Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: 6kz57Z3ALuLWMZvxtXjbecJMG68B3wflCwi3eYpDoKM=
Subject key identifier: 0E:B8:CF:8B:29:5B:06:FC:5F:CE:19:FF:0A:D6:FE:16:D5:03:5D:A7
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 01975F4AE0FF89E805D3A6AA1470CE054F91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 1155
Signing time: Wed 11 Jun 2025 14:00:32 +0000
Manifest this update: Wed 11 Jun 2025 14:00:32 +0000
Manifest next update: Thu 12 Jun 2025 14:00:32 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: /KZjfOaGQBiFsC31Uh6dPzyFILf7R3+HtVzOIOsgK/8=)
2: B9-JyKOh9vcA8Yt248kp1OHsLjE.roa (hash: IbF0FRhBYEIf5hZ2KcvfEljtf1YgGGazPG/5I71dHJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 14:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:4a:e0:ff:89:e8:05:d3:a6:aa:14:70:ce:05:4f:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Jun 11 14:00:32 2025 GMT
Not After : Jun 12 14:00:32 2025 GMT
Subject: CN=0eb8cf8b295b06fc5fce19ff0ad6fe16d5035da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ed:e2:db:e2:38:50:1e:76:54:40:55:f9:36:
d6:0c:16:fb:85:a0:07:2b:bb:50:9e:82:2c:52:f5:
4d:07:3e:3a:9d:01:fe:8f:ce:40:fd:64:f8:59:bc:
04:c0:d6:f8:53:55:19:70:c8:d8:9e:49:bf:c0:be:
cf:5c:7d:fc:0d:33:cb:41:dd:72:d3:0c:ae:9f:2b:
c0:8d:ff:b0:9a:49:a9:7e:21:ae:63:a8:82:73:0a:
de:0b:7f:dc:48:c4:3e:76:b9:36:28:29:49:2e:bb:
7d:2a:f5:79:7b:ce:7c:60:29:b2:5f:43:0b:9e:24:
64:5c:e8:e1:a3:bd:1f:71:42:b1:5d:8d:e6:6b:62:
a3:b1:73:1f:bb:77:fd:eb:7c:a3:53:c4:89:d5:7c:
fa:4f:e2:2f:ff:1d:fc:c5:d3:5e:7c:2e:8e:68:cb:
2c:9c:43:15:ed:91:8e:d2:23:d5:35:48:ba:c1:4b:
30:1d:4a:0a:d2:bb:1b:9a:99:e5:26:5f:d2:89:4e:
72:3d:4b:0d:a8:26:af:73:53:b6:32:fa:69:49:1d:
45:30:b5:f4:42:0d:39:12:dd:c8:da:b5:e9:61:9c:
13:9f:2c:cd:4b:ad:f1:8e:6b:cf:85:81:11:90:89:
62:52:50:34:31:96:c3:d2:d0:a2:01:15:3b:c8:fb:
f6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B8:CF:8B:29:5B:06:FC:5F:CE:19:FF:0A:D6:FE:16:D5:03:5D:A7
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:52:be:45:7f:2e:09:4e:f2:31:03:0a:41:10:7b:dc:3f:be:
78:63:7f:27:0d:09:8d:95:57:f9:f0:7b:43:a0:80:f1:d6:ce:
ee:d1:d6:e0:d2:24:7d:4d:48:ed:53:de:38:2e:85:1c:18:19:
da:8c:92:01:39:6d:a6:f4:b2:21:85:e1:80:ac:a3:17:48:eb:
52:35:9a:4d:22:4a:7f:da:5b:fd:a4:0e:74:78:90:23:13:74:
50:47:fa:3e:48:f3:16:fc:67:59:ab:0f:1a:6e:37:2d:23:9f:
48:55:1e:8f:2c:ee:85:cc:18:a9:45:01:ce:29:e2:bb:da:9e:
67:53:6c:d1:37:22:06:dc:5c:54:cd:f6:e8:c0:d9:1b:a9:f3:
59:41:2d:14:cc:9d:25:8d:47:75:3c:b1:2a:dd:24:1f:e1:fd:
33:c0:6f:e6:80:fc:27:49:8f:07:18:c3:0b:0f:43:4b:02:13:
9e:92:d0:b9:ee:89:d6:04:b1:2d:49:02:7a:1b:6b:8f:6c:23:
fb:7b:71:1b:d8:3e:2d:50:c3:33:8e:0e:65:e9:7e:37:e2:a6:
93:92:29:4d:ec:43:38:d4:2b:98:40:2d:61:7a:f3:ae:8d:f1:
4e:65:fe:32:8b:ad:c5:31:a0:77:35:3a:00:09:83:66:62:41:
47:11:af:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 20:52:19 2025 by rpki-client