Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
File: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft (raw, json)
Hash identifier: WVBnqVKkxtLA9DmP5WTdrQm4Edj4Ovwp6DX8i8EuNFQ=
Subject key identifier: 95:1B:DC:C3:F8:9D:F2:53:33:10:7E:7D:5E:D5:E0:55:24:DC:F7:EB
Authority key identifier: D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09
Certificate issuer: /CN=d90d2681514aefee9d3c86e1eae35736c84d1c09
Certificate serial: 019749D5BC0A0E89AAAB0306764DDE420671
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 10:00:33 +0000
Manifest this update: Sat 07 Jun 2025 10:00:33 +0000
Manifest next update: Sun 08 Jun 2025 10:00:33 +0000
Files and hashes: 1: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl (hash: GAjy3xPmEQIUyP7JILnV8xBSzLcRIZzPgEFod257YMQ=)
2: Y1iEUL6HkZgDZU0_OFEdoFw8lAQ.roa (hash: CDvGigjNlLt/aSYIESg4jn5aQHhCGPQhN6LUC2qBNmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d5:bc:0a:0e:89:aa:ab:03:06:76:4d:de:42:06:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90d2681514aefee9d3c86e1eae35736c84d1c09
Validity
Not Before: Jun 7 10:00:33 2025 GMT
Not After : Jun 8 10:00:33 2025 GMT
Subject: CN=951bdcc3f89df25333107e7d5ed5e05524dcf7eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:dd:06:fa:b9:59:8c:37:c7:0e:31:38:e1:db:
58:3b:db:f3:d2:1c:a9:7d:4a:07:00:1a:ee:7d:36:
7c:f6:17:c6:af:f0:e2:59:8f:c4:5c:1e:c1:a3:61:
a4:c6:44:27:d4:84:b4:0c:11:40:08:c0:da:1e:12:
a6:79:fe:2a:02:b0:c8:6d:38:c8:82:7f:07:9e:f7:
a8:9e:a5:dc:4a:ff:3e:50:63:4d:64:85:59:9a:43:
94:e4:28:41:a6:ea:36:15:c6:c1:0b:aa:96:7b:a0:
9e:c7:6d:e5:47:8a:14:72:11:0f:3a:01:d1:3a:47:
09:86:47:99:e9:f8:88:bc:de:80:37:a4:3a:fc:a7:
83:5a:bd:f9:9e:af:30:c7:3c:3f:7f:ca:f1:04:62:
72:d6:18:69:5d:2c:4a:0a:a0:33:22:e8:64:74:e3:
f1:03:e1:f8:07:c0:17:91:47:d7:61:ed:a8:c7:e9:
65:5d:cf:58:7e:15:12:8d:ab:e1:1d:ef:eb:46:f6:
3b:7c:9e:81:98:68:f1:e3:06:e2:48:cb:1c:65:f3:
80:a5:62:75:c0:af:7a:fb:df:ea:e8:1b:f1:0b:fc:
54:15:3c:50:71:a7:b7:69:af:ef:75:86:61:79:1c:
8c:a9:06:cd:ee:70:53:d9:a1:28:61:ae:a5:72:3a:
93:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:1B:DC:C3:F8:9D:F2:53:33:10:7E:7D:5E:D5:E0:55:24:DC:F7:EB
X509v3 Authority Key Identifier:
keyid:D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:b6:a2:32:2f:60:47:99:6d:f9:50:b1:78:b5:5d:0c:ad:cb:
7f:25:2e:f3:8e:0e:b2:94:f0:78:e9:74:6c:7e:82:34:61:41:
e5:3c:8f:ae:ab:12:69:f1:a5:b7:4f:ad:ee:0f:70:94:c6:ca:
48:86:44:98:d6:ce:4e:46:4a:42:41:b3:ed:10:f5:ee:a0:02:
c3:73:88:77:47:f2:00:65:60:66:3e:d6:bb:31:cd:1b:c5:80:
e0:fc:04:a3:c2:86:12:f0:c5:2b:09:d5:b3:29:b3:72:de:79:
9d:b4:fd:56:95:b7:e0:79:8a:60:20:b2:aa:6d:69:04:50:9e:
25:85:b3:7e:d6:95:c0:83:4e:83:71:70:d2:89:fe:bf:1e:85:
90:de:94:43:ce:cf:82:d4:09:4f:a9:67:db:f3:96:f9:25:a3:
e3:d4:c5:24:02:f1:bb:e4:1f:3f:2a:aa:c3:30:b4:6c:f7:eb:
4a:0f:f7:f2:63:3d:a4:2b:3f:27:38:bf:43:1f:4b:f7:3e:98:
fc:00:b3:eb:0f:f9:92:2c:37:55:a8:82:6f:e4:7e:3a:86:ea:
81:1f:e8:97:b4:24:7c:73:dd:2f:74:8c:e7:52:de:67:ab:09:
f5:25:b0:2b:94:6a:6c:f7:1f:20:a1:04:0c:25:3f:5a:6b:70:
eb:80:39:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:16:09 2025 by rpki-client