Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
File: 2pa1va-ygzLa_oR87RT3pfrUXmk.mft (raw, json)
Hash identifier: UsrflRy3wXgYGDZp+vogThtmZFUyfOICTR3UeiKEFmY=
Subject key identifier: 7B:C9:1C:7C:C9:EE:66:B4:2C:16:5B:00:67:E4:EB:38:C1:73:96:62
Authority key identifier: DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
Certificate issuer: /CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Certificate serial: 0197488D34A55C8426A5F9B19637006EAFCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 04:01:42 +0000
Manifest this update: Sat 07 Jun 2025 04:01:42 +0000
Manifest next update: Sun 08 Jun 2025 04:01:42 +0000
Files and hashes: 1: 2pa1va-ygzLa_oR87RT3pfrUXmk.crl (hash: p+8PIUm/guwxhQ4ln0JeToOy/kAC/5nlQDym63D4K10=)
2: 99kZ91L5k4nve2PYsWtipJThPHU.roa (hash: bVtLb94sDBWJmE1C3lJHiBUqgO9xT7zdCZpTZaX8mXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8d:34:a5:5c:84:26:a5:f9:b1:96:37:00:6e:af:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Validity
Not Before: Jun 7 04:01:42 2025 GMT
Not After : Jun 8 04:01:42 2025 GMT
Subject: CN=7bc91c7cc9ee66b42c165b0067e4eb38c1739662
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:5b:a3:8f:a7:6a:97:4f:f2:4a:8e:31:f4:46:
f7:ec:4c:d1:b2:ba:4d:ac:25:0e:7e:96:11:b2:5e:
46:4c:2d:a6:ef:1d:ce:37:1a:08:51:8d:2b:24:54:
53:89:1e:d6:7c:f4:d0:ab:4b:f1:cd:62:d7:f9:9f:
6a:84:96:22:0c:fd:d5:38:31:b8:cf:c5:b6:b3:00:
50:c0:00:71:8c:94:6d:15:92:d1:a1:c4:26:76:17:
ef:50:a7:9f:15:5d:e5:f9:fb:4a:64:4a:1c:52:df:
11:3b:78:6d:53:d0:13:df:e8:3d:1d:28:ab:d1:5e:
b7:26:ab:00:3a:75:e9:f6:ed:7c:27:b7:d8:67:fe:
50:54:f9:c7:0a:0c:91:9a:be:2d:56:50:01:68:53:
bd:10:09:d1:cf:90:5f:4b:c7:45:38:99:67:17:ab:
34:40:16:49:31:f1:95:37:b0:0c:c3:42:55:80:e3:
82:df:d6:b5:b6:b6:55:d0:c4:15:7d:55:83:ef:13:
34:a2:89:9c:e1:8e:04:96:21:b8:3f:e8:5e:5e:92:
31:d0:68:4e:04:70:e2:96:82:73:11:54:1e:50:69:
34:a0:76:2c:46:33:b7:77:ca:64:b7:4d:17:d8:f1:
dd:b8:25:fd:13:52:3d:ad:44:85:62:a3:2f:f6:fe:
78:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C9:1C:7C:C9:EE:66:B4:2C:16:5B:00:67:E4:EB:38:C1:73:96:62
X509v3 Authority Key Identifier:
keyid:DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:04:a8:7d:de:a6:5e:d8:b5:13:26:0f:f4:c9:62:15:24:42:
15:b8:a0:fd:2c:31:5f:4d:53:c4:51:4b:e8:4d:9d:0d:11:74:
e4:ca:96:41:c9:3d:e4:04:0b:de:c7:b3:28:9f:b3:8e:de:f4:
77:11:de:f4:04:42:fe:15:f4:6e:83:7d:49:1b:ae:db:9a:a0:
a0:26:59:b8:c2:e5:7f:ae:67:79:f4:ff:b8:57:86:79:c1:21:
15:1a:c1:19:cd:e5:7a:ee:35:38:f9:2f:c0:cb:5c:a3:58:04:
43:9f:b1:e1:60:8f:f1:9e:14:d9:f8:e6:a7:87:22:97:57:1c:
1b:07:33:3c:04:e3:15:a9:6b:6e:df:11:2d:83:e1:c6:e5:d5:
08:bb:39:4e:63:e1:02:d7:8f:a1:85:8e:03:69:7c:13:1f:d6:
4a:ec:6c:f6:12:86:68:3e:28:a1:11:93:d4:d1:35:e0:af:35:
4d:e4:30:fa:b1:9e:33:b6:4a:31:d4:0c:91:71:e5:11:f1:1a:
61:86:8d:20:66:27:56:6b:78:b5:d8:f6:5c:14:f8:ab:c2:20:
1f:50:a6:23:48:6f:4a:49:2c:82:ef:55:e8:d7:c6:3e:1a:cf:
af:db:39:1b:08:93:db:46:94:f4:f2:4d:f0:6f:4f:f2:fa:4b:
ba:b7:e2:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:34:40 2025 by rpki-client