
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: VQ3qUQuYB+cfYulx9OoLzMxRDepd3VMYQC8WyX/893I=
Subject key identifier: 3F:AD:B3:C7:CB:72:5C:A9:23:7D:EA:18:B1:CA:38:C1:C4:BE:15:52
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 01976516589805B2D24457C7D484D286D01D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 1158
Signing time: Thu 12 Jun 2025 17:00:52 +0000
Manifest this update: Thu 12 Jun 2025 17:00:52 +0000
Manifest next update: Fri 13 Jun 2025 17:00:52 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: 09lxCLpe1wzMhf5P6UNJXIcEwqZ2sHBCO4r0sF2OVJY=)
2: B9-JyKOh9vcA8Yt248kp1OHsLjE.roa (hash: IbF0FRhBYEIf5hZ2KcvfEljtf1YgGGazPG/5I71dHJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 15:17:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:65:16:58:98:05:b2:d2:44:57:c7:d4:84:d2:86:d0:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Jun 12 17:00:52 2025 GMT
Not After : Jun 13 17:00:52 2025 GMT
Subject: CN=3fadb3c7cb725ca9237dea18b1ca38c1c4be1552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2d:13:ee:df:40:d8:b0:7f:cc:3c:18:a8:08:
32:a6:a3:b1:1f:c0:fb:36:96:01:ba:17:2f:aa:7e:
35:ab:a6:72:84:e6:de:c9:b9:df:27:7b:f0:ac:60:
c2:97:4d:6b:75:79:6c:4c:a7:52:90:b4:b4:82:5d:
d0:b7:c8:bc:c8:cc:81:4f:73:c6:e6:f4:f1:be:3a:
2b:ab:32:da:49:dd:d6:33:23:90:ad:1f:6a:de:ad:
0a:b2:3b:07:14:f0:56:9c:9c:55:8d:3e:f9:d7:b3:
3a:65:c2:a9:72:9d:53:af:dc:5c:a6:93:37:6d:7f:
74:40:87:25:db:14:e5:41:b8:9e:b6:e2:1f:a2:01:
9c:a6:a1:53:fa:ed:c1:70:77:bb:4d:ee:ce:91:df:
b9:68:a9:cd:5c:b7:18:d2:c7:12:2f:6a:d0:4b:3c:
bf:b2:f3:cd:b9:3c:68:05:86:1d:c3:81:81:dd:01:
8c:83:53:34:b5:24:be:12:eb:be:4a:e5:95:de:02:
a9:70:52:a8:0b:d5:42:c4:7f:c9:9f:00:fc:d5:56:
e7:44:b8:e0:d8:f9:f7:2e:26:67:2b:21:d2:6c:2b:
3f:01:c0:77:10:71:22:33:f6:a2:fb:4e:95:53:14:
2e:c1:bd:54:ac:bf:e8:41:2b:7f:00:2f:1b:f9:75:
18:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:AD:B3:C7:CB:72:5C:A9:23:7D:EA:18:B1:CA:38:C1:C4:BE:15:52
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:af:48:83:95:70:dd:a7:71:3a:84:1a:16:87:74:62:28:b3:
c3:32:b8:85:36:b8:75:89:5c:40:e3:b7:7a:81:ae:38:80:2d:
95:1f:24:21:dc:cf:58:cc:28:4b:20:a1:27:2b:88:37:6b:36:
af:a5:5e:80:3a:06:00:4b:91:0a:b7:b0:3b:48:cf:d9:27:f7:
51:f3:b5:ed:ea:30:62:8c:0b:e3:e5:23:48:91:68:a0:ab:23:
ec:cb:be:a8:17:e4:14:30:9c:ea:8e:7c:52:63:5a:1c:7e:c2:
17:ba:a6:f7:03:63:d2:08:39:db:10:98:87:f4:7e:94:c2:02:
6d:8c:d4:0c:b9:48:36:c5:99:36:8e:52:57:0e:05:e3:73:ef:
dc:ca:e9:90:92:10:f2:3b:af:f9:e1:ab:5e:e0:11:05:c2:d1:
67:63:95:de:86:2c:96:82:9e:ef:7d:a6:a9:98:2e:49:d7:aa:
16:42:7c:5f:d6:ba:92:f9:6b:ea:52:4f:c6:18:bc:e7:64:3a:
5d:ed:aa:4c:84:d0:94:42:f5:67:cc:10:d1:5e:9e:27:af:33:
e3:4e:b6:10:81:dc:1a:de:30:23:d1:9d:91:29:3a:cd:6e:4a:
aa:54:84:5e:2b:5e:29:73:c3:9f:4c:56:41:76:4c:51:40:4d:
7d:b5:72:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 00:10:31 2025 by rpki-client