Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
File: 2Znl1k5EsXM8YXNzN86CtKaUOkY.mft (raw, json)
Hash identifier: yu8EPQqouShf9foD509Mu/RDVSHVY6BYK065OImwl4U=
Subject key identifier: AB:C6:73:DD:75:D1:FE:AA:10:ED:35:A9:AA:1C:FF:8D:84:56:A1:AD
Authority key identifier: D9:99:E5:D6:4E:44:B1:73:3C:61:73:73:37:CE:82:B4:A6:94:3A:46
Certificate issuer: /CN=d999e5d64e44b1733c61737337ce82b4a6943a46
Certificate serial: 019749D6261AB397244C0A0191EA54E49991
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
Manifest number: 03BB
Signing time: Sat 07 Jun 2025 10:01:00 +0000
Manifest this update: Sat 07 Jun 2025 10:01:00 +0000
Manifest next update: Sun 08 Jun 2025 10:01:00 +0000
Files and hashes: 1: 2Znl1k5EsXM8YXNzN86CtKaUOkY.crl (hash: pCmCrJJk1HGc0ip/OvmIhDntJgIYmMhg2Uee+f4eIL4=)
2: xandp5YxydZR7wlTUWsPRookRQc.roa (hash: TvsdUKw2eDJNV/EQUTSOnGCjImCSLoPXA7kEvQkSjo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 10:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d6:26:1a:b3:97:24:4c:0a:01:91:ea:54:e4:99:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d999e5d64e44b1733c61737337ce82b4a6943a46
Validity
Not Before: Jun 7 10:01:00 2025 GMT
Not After : Jun 8 10:01:00 2025 GMT
Subject: CN=abc673dd75d1feaa10ed35a9aa1cff8d8456a1ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:97:bf:e3:d0:fc:81:0e:75:f4:df:74:dc:9f:
dd:52:f3:62:d4:5e:7c:cf:c0:c3:cd:72:57:bc:d8:
91:86:2d:71:f3:52:d9:d8:54:d9:7c:c3:1b:73:41:
83:4a:95:b5:45:0a:9e:32:23:2f:01:97:97:8a:53:
f9:6c:30:70:cc:a8:8e:de:a8:a3:bc:38:4c:fd:22:
91:49:94:d3:48:9c:bc:61:c2:71:6e:e7:b0:d7:02:
0c:c0:2a:8f:6a:a8:ce:8c:e7:91:51:a7:cd:2a:84:
2a:2e:58:90:72:1d:bb:be:e1:20:be:92:1c:b9:9a:
93:ae:14:2d:24:f1:cb:1e:23:e3:78:fd:e9:3c:b6:
eb:59:86:1a:05:a6:e5:2a:07:1b:01:2e:e2:c3:0c:
7a:b6:08:c1:4e:07:ef:2d:e3:19:7b:95:42:f4:a2:
6c:31:3d:0d:cb:2d:1f:bb:fc:0c:1e:be:ab:79:cb:
f9:57:31:0a:8c:c7:24:d6:f0:fe:83:36:53:86:0d:
90:7c:4c:cf:76:3d:13:ed:24:5b:7b:4e:14:36:7a:
02:0f:2c:bc:a4:0e:ab:74:89:cd:79:db:e5:79:53:
82:c2:01:8d:ce:8f:a1:7b:4d:5e:20:99:27:1b:20:
26:14:fc:ed:bf:c8:06:60:f2:06:a4:59:21:ca:0a:
63:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:C6:73:DD:75:D1:FE:AA:10:ED:35:A9:AA:1C:FF:8D:84:56:A1:AD
X509v3 Authority Key Identifier:
keyid:D9:99:E5:D6:4E:44:B1:73:3C:61:73:73:37:CE:82:B4:A6:94:3A:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:a5:af:b5:31:26:4f:17:00:c1:36:f4:de:1e:a8:ee:de:a0:
48:09:ad:0f:95:f7:74:9e:b7:5d:ff:29:b0:89:fa:15:7c:b7:
19:dc:18:b2:f0:99:73:31:17:63:d0:62:37:c5:27:85:1d:66:
31:4b:16:a7:a7:3a:bd:dd:30:3d:11:27:ce:37:e3:aa:42:8b:
60:7c:f7:ef:7a:94:b0:f7:50:fe:30:a2:9f:e5:f7:24:b7:1e:
a1:f3:81:5b:18:a1:75:22:22:84:db:94:46:65:4a:b2:aa:4e:
08:1b:7c:0a:08:2b:89:14:77:db:09:0f:48:ac:09:f8:7e:1d:
74:b5:d7:28:7e:85:38:57:63:18:72:4a:91:fc:8f:cc:f8:c7:
9b:c3:51:42:dc:8c:34:cb:76:76:87:3a:a2:a8:14:35:09:7f:
78:7c:24:29:04:06:44:fe:db:49:49:0c:65:f6:0a:90:e7:ee:
a5:ab:2f:ec:dd:3a:26:13:64:7d:73:f0:d5:9d:a7:0e:56:8d:
31:76:ba:98:6c:1e:81:d6:4f:1e:4c:4e:b6:88:02:8b:96:97:
6b:8a:06:29:fe:7c:65:d9:9c:31:69:f0:1c:10:c8:c8:3d:91:
b2:5d:7e:75:d1:45:1a:25:f9:4d:1d:24:16:70:1b:f8:9f:54:
89:cc:db:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:58:43 2025 by rpki-client