7:d0:33:c9:aa:4d:64:fd:c0:5e:1d:38:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Validity
Not Before: Jul 27 06:00:26 2025 GMT
Not After : Jul 28 06:00:26 2025 GMT
Subject: CN=21135197964e68972797153aecd793fa00e14018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:eb:18:d1:e5:1a:af:ed:69:a1:38:0a:61:de:
a8:82:c1:fc:c6:41:23:49:3d:89:a7:8c:5a:2c:23:
06:74:c6:0b:49:d9:ef:88:95:71:d6:f6:25:b1:ee:
f8:57:cd:49:41:b7:5a:75:1c:ad:ae:7c:2f:0a:f8:
cb:05:c6:33:f3:4f:43:3f:23:18:5e:ec:35:17:9a:
1a:b3:1c:e1:68:e8:a3:eb:7c:f3:2b:b1:37:6f:05:
9a:1e:05:e9:67:2b:41:dd:9d:cb:ad:b3:e9:1f:3f:
ef:68:0a:f2:a7:b8:c7:14:c7:fb:12:ed:ec:92:c2:
8f:85:04:3e:dc:f9:39:6e:28:3f:20:a5:0e:77:cd:
86:88:97:ba:bc:f4:92:c3:f0:17:b1:f1:05:eb:05:
6e:f3:4c:f8:75:1d:6b:e7:57:e2:61:c2:cd:b8:2c:
f6:b7:61:8a:3f:55:35:42:51:a3:3d:70:90:72:d2:
c3:3a:81:08:d2:1c:e6:c9:0f:57:e4:a5:b1:45:a1:
1b:c2:f7:f4:92:74:02:0a:5a:12:35:ab:b4:99:2c:
ae:c4:65:0c:5a:79:81:4f:61:3d:97:52:d7:cd:5d:
64:74:99:51:5a:4a:df:b4:91:04:2d:87:85:a5:44:
c2:c5:2d:6a:c0:cd:49:5d:ac:66:12:90:cf:1c:91:
11:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:13:51:97:96:4E:68:97:27:97:15:3A:EC:D7:93:FA:00:E1:40:18
X509v3 Authority Key Identifier:
keyid:DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:f3:87:8e:5d:86:6b:09:a1:5a:6f:24:72:d9:8f:9b:ae:f6:
ba:ca:18:76:b6:c8:bc:49:39:03:63:49:e7:09:a8:5a:01:0c:
15:e6:64:f1:31:ad:9e:c1:c7:55:b7:00:f9:0e:c2:6b:92:3c:
3f:41:0c:15:0f:a2:75:95:45:4c:39:b2:3e:ec:07:ff:44:70:
73:7a:09:3d:28:b8:21:cb:fb:d7:b8:65:df:02:f6:d4:00:1a:
e6:f8:75:a1:59:81:06:e1:1c:cc:85:57:22:45:5b:09:0a:bb:
23:2f:ac:e7:7e:d7:fe:fd:43:bd:df:39:29:2b:7a:7e:47:d8:
00:d1:24:69:4b:10:8b:19:44:3d:d6:e0:62:23:5b:5f:92:bd:
d3:f4:b1:ef:e8:c6:5a:4b:13:15:b8:02:1a:b6:9d:87:0f:99:
c7:6f:5e:a2:79:69:f2:a1:db:be:07:bf:07:3b:20:09:82:c9:
9d:4d:af:3b:d7:0e:a8:bd:8d:14:95:29:c2:1d:6a:82:73:91:
68:99:0a:72:af:52:85:19:ce:67:cd:79:8a:06:1f:36:2c:11:
dd:8f:1c:c6:b4:cb:17:4e:82:64:66:4d:87:cb:79:47:fa:7e:
e9:5b:3b:d5:95:8b:f6:78:9a:ce:5d:cf:c4:f6:20:7a:b9:74:
cc:08:85:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 09:42:13 2025 by rpki-client