Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: U8JV/sxWsXz/9VUaBUQSGciAL5B0O51Ia9k84f5VuwQ=
Subject key identifier: BD:D8:18:BA:EA:FD:CE:2C:C0:52:7F:CF:AB:68:98:C7:AE:6C:34:AD
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 019756B586A304F3B2F6167C5BD6A57BC365
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 1586
Signing time: Mon 09 Jun 2025 22:00:26 +0000
Manifest this update: Mon 09 Jun 2025 22:00:26 +0000
Manifest next update: Tue 10 Jun 2025 22:00:26 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: 3g5Xy1iZXHNFNnQ5Jrf6qqSdOF4aO34GRYxzlWXzZqs=)
2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=)
3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 22:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:56:b5:86:a3:04:f3:b2:f6:16:7c:5b:d6:a5:7b:c3:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Jun 9 22:00:26 2025 GMT
Not After : Jun 10 22:00:26 2025 GMT
Subject: CN=bdd818baeafdce2cc0527fcfab6898c7ae6c34ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:26:66:c3:8d:c4:67:7c:8c:a1:b0:ad:a2:1b:
d6:9c:5f:d6:ba:4c:7e:97:75:28:66:5a:d2:96:db:
32:47:3b:9f:92:bb:44:47:c4:5d:8c:55:59:1e:b0:
79:07:9a:c0:67:ed:59:2b:e3:4c:b0:e7:78:e5:24:
45:dd:90:b8:90:a3:03:e8:42:67:90:bc:c1:ad:4d:
b7:10:bf:d8:15:46:d7:d8:c4:8c:34:b4:0a:75:1e:
90:5f:31:90:f4:5c:2b:31:4f:27:c6:a5:5b:aa:74:
3d:44:0e:e1:5b:c9:95:7d:f9:28:17:76:85:2b:bc:
2b:2d:db:24:0f:73:d4:b0:ab:ae:f6:72:d3:ad:3b:
cb:f3:de:6f:bb:8e:a2:8b:f9:62:e5:23:72:9c:8f:
f9:f7:1a:fe:f8:e1:d4:3d:c8:ef:36:ec:c0:27:0c:
24:b8:3d:14:8f:7f:38:14:56:2d:be:90:fc:b8:f1:
a0:10:ae:d9:16:58:5c:62:ac:2e:55:1a:f5:d2:5e:
3b:f4:fb:e1:a1:d7:66:95:8b:8f:75:e7:a2:bb:6d:
75:0a:b2:d1:f0:ae:b0:30:e8:0a:dc:7f:db:06:e8:
50:6e:2e:43:8b:e5:d6:38:be:03:9f:a4:9a:b0:fe:
67:ce:aa:83:dc:17:a9:3c:a1:9f:ad:5a:86:3f:11:
f0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D8:18:BA:EA:FD:CE:2C:C0:52:7F:CF:AB:68:98:C7:AE:6C:34:AD
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:3b:dc:ae:3a:94:52:7e:c0:2d:15:99:e9:f9:b6:6f:d0:0d:
b6:14:af:fb:29:4d:c0:72:26:22:a4:38:6d:bc:e1:ad:4f:a1:
cc:7e:45:fa:c2:ff:e9:87:6e:b9:99:d7:15:3b:37:40:a6:e5:
62:70:ad:8f:2e:94:cc:d6:ba:c6:b7:57:13:e5:ad:2a:72:51:
87:0e:19:59:27:48:ad:17:05:ee:0f:a2:e3:a7:ff:0d:ae:8b:
d4:78:9a:13:02:91:40:65:f6:ba:3c:17:7d:c3:e0:8f:ba:14:
33:d6:25:8a:38:ab:4a:21:47:3e:84:64:9a:e0:38:51:56:3f:
45:c8:69:43:0d:bb:61:ef:88:27:a6:fc:65:db:28:80:91:a2:
39:0f:eb:97:73:4a:76:e2:2d:82:77:7b:22:35:26:37:9f:2a:
52:40:37:6c:cc:24:2b:03:d7:c1:a2:53:89:db:c1:a1:2d:f6:
91:59:16:9b:2f:de:25:cf:8c:d1:1b:e2:c1:1e:e0:41:94:57:
4c:fd:2c:29:11:fe:59:40:28:c3:2c:04:c9:3c:39:36:c7:19:
34:cb:64:73:b3:97:8b:37:5e:62:3d:35:3c:25:9b:27:ae:35:
e5:c5:b8:90:84:2d:08:77:83:0e:6b:a0:62:5c:f8:c2:98:78:
f9:aa:c3:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 07:25:17 2025 by rpki-client