Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
File: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft (raw, json)
Hash identifier: FE5MXUmFuzB3CiZXA4+RD4d3LGC5jo/TGpYtq0Mgd+s=
Subject key identifier: 63:D5:12:4D:55:21:FD:25:E2:CD:D0:26:38:BD:A0:1D:F4:A8:BC:9A
Authority key identifier: DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
Certificate issuer: /CN=da0589dce63981870a1850906c8c2d1d96740096
Certificate serial: 01975C80C276D0FA89D7B5875A7537B32FBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
Manifest number: 0A86
Signing time: Wed 11 Jun 2025 01:00:31 +0000
Manifest this update: Wed 11 Jun 2025 01:00:31 +0000
Manifest next update: Thu 12 Jun 2025 01:00:31 +0000
Files and hashes: 1: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl (hash: O091HU3buyeWV7PtTJbjb2SzQJUm3Beg7cUuB2TdhoU=)
2: 73kskguN1VPO4tq3u0I-6VPbcl8.roa (hash: IOUFc++3ERmMqSZYKktHNh8ojKEPsIX8mty7/JMNR8c=)
3: pwFLoSIf9VUbET6QAXvLZY5rPr0.roa (hash: va4qzagh1XVOL80SDuYlOL0AHUwEGtmHAcyNr2+1pWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 20:45:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5c:80:c2:76:d0:fa:89:d7:b5:87:5a:75:37:b3:2f:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0589dce63981870a1850906c8c2d1d96740096
Validity
Not Before: Jun 11 01:00:31 2025 GMT
Not After : Jun 12 01:00:31 2025 GMT
Subject: CN=63d5124d5521fd25e2cdd02638bda01df4a8bc9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a9:eb:70:2a:57:74:f2:f5:d9:73:2d:b3:2d:
1a:0e:1f:b0:23:1f:64:b1:57:c4:77:af:1b:07:ca:
59:bb:20:21:86:87:e4:e7:84:98:07:28:bf:02:74:
8e:9a:46:27:65:4f:20:77:67:bf:f6:f4:70:f8:9c:
3d:1e:46:28:32:e8:07:16:20:8d:9f:73:04:bd:1d:
97:1f:84:97:ef:c9:f1:cb:30:10:ca:fb:3c:9b:08:
14:37:d3:60:79:02:10:92:3c:6d:09:0a:99:be:6d:
7d:1c:76:12:a1:e9:d9:53:f2:3c:68:3f:68:ab:5f:
5d:ae:78:51:20:52:aa:0c:90:94:a3:40:57:29:bf:
aa:b6:91:62:b8:1e:98:12:6c:2c:7b:b7:9b:69:ae:
bd:98:0d:8f:3d:c6:d2:b1:64:16:5f:9a:af:4b:bb:
6d:0d:b8:bc:dc:c4:c8:fe:c4:11:a7:69:5e:34:f9:
eb:37:8a:e7:66:e6:49:0c:b3:4b:94:72:eb:7a:ea:
d8:9b:86:90:0f:67:d4:eb:59:78:15:47:32:06:f7:
bf:8f:e1:df:b4:3a:74:db:25:fe:ff:56:50:a8:37:
b8:96:11:40:8b:ed:ce:e2:fa:cb:7f:84:d6:44:af:
97:a4:02:a6:61:6f:72:1a:11:82:9d:e9:b6:58:43:
15:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D5:12:4D:55:21:FD:25:E2:CD:D0:26:38:BD:A0:1D:F4:A8:BC:9A
X509v3 Authority Key Identifier:
keyid:DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:bc:18:47:0c:ee:62:73:ca:58:fe:4b:91:7c:25:d0:11:eb:
5b:f0:f4:dc:6f:62:78:52:e1:a5:e2:78:f5:22:f1:38:90:c6:
fd:b4:fe:43:25:91:b9:b5:28:89:bd:25:a9:30:cf:72:44:1c:
2f:17:a4:9b:78:af:93:22:fd:34:78:f4:11:da:4b:fd:a7:c4:
4b:61:d6:2d:e8:ad:86:7c:c6:4b:57:b2:44:45:3f:1c:62:97:
21:6f:2b:a9:1d:da:a4:a0:47:25:82:80:9d:bc:3a:57:e6:a7:
38:6c:cc:57:d6:12:14:0e:0b:ee:ed:c6:d3:6a:e6:0c:4a:44:
7c:31:c0:aa:74:30:de:11:a1:d7:c4:29:8f:7b:42:10:a9:6f:
a4:a8:61:3f:23:d9:e3:c7:cd:ea:2d:14:27:c3:07:ed:c1:2f:
ac:dd:9a:47:8c:94:62:a0:fa:a3:9d:68:22:cd:bb:3c:6e:58:
9a:ce:1c:66:b0:d6:46:3e:25:ac:70:92:50:89:97:fa:e8:1c:
8e:3e:ac:e0:29:81:8d:a0:62:91:01:38:a3:97:d6:f9:1d:1e:
2b:53:a9:16:04:41:85:04:fc:4c:f1:8a:06:38:da:b8:b3:30:
b6:f0:f7:e9:e1:02:d3:5a:21:75:a5:8c:9b:d5:dd:17:1a:05:
2b:5f:a3:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 07:30:06 2025 by rpki-client