Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: /l4lYGc0u4DYOtTfsBq1MzAga+adObb+deW3ChoZjk0=
Subject key identifier: E6:14:E1:27:44:D6:EE:CE:3D:7D:DF:F7:DD:74:B3:D8:CD:0F:2F:60
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 01975A925118B7F3A024BC36FBE51B02EB78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 1588
Signing time: Tue 10 Jun 2025 16:00:27 +0000
Manifest this update: Tue 10 Jun 2025 16:00:27 +0000
Manifest next update: Wed 11 Jun 2025 16:00:27 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: tLRo5MAIYFb4Gtlu3nx35TpSJq4CgmOdR3L4V5iTofc=)
2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=)
3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 14:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5a:92:51:18:b7:f3:a0:24:bc:36:fb:e5:1b:02:eb:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Jun 10 16:00:27 2025 GMT
Not After : Jun 11 16:00:27 2025 GMT
Subject: CN=e614e12744d6eece3d7ddff7dd74b3d8cd0f2f60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:25:6b:89:1b:76:a2:87:ec:67:1b:2e:ab:4c:
2d:06:79:7b:5c:94:ff:21:c2:4d:b1:a9:52:b0:50:
3b:f8:8d:8c:7e:49:cf:b8:36:2c:81:b7:10:b6:25:
f1:60:84:a0:fe:28:ed:4d:4e:cd:28:e4:1d:fb:57:
50:19:f3:de:0e:52:ab:c6:40:c9:da:d5:a3:55:19:
be:5d:dd:a1:8e:fd:67:44:39:82:29:15:63:a7:e7:
99:c1:c9:19:46:15:c1:1d:6d:ec:6c:bf:db:9f:92:
26:d7:f3:33:0c:29:d2:42:4b:03:b8:ef:66:b8:0f:
b9:88:5b:53:18:6e:4e:9c:01:53:4c:b9:1b:83:b4:
eb:20:d4:b4:29:31:d0:21:24:36:d9:c2:cc:8b:3a:
54:55:41:bd:1c:ba:9a:56:79:34:a9:dd:7d:9b:59:
45:35:0c:34:c0:53:df:e7:32:24:93:44:9d:99:b1:
ff:05:05:d8:78:7e:bb:55:c5:4a:ca:38:8c:a5:2c:
4b:09:8c:44:3a:61:74:fc:62:34:c6:b7:66:1e:b5:
c1:87:6a:3a:18:24:29:10:5f:24:88:6a:86:63:08:
75:a5:40:ba:32:ce:0f:1f:a3:ea:ad:05:eb:10:10:
22:d5:92:d5:ea:d6:4b:c5:ab:a1:24:be:3e:fe:e8:
34:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:14:E1:27:44:D6:EE:CE:3D:7D:DF:F7:DD:74:B3:D8:CD:0F:2F:60
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:b0:70:22:15:94:5d:d0:84:ac:7e:1f:3d:3b:82:3f:cd:70:
c5:d4:ab:9a:c3:4a:24:99:02:b4:4a:aa:a2:7a:90:7e:3d:92:
24:db:3f:e4:8f:a7:14:1a:d0:7c:73:d4:95:91:92:5f:5b:ce:
9c:e9:ae:a9:af:33:fc:62:6d:1f:da:e1:fd:3e:f5:35:c3:15:
fc:38:a1:01:1f:e0:4e:07:40:9b:3c:20:37:13:c2:63:77:1b:
78:5f:d2:37:30:5e:59:f6:10:b7:ce:9e:e9:5b:5b:37:18:1a:
95:31:38:7a:fa:d2:f7:9b:c9:44:9d:09:f0:8b:6d:49:a7:03:
dc:ee:0d:77:79:71:1f:3b:f5:99:eb:18:22:13:6c:02:8c:2d:
d2:d8:71:a3:61:6c:a2:aa:63:f7:4d:5c:f2:24:d6:8b:85:94:
77:c0:a8:00:e2:12:5c:9d:41:2d:f8:f2:33:35:94:bc:b0:ed:
67:7a:7d:84:ec:51:4f:a1:18:16:de:99:2a:fd:0c:d1:47:88:
bd:89:6e:8b:9d:95:81:18:1a:be:88:f2:36:5f:55:19:31:78:
ec:37:31:63:8e:67:5b:12:e9:1b:da:66:4b:bc:f9:54:38:ee:
36:32:25:6a:58:05:52:b2:b5:d7:55:d5:db:e2:89:88:9d:e1:
b3:55:08:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 21:11:46 2025 by rpki-client