Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
File: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft (raw, json)
Hash identifier: B9l0MAzUhly9AMQInSEBcrRy/lGMCyt4ltEEIKv4hk8=
Subject key identifier: E3:E8:D1:7C:27:E4:F8:F4:12:03:70:EE:3A:6C:E6:3E:8D:E3:62:AD
Authority key identifier: D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
Certificate issuer: /CN=d908722a7555dd1621dd6a62209fa8da52942999
Certificate serial: 01974EFC330E91680FA794CCCD37D3E4905A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
Manifest number: 1409
Signing time: Sun 08 Jun 2025 10:00:40 +0000
Manifest this update: Sun 08 Jun 2025 10:00:40 +0000
Manifest next update: Mon 09 Jun 2025 10:00:40 +0000
Files and hashes: 1: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl (hash: r7gY+2bvp7UXu4MJYAJyiZF6kMCcBBMWHbaxMnKjC3g=)
2: Y5hh8AgGKAUf_2S15Xwk_892p60.roa (hash: baZuJeVmztFazA/spLlePhpdINyXpI1DJgHdXLAL5/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:fc:33:0e:91:68:0f:a7:94:cc:cd:37:d3:e4:90:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d908722a7555dd1621dd6a62209fa8da52942999
Validity
Not Before: Jun 8 10:00:40 2025 GMT
Not After : Jun 9 10:00:40 2025 GMT
Subject: CN=e3e8d17c27e4f8f4120370ee3a6ce63e8de362ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5e:78:41:d9:35:00:5d:d3:a2:89:25:45:ae:
10:70:a9:cc:af:ae:6a:aa:99:07:e3:c5:cb:7f:22:
a1:77:76:3e:08:00:45:4e:79:e9:5b:dc:03:0d:a6:
3f:c2:7a:42:e2:39:b2:5e:cd:a6:c3:2e:3b:e8:be:
10:b4:03:24:89:ef:34:71:f3:26:b6:e6:fb:16:5e:
9a:6b:7a:09:86:dd:65:be:8c:80:00:8c:5a:c4:ee:
48:d3:ed:06:8f:45:99:c5:09:01:70:5e:b7:a6:39:
c3:41:4f:6f:41:a2:c7:46:54:19:51:a8:4b:4c:e1:
d2:f2:a0:c6:a7:21:ac:b3:e0:49:a4:28:5d:b0:39:
25:f6:1b:69:b2:04:41:24:12:c4:b5:e5:2b:65:1c:
cf:a6:b1:24:72:45:84:4c:ef:77:5b:75:dd:12:f3:
b7:fa:2c:63:63:a5:0c:75:b1:da:20:9b:3e:f5:25:
8c:3c:e3:0a:56:b9:b5:3f:49:68:36:1c:2a:e3:00:
ae:a3:7e:ad:7c:48:09:d2:09:d9:19:b6:77:fc:1a:
07:be:7e:86:59:53:7f:68:f9:69:f2:e9:bc:3f:f6:
e9:12:4d:2c:47:1d:4c:f2:87:a3:fd:60:87:5c:2b:
25:af:b2:6e:e3:4e:79:65:00:b6:59:a1:bc:bf:d6:
a3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E8:D1:7C:27:E4:F8:F4:12:03:70:EE:3A:6C:E6:3E:8D:E3:62:AD
X509v3 Authority Key Identifier:
keyid:D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:0b:ad:3e:68:ce:cb:fe:c4:99:ee:3f:00:74:e6:5e:01:db:
ca:58:81:37:ae:1b:8e:41:9c:72:4a:05:50:5b:35:44:37:fb:
0c:0a:d7:ef:b3:9d:75:60:15:99:f1:22:66:91:64:75:15:1a:
e1:f5:58:e9:b9:6e:61:01:bd:7e:4c:33:cd:89:12:65:b7:e2:
0d:2c:28:69:2a:e0:45:9d:cc:13:be:4a:4d:ee:b4:50:85:d3:
b1:53:ee:46:b7:db:86:1e:8e:72:26:e5:3b:df:50:e2:40:26:
8b:d6:12:44:0b:5a:d7:70:a4:8b:e3:b6:fd:43:3e:90:a0:45:
74:9c:49:80:d8:1c:35:05:4f:55:95:8f:dc:1f:d9:cc:d9:1d:
65:ca:d0:bb:1c:e0:2f:72:0b:c1:d2:f8:6f:03:a2:bc:6f:1e:
e3:cd:a7:b5:64:d9:7e:dd:f4:cf:87:2e:33:90:70:16:d2:fc:
88:aa:e5:84:b7:ef:3c:5b:60:1b:1e:ef:49:57:a6:b5:17:dd:
ab:fe:3a:86:0a:42:11:02:93:27:34:06:81:4b:8f:4a:ee:ab:
dc:e3:eb:f0:59:28:9d:a9:46:6c:22:80:9f:a9:9c:6b:8f:d2:
5f:6b:15:5b:88:34:ab:bb:c3:cf:9e:75:5d:e3:29:d6:13:7f:
ea:16:a6:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 12:53:18 2025 by rpki-client