Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
File: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft (raw, json)
Hash identifier: RoaHiQiEJ1c5OybJBJLFqmiCLj3lhjhBMw1YP0OdV0g=
Subject key identifier: 9B:93:7A:9D:C7:D0:4D:6B:E9:C0:AD:C0:B2:8C:35:B1:17:C0:55:B4
Authority key identifier: DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
Certificate issuer: /CN=da0589dce63981870a1850906c8c2d1d96740096
Certificate serial: 01976817653AD6D37D0ABA80F6772B64D39E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
Manifest number: 0A8C
Signing time: Fri 13 Jun 2025 07:00:53 +0000
Manifest this update: Fri 13 Jun 2025 07:00:53 +0000
Manifest next update: Sat 14 Jun 2025 07:00:53 +0000
Files and hashes: 1: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl (hash: CeUePnvkGhlufT8Cj/g+7p/QvC6y/hxJDvJXGDNzc+U=)
2: 73kskguN1VPO4tq3u0I-6VPbcl8.roa (hash: IOUFc++3ERmMqSZYKktHNh8ojKEPsIX8mty7/JMNR8c=)
3: pwFLoSIf9VUbET6QAXvLZY5rPr0.roa (hash: va4qzagh1XVOL80SDuYlOL0AHUwEGtmHAcyNr2+1pWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:17:65:3a:d6:d3:7d:0a:ba:80:f6:77:2b:64:d3:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0589dce63981870a1850906c8c2d1d96740096
Validity
Not Before: Jun 13 07:00:53 2025 GMT
Not After : Jun 14 07:00:53 2025 GMT
Subject: CN=9b937a9dc7d04d6be9c0adc0b28c35b117c055b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:98:97:9d:fa:a9:1b:2f:eb:9e:9b:c3:cd:10:
73:35:51:05:33:70:92:a4:16:20:06:b5:b5:c0:d8:
78:1b:b3:ec:91:8b:84:53:63:7a:74:0f:aa:3d:57:
f5:d1:21:c0:ae:14:74:0c:a6:31:da:82:f0:6e:65:
7a:62:b6:c4:e1:e9:56:38:e4:e3:a2:ee:49:a9:bc:
e5:0d:d6:8f:db:47:f0:1a:3b:d4:05:83:63:b1:97:
ff:af:08:0f:dc:b1:b6:96:5d:63:cf:be:ad:a9:a5:
18:f3:c0:9b:a7:88:5b:0b:a0:4e:03:d4:b1:31:99:
60:d1:ab:07:f1:8e:64:d5:ae:9c:d7:6d:96:25:c8:
da:e2:53:cb:3d:83:fa:3d:3b:bc:b6:d6:6b:fa:ed:
4f:20:79:eb:d5:b0:9d:f5:98:59:cf:6a:e6:69:79:
54:6b:b8:fe:bc:75:87:c9:b0:da:04:d2:b7:d5:03:
b8:6f:47:dc:be:4d:99:0d:d9:68:30:5f:e2:0b:75:
55:53:96:ce:10:82:9f:a1:e6:9d:f2:96:c2:77:43:
f0:a6:f9:db:7b:f8:52:60:64:43:06:a9:5a:3b:b1:
7f:59:32:41:35:3c:ae:47:bc:91:c2:71:75:35:9d:
fd:4c:a1:8b:c6:1b:f0:a9:02:4b:ed:4b:8d:f7:58:
0b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:93:7A:9D:C7:D0:4D:6B:E9:C0:AD:C0:B2:8C:35:B1:17:C0:55:B4
X509v3 Authority Key Identifier:
keyid:DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:d9:3e:3b:7d:7b:13:91:0e:6b:99:19:60:5f:1f:95:62:6e:
09:20:23:de:d9:7c:4b:40:7f:a8:60:d4:8d:8d:4d:bd:49:a3:
f9:21:5f:cb:a0:4c:2b:14:f6:79:b5:8b:83:cc:f7:27:c8:69:
2a:e5:07:f7:4b:ce:d4:6e:9a:c1:b2:a1:4d:0c:58:97:e4:bb:
19:82:cc:8d:96:94:5c:83:17:11:6f:db:da:21:1e:52:ed:7b:
3f:4c:bf:29:45:58:b2:60:d9:e2:ac:49:f1:23:1a:55:86:c9:
e2:d5:dc:2c:a9:7a:8e:91:92:1a:f6:b6:b5:26:5d:42:99:dc:
0f:31:c7:21:20:76:23:ec:44:82:9b:d5:e5:6e:36:78:6b:16:
7f:19:d4:95:d9:bc:ef:b6:c3:6b:c2:04:57:40:7f:d0:0a:3a:
7c:2d:a4:56:dd:79:98:64:66:b4:27:a7:2e:e7:d9:75:49:4e:
66:59:f4:38:58:fd:f0:f4:e4:50:c2:5e:87:35:cb:b8:89:52:
3e:66:d8:1f:c0:64:f0:b3:71:bb:4a:98:6e:58:41:f5:22:02:
8d:a5:b1:7c:14:f8:fb:fe:66:ab:ac:ae:27:37:a5:35:7b:84:
c7:95:a8:d4:40:6f:ac:eb:9a:a5:25:68:1f:09:09:87:ef:af:
95:da:b6:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 15:15:46 2025 by rpki-client