Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
File: 2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft (raw, json)
Hash identifier: fGAsfG4GJzeXDGkBAQbryMNtR+61D7kUNNOeDBfuYEI=
Subject key identifier: A9:84:F7:9E:45:E0:BF:C7:C5:4A:A5:21:91:0A:10:F7:1B:B5:D1:A0
Authority key identifier: DA:F0:A3:9C:FA:DF:91:0F:6B:13:2A:D2:28:E6:06:56:18:87:A0:6C
Certificate issuer: /CN=daf0a39cfadf910f6b132ad228e606561887a06c
Certificate serial: 01974EFC6C93A36D2D145708FA90E0BB6AAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
Manifest number: 1586
Signing time: Sun 08 Jun 2025 10:00:55 +0000
Manifest this update: Sun 08 Jun 2025 10:00:55 +0000
Manifest next update: Mon 09 Jun 2025 10:00:55 +0000
Files and hashes: 1: 2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl (hash: Kd4q2vOQbLxrJdJ/Xd0OtGCuF5/ZJZM5a+LBjxNrgDc=)
2: bdqrLURz5G694Fm80xmKAo0IogU.roa (hash: hG0r7jG1QmA/uFg4gCQdR2alotLJA0SQybpT8Ey91vY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:fc:6c:93:a3:6d:2d:14:57:08:fa:90:e0:bb:6a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daf0a39cfadf910f6b132ad228e606561887a06c
Validity
Not Before: Jun 8 10:00:55 2025 GMT
Not After : Jun 9 10:00:55 2025 GMT
Subject: CN=a984f79e45e0bfc7c54aa521910a10f71bb5d1a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:cc:92:80:cd:ae:76:b1:13:84:29:5f:ef:23:
b8:ad:d8:cd:77:f9:ac:47:1b:72:a4:35:dd:61:46:
9e:b7:d6:ea:17:f8:09:d6:26:5c:a6:0f:67:61:8d:
29:a3:69:53:8b:04:db:dc:be:12:a4:f0:1b:02:9a:
2e:18:73:a2:3e:5a:48:16:aa:96:26:d2:91:fb:34:
4d:ef:26:cb:ab:88:46:cd:95:49:56:ee:67:14:03:
e7:a5:a0:06:97:92:09:fd:76:15:be:17:67:67:4d:
5d:6b:fd:ad:fd:34:6f:2d:0f:32:85:51:7a:9f:bd:
7f:b6:cb:ae:5c:dd:3e:72:e6:5c:97:01:9f:d1:22:
cb:8f:5c:f2:91:64:0e:ea:bf:50:91:a7:58:e8:97:
b5:6d:b1:ed:d8:72:6e:c9:3c:6d:9e:08:89:80:43:
bc:ba:a3:28:95:15:c4:ac:1d:58:8e:47:fa:3f:c2:
1f:78:d5:49:99:b7:4e:99:f2:2d:29:59:18:d0:94:
d8:80:e5:47:f7:bd:6c:46:61:14:12:93:a0:ea:4a:
13:54:a2:96:65:8f:dd:c4:69:4c:9d:b9:80:c1:d9:
c2:26:75:03:32:11:24:25:44:06:79:44:e2:b7:8b:
27:63:c1:4f:36:7c:f1:aa:1e:e2:ed:51:22:54:8e:
fb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:84:F7:9E:45:E0:BF:C7:C5:4A:A5:21:91:0A:10:F7:1B:B5:D1:A0
X509v3 Authority Key Identifier:
keyid:DA:F0:A3:9C:FA:DF:91:0F:6B:13:2A:D2:28:E6:06:56:18:87:A0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:25:9b:1b:ba:ba:4b:07:30:38:bb:74:64:21:c3:91:ae:72:
39:bd:90:d5:3f:13:78:6f:5b:75:5c:a4:f6:97:b9:51:7b:85:
67:9e:58:a4:e2:02:eb:3a:14:94:50:5a:61:0a:50:f5:b4:25:
4b:aa:4f:d1:e8:8e:06:93:b8:15:b4:81:2b:67:1f:2a:21:e1:
c4:5d:c3:b5:8f:81:d9:bd:a9:2d:fd:2e:c3:cc:91:b9:d6:d6:
0a:89:76:69:63:33:f5:96:02:47:10:c9:fd:68:c2:4d:02:c3:
94:49:95:61:89:01:5e:ae:e5:d8:9b:e1:ab:1a:34:e7:b6:d0:
57:d8:be:92:08:9d:dc:bd:40:23:d2:1d:f9:41:0f:60:e8:65:
e8:57:2b:b9:3c:47:63:7f:f0:e9:21:a7:9f:c9:69:9c:73:04:
2d:35:c3:ab:af:5c:57:e1:e7:4c:f2:b6:02:85:07:45:d3:30:
68:87:e3:a0:0d:0c:80:97:27:97:dd:82:8a:98:77:52:ac:7b:
f9:fb:07:19:a0:05:06:95:04:44:23:66:de:65:ad:f5:d0:78:
c0:6f:fa:20:c3:c9:81:79:4b:69:c6:1a:c5:d3:cf:29:fe:26:
f5:63:07:74:69:68:06:bf:83:66:b5:f6:a9:a6:4d:8d:09:36:
06:f9:1a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:44:26 2025 by rpki-client