Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
File: 2xTnpr6Xzsb1vBpninbqbRYZwwY.mft (raw, json)
Hash identifier: LcYFL1dQUeC1N+ZfnJsC88SJHmROYkUBRmoykEbz9Qo=
Subject key identifier: 8E:08:4F:A5:33:90:B4:EE:6C:66:6C:A2:91:74:63:8C:EF:34:8E:0F
Authority key identifier: DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
Certificate issuer: /CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Certificate serial: 01974D7C120DE8F3B2AC56785E3FF28B4943
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
Manifest number: 1342
Signing time: Sun 08 Jun 2025 03:01:06 +0000
Manifest this update: Sun 08 Jun 2025 03:01:06 +0000
Manifest next update: Mon 09 Jun 2025 03:01:06 +0000
Files and hashes: 1: 2xTnpr6Xzsb1vBpninbqbRYZwwY.crl (hash: cjd/qKJrdL3VK53dvXqbRqzPRGAbVxns/wHiNQBJX/U=)
2: FjL5MqcK0dv0phSETNIP5t1SBWg.roa (hash: HghvVzu9hsO9wX3NaFq2EgUKtQhDl/MHwAlkrJlofBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7c:12:0d:e8:f3:b2:ac:56:78:5e:3f:f2:8b:49:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Validity
Not Before: Jun 8 03:01:06 2025 GMT
Not After : Jun 9 03:01:06 2025 GMT
Subject: CN=8e084fa53390b4ee6c666ca29174638cef348e0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:24:fd:8f:ac:84:04:50:84:2e:6d:cb:fe:dd:
f3:a2:c3:2b:fb:45:d7:7f:73:38:f4:76:35:20:a8:
5f:a4:a8:55:d3:1e:a4:e9:d0:a8:cc:4c:99:68:75:
a0:15:b0:f0:3f:bb:5c:df:9e:d5:1d:80:95:be:97:
06:8b:b8:1a:e1:ba:07:10:e5:54:57:33:71:4d:f6:
a6:27:eb:66:45:92:40:dd:b1:86:d4:8c:4f:68:c4:
6f:18:45:39:ae:18:ed:52:4d:13:6f:8d:83:af:b1:
43:75:0d:fd:8f:5c:89:25:5f:27:1e:b3:82:86:84:
ed:db:1e:08:9e:4c:29:2a:97:e5:2b:de:45:97:43:
04:f1:fa:69:6b:04:d8:0c:73:7d:b3:04:70:f4:9e:
c1:54:8c:ad:87:56:d8:80:7b:75:44:33:d4:a3:09:
04:a9:da:32:db:a5:6e:81:a5:03:7c:09:f2:f9:37:
cd:e7:18:49:5a:dd:0c:00:12:58:8d:6c:98:cb:b4:
21:53:b3:39:d8:f7:0e:98:07:c1:f5:9d:9a:da:d2:
e0:f8:ec:d4:f8:7e:e5:38:65:ae:00:65:e3:a3:f6:
7f:fe:89:8b:db:b5:d9:bf:04:11:d5:72:93:99:a0:
f4:2a:d2:a2:03:f3:cd:4a:40:ec:1a:92:ba:e9:7f:
68:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:08:4F:A5:33:90:B4:EE:6C:66:6C:A2:91:74:63:8C:EF:34:8E:0F
X509v3 Authority Key Identifier:
keyid:DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:ee:87:cb:e5:56:3c:0a:1e:bf:67:47:48:d2:fc:76:ff:53:
98:ed:94:2c:c9:31:fa:51:bf:52:b7:a7:00:51:a6:1a:48:52:
7e:e2:50:8b:de:84:82:2e:fa:ea:11:b2:2e:13:f7:59:1f:56:
cb:4d:90:86:d9:1e:e7:e6:5f:9a:e5:dc:61:5b:a6:90:5e:9b:
4b:21:2a:94:2a:2a:0a:57:2c:ee:d5:ec:35:80:8a:71:8d:c1:
82:0f:02:43:29:27:da:f1:aa:ba:d1:d5:3b:df:a9:46:ee:1c:
73:a9:89:00:7f:6c:01:21:39:e5:67:bc:b9:52:c1:78:a8:d3:
0f:53:73:aa:bf:2c:e4:36:fb:56:6d:43:1f:6a:5f:95:86:b3:
ed:c3:89:f0:81:0d:03:f9:d5:34:b3:ae:a4:0f:0f:2e:a0:87:
55:10:3d:7a:2b:57:de:ad:a3:0b:34:15:45:d8:a3:8f:75:a2:
72:f1:44:13:9f:7f:25:ad:3e:96:ff:c4:24:0a:6d:30:99:fb:
6d:99:f9:53:59:d4:84:18:61:33:a8:73:fd:29:7b:92:45:6d:
36:fd:fa:88:d5:a6:a0:f9:74:96:2b:a1:de:94:53:23:cd:aa:
e0:5f:bc:da:8c:e6:46:43:17:7d:f3:35:66:8a:41:2a:c5:36:
d5:5c:83:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:08:48 2025 by rpki-client