Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: NIphJRluHe5xhvZMii8/i67/uhXIiOHFv4bBAK3uES4=
Subject key identifier: 6F:DC:15:1B:0D:56:8A:92:90:2D:5D:B6:F6:76:77:E3:C5:F5:94:EE
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 01976327FA047F1B2280A939F26CB436667A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 1157
Signing time: Thu 12 Jun 2025 08:00:53 +0000
Manifest this update: Thu 12 Jun 2025 08:00:53 +0000
Manifest next update: Fri 13 Jun 2025 08:00:53 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: H9H/nxR16f5GOXRU+jdPsViSeT0iuu5z+jYL9MF9aA8=)
2: B9-JyKOh9vcA8Yt248kp1OHsLjE.roa (hash: IbF0FRhBYEIf5hZ2KcvfEljtf1YgGGazPG/5I71dHJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:27:fa:04:7f:1b:22:80:a9:39:f2:6c:b4:36:66:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Jun 12 08:00:53 2025 GMT
Not After : Jun 13 08:00:53 2025 GMT
Subject: CN=6fdc151b0d568a92902d5db6f67677e3c5f594ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:35:16:2c:75:a2:6b:7d:5b:40:5c:69:4d:26:
3b:9a:aa:ed:99:91:d8:0b:43:76:0e:68:b2:c6:d8:
14:d8:b8:31:96:97:56:02:8e:26:d4:10:41:17:a2:
5e:57:85:c2:c8:68:2c:b6:70:4f:3a:b2:8f:68:78:
3a:4f:4d:b8:05:ba:be:96:e7:96:21:96:3b:e5:31:
17:f8:4a:02:1b:5b:e9:72:c9:a0:1e:be:b5:4c:0a:
8e:9e:4b:7c:aa:36:2f:07:f1:51:fe:9a:f7:ee:03:
72:0f:d6:6e:15:e1:8c:2b:61:a0:12:47:18:67:02:
c0:65:96:28:1a:f9:95:94:64:fa:2d:ef:19:cd:76:
1e:32:6b:33:0e:b8:60:37:7c:c0:6b:a5:2f:e4:c7:
70:8a:ff:41:59:6b:43:45:01:ae:e2:8a:24:01:ed:
de:e1:c1:a2:52:10:70:db:d2:b7:e8:a5:db:21:a6:
b2:50:5b:c1:9c:5e:12:f0:6f:fd:89:ca:3d:64:b6:
97:99:91:7f:e0:ac:7d:83:04:32:b9:f7:10:ce:a7:
b0:7e:d9:04:1f:1c:38:39:64:9d:60:ee:5e:37:96:
72:a9:bd:3e:56:fa:e6:4e:28:80:ad:00:04:f0:1a:
68:8c:27:14:b7:d9:46:bc:e1:1c:ba:9a:28:b1:3a:
c5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:DC:15:1B:0D:56:8A:92:90:2D:5D:B6:F6:76:77:E3:C5:F5:94:EE
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:c3:2c:97:92:3e:cd:8e:43:66:6f:96:cc:b6:3e:aa:9f:10:
9e:a3:c0:af:0b:fa:21:f9:21:4a:ed:90:fc:08:e9:72:92:c9:
bd:7e:db:98:d4:89:42:41:cb:7f:90:3c:b9:57:59:e0:9f:be:
7d:96:49:e8:1f:4e:1b:a7:c3:74:ad:8c:a3:71:7c:1d:09:5c:
27:af:35:cc:51:52:9a:ca:5e:cf:c8:f9:ff:6c:45:67:88:22:
c8:11:25:31:87:71:fb:11:70:22:98:8d:8d:39:64:d2:3d:50:
ba:65:f2:e7:cd:80:25:93:37:19:62:52:72:eb:dc:f9:f7:68:
c1:30:de:79:09:05:ca:cf:45:8c:64:07:4d:1a:75:e1:8f:c6:
0f:b3:cb:91:03:f6:62:a8:4c:e0:e2:ae:86:4e:8a:82:ad:db:
be:b3:d8:bb:6c:cc:87:16:53:42:24:a9:12:6f:53:0b:19:cc:
1e:f7:cd:33:90:66:e3:bd:1c:a1:38:8b:16:da:9d:37:e0:cf:
e4:1a:fd:f5:f6:29:92:c0:f1:27:b8:3e:ee:12:10:2d:b9:e7:
8e:53:15:dd:1f:f7:50:5a:5f:3d:37:2a:94:30:6e:34:e3:ee:
5b:d1:18:04:a6:6d:3c:33:a7:37:3d:f3:d0:5e:3f:ff:a5:7f:
17:8e:47:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 10:13:36 2025 by rpki-client