Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft
File: 2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft (raw, json)
Hash identifier: fDyMIUMiMzv/85H3o5iYJyM8FYSK9Dn6o61rK3pbitw=
Subject key identifier: 6A:B7:51:18:BD:E1:34:EF:D8:74:DF:47:F5:1B:8C:0E:EB:E9:24:A4
Authority key identifier: D8:18:43:03:21:64:E0:B6:2E:D6:DA:7C:67:55:7B:F4:68:95:D0:F0
Certificate issuer: /CN=d81843032164e0b62ed6da7c67557bf46895d0f0
Certificate serial: 0197504682CB36DF953FFB235802ADE20A4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BhDAyFk4LYu1tp8Z1V79GiV0PA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft
Manifest number: 0686
Signing time: Sun 08 Jun 2025 16:01:27 +0000
Manifest this update: Sun 08 Jun 2025 16:01:27 +0000
Manifest next update: Mon 09 Jun 2025 16:01:27 +0000
Files and hashes: 1: 2BhDAyFk4LYu1tp8Z1V79GiV0PA.crl (hash: HYmwNsH6A7ZLkqSgnxytKkMJIfa+RrtwMj/UzipSqbY=)
2: VyRcdQegnHw4kuW58Uqx25GobPA.roa (hash: lC++tHS3x+n6tHU4vit/ETgEcE0Z4ZJ+bg8pO+7AhEg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BhDAyFk4LYu1tp8Z1V79GiV0PA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 16:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:46:82:cb:36:df:95:3f:fb:23:58:02:ad:e2:0a:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d81843032164e0b62ed6da7c67557bf46895d0f0
Validity
Not Before: Jun 8 16:01:27 2025 GMT
Not After : Jun 9 16:01:27 2025 GMT
Subject: CN=6ab75118bde134efd874df47f51b8c0eebe924a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f4:7e:1e:9d:74:93:3e:6f:cb:ed:66:4e:80:
54:95:e5:0c:a0:d4:1d:61:40:f4:9f:5e:b1:f4:7d:
de:15:0b:98:2b:42:f9:6d:c4:55:53:f2:8a:9e:c8:
88:16:b5:70:06:16:79:a6:f8:be:bc:5c:11:fc:a4:
53:f7:49:a4:2e:1d:d5:31:3c:d5:4e:5a:14:5b:99:
68:22:8f:bd:cc:19:6c:3e:62:81:ad:5f:ca:9b:5a:
f6:31:65:b5:bb:e6:66:c6:d4:2e:8a:6d:9a:12:94:
cb:32:21:21:11:a3:cd:c8:f9:ba:3f:e4:c8:e4:4d:
cb:c5:ca:ac:34:b6:98:c2:69:2e:aa:d4:0c:96:51:
c8:c8:38:cb:23:6f:ba:d3:77:91:74:79:11:39:e4:
4b:35:75:76:10:2e:aa:74:b3:fb:0e:37:9f:7e:e0:
6d:22:db:b3:c5:b3:a9:18:b1:17:d6:f1:22:fe:41:
78:dc:94:03:a3:ce:56:42:ad:02:1a:d3:3a:6a:23:
ec:73:48:5f:39:39:6b:4b:91:cb:41:51:8a:e9:56:
d0:67:d4:be:6e:c5:70:5c:b8:91:b6:46:7a:bd:7c:
bc:f7:0d:4d:c7:4d:2e:7a:ab:f1:c0:6f:01:68:b4:
b9:d3:f3:99:02:45:17:31:aa:22:82:3e:e7:ea:e2:
fa:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B7:51:18:BD:E1:34:EF:D8:74:DF:47:F5:1B:8C:0E:EB:E9:24:A4
X509v3 Authority Key Identifier:
keyid:D8:18:43:03:21:64:E0:B6:2E:D6:DA:7C:67:55:7B:F4:68:95:D0:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BhDAyFk4LYu1tp8Z1V79GiV0PA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/5c1eec-3700-49bb-bfee-65d373ab573f/1/2BhDAyFk4LYu1tp8Z1V79GiV0PA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:3e:d5:a2:74:fc:4b:fd:ff:aa:d3:cf:0f:9c:51:56:8a:4e:
2e:16:96:38:25:34:a4:b9:e0:66:22:18:7a:c2:70:55:0f:24:
da:07:db:e7:c4:82:6a:93:4b:0f:42:36:6a:1c:c2:5e:a0:9f:
d6:6a:2c:85:c1:f9:ff:dd:6f:c3:68:e5:c6:0d:2d:90:c7:68:
81:03:4f:3b:8d:f8:06:73:f5:e1:fc:31:85:ca:7f:e7:80:e5:
88:b1:35:3c:d4:ed:d2:2b:86:84:03:e7:db:d0:11:2a:f9:b1:
a4:57:dc:de:70:3c:9d:5a:7e:de:67:5a:a9:51:f8:20:d1:f9:
07:c2:78:ae:a2:46:6e:aa:d7:65:ad:a1:16:71:33:08:16:66:
48:75:51:fc:b5:90:74:1f:a2:26:ce:5e:9d:3a:4c:93:8d:66:
3d:5a:4f:87:fa:0c:d8:ed:55:d0:35:ee:14:96:e4:e6:67:d0:
b4:6a:5f:57:40:90:29:d0:5b:7c:9a:ae:50:ae:50:8b:9a:e0:
8e:4c:a3:08:e3:60:e5:20:0d:ca:88:e1:96:94:92:8a:5d:e0:
8e:41:d8:3d:60:b0:9d:29:d2:54:73:79:b8:23:f4:9f:08:86:
6a:d1:b2:de:48:70:d3:5c:23:6f:9d:91:26:55:08:46:53:34:
62:1d:70:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:27:02 2025 by rpki-client