Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
File: 2YtaX7E4aD0ajMcBn3iXC65ngig.mft (raw, json)
Hash identifier: uwSFnEQn3HHzVQc2mjvJAA2TR7ZLKaxHilvinsHV+5k=
Subject key identifier: EA:95:5B:39:4A:32:52:BD:92:0C:D6:EB:DF:AA:56:AD:C5:22:91:2B
Authority key identifier: D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
Certificate issuer: /CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Certificate serial: 01974B8D7A3A1A064054CDBB2D043FB9FE3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
Manifest number: 0EA7
Signing time: Sat 07 Jun 2025 18:00:52 +0000
Manifest this update: Sat 07 Jun 2025 18:00:52 +0000
Manifest next update: Sun 08 Jun 2025 18:00:52 +0000
Files and hashes: 1: 2YtaX7E4aD0ajMcBn3iXC65ngig.crl (hash: 0AqJMJBHKcotSxG215WeDt1FaT1Rl62QHK9UerDrJnU=)
2: pGBMbGUVmfmMQKR1-BVF--sKK7U.roa (hash: ayj/a/EtllFNMGD1HzcA6KglHzS5bxHd+NVb8RRWcAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:7a:3a:1a:06:40:54:cd:bb:2d:04:3f:b9:fe:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Validity
Not Before: Jun 7 18:00:52 2025 GMT
Not After : Jun 8 18:00:52 2025 GMT
Subject: CN=ea955b394a3252bd920cd6ebdfaa56adc522912b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4e:61:ad:4e:1e:da:72:4a:a8:98:64:c5:be:
6a:95:47:e4:23:28:e9:63:c7:93:10:bb:1c:17:07:
23:f1:83:95:f1:db:ec:53:71:28:3e:e7:77:a7:75:
f5:c0:8c:6b:3d:b3:e8:3d:94:30:3f:59:09:53:aa:
67:04:7a:7f:7f:f1:78:ba:0d:ff:2a:04:69:62:14:
3f:ea:83:89:ac:54:a4:11:98:9b:fd:e3:75:58:5a:
33:47:f3:5c:71:d6:d4:4f:27:01:91:38:3e:fd:7d:
c9:eb:52:a8:d0:54:5d:22:1c:cd:69:2e:88:83:43:
1b:39:67:57:78:74:f9:b3:72:09:92:fa:e8:54:24:
de:b5:e2:e0:a0:3d:91:b5:94:82:9c:03:c0:e4:f1:
a6:8c:2f:f0:12:45:d3:bb:56:8d:79:17:d7:00:6c:
c4:ad:65:09:04:69:fa:72:67:07:d9:44:23:2f:52:
45:ed:48:0b:e8:8e:43:6b:63:76:51:02:f1:39:8d:
40:0d:98:a7:17:52:68:04:10:5b:80:13:c6:cd:14:
68:80:d1:dd:36:f6:a7:29:bb:76:bd:82:5b:5c:b7:
cb:66:0a:da:1b:06:1c:fb:c5:62:2b:a6:f4:40:fa:
8b:de:fa:e5:6a:ad:d5:b4:82:25:3e:c0:d1:1f:62:
9f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:95:5B:39:4A:32:52:BD:92:0C:D6:EB:DF:AA:56:AD:C5:22:91:2B
X509v3 Authority Key Identifier:
keyid:D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:55:d2:9d:a2:ad:54:d7:ad:7a:7b:01:1b:da:04:3b:f0:71:
fe:28:9f:12:b7:ac:13:a3:b0:74:2f:5b:cf:ff:9b:43:1e:c1:
99:c9:ba:b1:04:10:22:1f:46:04:8e:65:61:03:58:84:5f:92:
c2:5c:34:24:73:0f:02:ec:d7:a6:33:18:f8:9c:1b:34:9c:bf:
b9:b8:30:54:f2:d8:6c:44:f4:9c:52:01:ba:b6:97:ec:98:32:
77:5e:d9:b5:80:b3:59:a8:38:df:de:fd:7a:57:4e:97:e0:64:
c1:a8:ed:73:6d:56:a3:1c:ca:f6:14:1f:b2:9f:2d:0d:b1:6e:
ba:13:f4:c2:90:68:74:5d:57:79:9f:c5:bd:4e:55:fa:2a:95:
87:55:4f:c2:94:0e:9d:d0:ac:f9:a7:ee:d2:c2:e7:ae:65:d5:
58:82:c1:1b:e5:09:b9:16:af:05:ef:82:0a:9a:74:f3:92:20:
86:44:00:7a:41:7c:38:52:9e:32:ca:44:d7:6a:d8:58:7d:f4:
b4:e9:32:32:44:4d:a5:58:c2:5c:98:97:f3:e3:79:ca:a2:ac:
db:ef:39:88:2f:2f:40:28:7f:1f:19:05:5f:1e:20:5e:ba:15:
d5:fe:25:24:5b:90:b1:d5:c5:5d:04:16:a4:d7:90:0a:76:2a:
24:fc:bc:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:00:26 2025 by rpki-client