Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
File: 2nGl-6KA1tAY7MOp1-WMPGEeav0.mft (raw, json)
Hash identifier: cejFXNT7ytbqqyDSTE/SrDL9z2V3z/X9tPs/OQM7UeI=
Subject key identifier: 76:29:DC:45:25:1C:1D:05:F6:8A:79:52:5E:B2:05:BD:53:21:9F:35
Authority key identifier: DA:71:A5:FB:A2:80:D6:D0:18:EC:C3:A9:D7:E5:8C:3C:61:1E:6A:FD
Certificate issuer: /CN=da71a5fba280d6d018ecc3a9d7e58c3c611e6afd
Certificate serial: 0197500F1539A58CED4B7169EE6D68442F0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nGl-6KA1tAY7MOp1-WMPGEeav0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
Manifest number: 157C
Signing time: Sun 08 Jun 2025 15:00:55 +0000
Manifest this update: Sun 08 Jun 2025 15:00:55 +0000
Manifest next update: Mon 09 Jun 2025 15:00:55 +0000
Files and hashes: 1: 2nGl-6KA1tAY7MOp1-WMPGEeav0.crl (hash: Dn6UTxIl3En7E9NSsoU9xWjQHLe5br3khy3ujCADBrE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nGl-6KA1tAY7MOp1-WMPGEeav0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 15:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:0f:15:39:a5:8c:ed:4b:71:69:ee:6d:68:44:2f:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da71a5fba280d6d018ecc3a9d7e58c3c611e6afd
Validity
Not Before: Jun 8 15:00:55 2025 GMT
Not After : Jun 9 15:00:55 2025 GMT
Subject: CN=7629dc45251c1d05f68a79525eb205bd53219f35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f4:8b:ea:92:b2:e8:60:86:4e:dd:aa:ca:dd:
91:31:90:e2:0f:f5:29:b6:2d:5e:97:6e:29:9d:5b:
d5:c4:f0:d8:fd:ec:72:fa:77:7a:76:9d:c5:7c:93:
fe:86:fa:ca:25:5e:3c:39:f6:45:07:b6:ad:e0:d9:
b5:0d:36:4b:12:ee:24:39:cd:6d:88:e0:71:e1:b1:
10:d4:31:91:dd:1e:cb:72:9c:6a:4e:cc:64:9f:db:
88:df:18:9d:1f:bf:20:fd:ba:82:ed:49:23:6a:1e:
67:37:f3:15:22:55:7e:ca:d8:10:76:30:cf:1c:25:
e3:c1:e4:fe:b2:28:e3:9b:ee:3e:c3:8a:6d:6c:f4:
81:76:0c:50:d3:68:8d:b4:ed:07:88:05:8b:44:48:
67:dd:4c:c5:60:c5:1e:e1:01:44:24:fa:20:21:d7:
ab:b4:51:be:03:c4:e4:08:ab:44:07:33:c1:2c:85:
4c:70:d4:fd:24:7b:03:70:5d:e1:d4:0d:b5:6f:d1:
fd:54:c2:ab:0d:bf:7d:22:b7:32:ce:97:21:38:f9:
24:5a:c0:75:82:b2:5c:d5:04:27:4b:a6:ec:fe:79:
8d:e8:11:7b:8b:8a:cd:8e:3e:3d:c9:c9:9f:b9:81:
b7:da:15:8c:05:fd:09:84:ae:ca:d0:1a:e1:9b:fd:
ea:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:29:DC:45:25:1C:1D:05:F6:8A:79:52:5E:B2:05:BD:53:21:9F:35
X509v3 Authority Key Identifier:
keyid:DA:71:A5:FB:A2:80:D6:D0:18:EC:C3:A9:D7:E5:8C:3C:61:1E:6A:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nGl-6KA1tAY7MOp1-WMPGEeav0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:06:f3:65:fe:20:2d:6a:08:a5:45:b7:0a:61:a3:dd:5d:b0:
8b:cf:53:e8:53:c4:1d:cf:95:15:35:ff:c9:e9:8b:ac:98:84:
76:c3:6e:8e:cc:fa:2c:ac:8a:69:76:66:86:89:82:de:b5:ef:
a1:0f:96:ba:d0:31:09:ed:db:57:ab:bf:1c:1b:dd:57:f9:46:
03:09:da:52:19:73:fd:43:02:79:25:45:1b:9e:9b:7f:8e:d7:
d9:c5:c7:f2:5c:e0:64:4b:09:2b:7f:81:07:8f:c9:54:38:7d:
18:b2:a5:7d:5d:be:f2:8a:6f:1c:19:40:61:94:31:c3:45:8b:
64:1c:7a:2a:0f:1a:6c:80:3a:16:61:e4:e8:5a:b6:32:ff:3c:
2e:f5:ea:39:c8:a4:7f:56:c6:c5:d0:c7:f1:0d:eb:b1:72:c7:
48:1c:df:50:44:00:f2:2f:c6:a9:a9:e0:2e:8d:4b:0c:8c:d8:
3c:84:a7:58:49:1b:85:c7:d1:e0:6c:48:ef:c3:bb:93:dd:de:
96:ba:ab:91:0c:e0:65:5e:f1:93:cd:21:65:28:8e:ff:f8:a7:
d2:3b:38:b4:91:f8:ec:e8:a3:34:d6:9c:b0:8b:2b:3f:61:15:
d0:d4:e5:40:62:ca:55:49:c6:5e:34:7a:30:76:e9:6e:07:30:
50:43:a9:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:34:36 2025 by rpki-client