Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
File: 2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft (raw, json)
Hash identifier: VEXoj6o0nJGnHAi6DF3JE5mgwJ6Myk/mEQd+nX4BVeA=
Subject key identifier: AF:1C:89:D4:0A:84:B6:27:6B:6C:46:FD:A6:CE:A6:A8:D4:B7:09:3E
Authority key identifier: DA:02:4B:9C:63:DB:5C:1A:1C:F4:C5:58:1D:BE:5B:38:1C:B9:50:87
Certificate issuer: /CN=da024b9c63db5c1a1cf4c5581dbe5b381cb95087
Certificate serial: 019749D632654A759F134711D74EB46F4CE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 10:01:03 +0000
Manifest this update: Sat 07 Jun 2025 10:01:03 +0000
Manifest next update: Sun 08 Jun 2025 10:01:03 +0000
Files and hashes: 1: 2gJLnGPbXBoc9MVYHb5bOBy5UIc.crl (hash: ucAQBTdK2eiJLYoWcnIQzH3ZFjch8ms/7QLHP/DYzzo=)
2: ERHgCqLjJCv-XvaDVjYAj8P1zKs.roa (hash: 0x7RKzsX7jR4DuJ9t+glZtV4k9Tiu2posJrN6U758NM=)
3: cJTD3IKsBKeCbDG4KiZEHnYFPTM.roa (hash: ufqwqkZa7S2iEhZdfjJxNYCun4AbNJ4X2aLuA4Ji7yY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d6:32:65:4a:75:9f:13:47:11:d7:4e:b4:6f:4c:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da024b9c63db5c1a1cf4c5581dbe5b381cb95087
Validity
Not Before: Jun 7 10:01:03 2025 GMT
Not After : Jun 8 10:01:03 2025 GMT
Subject: CN=af1c89d40a84b6276b6c46fda6cea6a8d4b7093e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bd:6c:d7:ac:34:c3:b0:c8:78:cb:3e:4c:83:
a6:31:63:09:bb:62:00:60:79:04:c8:d5:03:87:4b:
c5:59:ad:09:3c:2b:4e:13:d7:96:55:ea:98:c2:56:
37:f9:10:5f:b1:ee:52:84:d2:31:94:97:c6:22:5c:
8b:42:ff:55:d3:d0:ca:a2:35:66:a2:ca:f5:b8:9b:
ee:78:70:53:cb:42:87:31:66:b0:de:f7:6a:bb:c2:
f3:1c:c3:0d:22:8b:31:b0:c4:cf:ad:5e:b6:70:cf:
f9:73:92:de:4a:8f:24:c7:49:49:e5:13:7d:3d:a8:
ee:17:e4:0d:77:74:1e:18:85:52:aa:80:71:46:ed:
02:c5:13:25:1b:d8:e9:18:11:d6:5b:96:d9:13:52:
95:ef:00:7f:fc:b2:4f:8b:c7:f5:22:d6:a5:60:96:
7e:e1:ee:1c:6c:3f:2f:2a:d3:37:37:7f:0d:12:2f:
26:79:f1:71:6a:84:d3:00:ec:f2:c1:1a:f0:3f:04:
6b:d0:a9:5b:48:7e:16:39:13:08:bd:bb:74:f2:04:
dd:cf:c4:9e:44:87:71:bd:1b:93:5d:e2:5b:7d:87:
d8:65:27:ed:61:b7:6d:d9:1b:0b:e2:16:ff:ad:9c:
89:76:8f:ca:94:be:64:a1:7e:bf:4c:de:ce:db:d6:
45:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:1C:89:D4:0A:84:B6:27:6B:6C:46:FD:A6:CE:A6:A8:D4:B7:09:3E
X509v3 Authority Key Identifier:
keyid:DA:02:4B:9C:63:DB:5C:1A:1C:F4:C5:58:1D:BE:5B:38:1C:B9:50:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gJLnGPbXBoc9MVYHb5bOBy5UIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5d7cda-0a98-43ac-9136-712b1a7968e6/1/2gJLnGPbXBoc9MVYHb5bOBy5UIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:05:f3:4e:98:b9:4c:c8:3c:6d:ec:c4:22:2d:1f:54:86:6d:
4c:3b:49:4e:73:ff:c0:df:f5:a6:cd:0c:c9:6d:0e:9d:73:80:
59:57:ce:c1:ca:a8:3c:11:de:98:73:fe:a1:08:f0:1b:5a:e5:
c1:70:fc:c0:68:fc:c8:15:f8:c7:eb:7b:89:8d:a3:86:9d:df:
f4:bd:38:a1:1b:0a:3e:bd:62:66:de:b4:d9:8a:41:33:3f:ea:
a0:95:b6:c2:33:82:63:6b:87:58:a2:8e:4a:97:28:06:29:cb:
b5:79:99:3b:76:3b:aa:1f:f3:b5:44:da:79:b2:4d:14:41:1b:
c0:7f:61:08:ec:74:cf:0b:ae:c3:2f:55:ed:9b:54:ee:5b:7e:
8f:c9:8a:1b:74:fc:9e:0d:75:e7:32:d9:ad:9c:3f:fe:3f:df:
ba:29:9d:b0:e4:21:a3:da:4b:82:92:cc:43:c7:cf:df:4d:74:
0d:f5:f9:aa:d4:7a:09:53:a2:4f:b0:e8:05:01:d6:f9:06:c8:
5a:06:e8:f4:f8:26:45:66:2d:c3:0b:c7:29:77:7c:29:97:81:
be:05:4c:6b:f5:cf:28:68:9d:47:9b:16:10:87:5b:50:7e:8f:
a6:aa:15:4e:c1:65:0b:76:e9:b3:55:e9:26:9f:3d:7b:8e:bb:
ee:c7:71:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 17:01:27 2025 by rpki-client