Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: 77FdEAW2tkHYIu2F/euICfCVXd1+h8wWzrWmYBsfKaQ=
Subject key identifier: 01:6D:C7:82:2F:0F:90:BF:F6:B6:0E:E2:19:57:36:A5:79:D5:53:D2
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 0197643A5F8656B1768B1C597F638E1293C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 158D
Signing time: Thu 12 Jun 2025 13:00:36 +0000
Manifest this update: Thu 12 Jun 2025 13:00:36 +0000
Manifest next update: Fri 13 Jun 2025 13:00:36 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: zI2oZwAffo4kfI/fGLd/lVAxVxQ0RE5w5Yczolz7nXc=)
2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=)
3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:3a:5f:86:56:b1:76:8b:1c:59:7f:63:8e:12:93:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Jun 12 13:00:36 2025 GMT
Not After : Jun 13 13:00:36 2025 GMT
Subject: CN=016dc7822f0f90bff6b60ee2195736a579d553d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c5:95:2c:3e:e7:ac:4b:fa:e7:6c:9e:ba:b5:
ad:4a:2d:40:01:ec:ce:eb:32:29:91:4c:9c:f2:55:
ae:52:2f:8e:24:4e:9d:65:77:de:01:5d:ce:b4:98:
f1:95:cb:80:6e:1f:1e:71:2e:fb:27:3d:ea:d2:fc:
b4:c8:26:c4:33:a4:3b:a4:6e:56:a6:34:1b:80:9f:
f2:68:c7:50:c0:7c:54:0f:b0:a1:52:f9:fe:e5:b6:
f1:1d:77:62:99:55:37:8a:dd:16:f7:f9:69:d8:1e:
eb:20:28:3b:41:3b:57:95:3d:3d:f8:ba:9b:9f:6a:
e7:47:27:bd:60:fc:96:ce:08:bf:57:60:16:70:83:
87:9f:cf:d8:c8:36:56:86:82:a4:d5:69:d4:7b:ed:
37:6f:d6:55:1a:78:02:30:31:03:2b:68:9f:66:0a:
1a:c9:c1:b2:27:5d:b1:50:8b:b0:68:47:20:8e:ca:
7d:b7:c1:0d:68:a7:30:2a:7a:1d:de:9a:fa:15:a6:
ce:b8:6e:70:c2:7f:b1:c9:6c:3e:d8:2e:e7:b1:3a:
fb:cb:87:b9:59:fb:30:50:1b:eb:ab:ff:36:00:14:
b7:6c:d6:b9:a5:d5:de:79:53:35:5c:85:65:82:0b:
8e:71:42:55:ab:5c:61:74:cf:71:c8:d2:c6:6c:13:
b9:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:6D:C7:82:2F:0F:90:BF:F6:B6:0E:E2:19:57:36:A5:79:D5:53:D2
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dc:f2:70:77:7f:bc:49:a5:b7:45:6c:59:9e:f7:f2:8c:62:1f:
b8:af:ad:ca:f9:87:17:24:5d:c4:5f:7a:ea:90:45:8d:1d:40:
6c:e4:a6:e0:42:c3:32:a5:80:1e:df:c2:cb:d5:6d:2b:fe:58:
31:e9:d6:1e:9c:d4:55:8f:d1:b9:a4:22:cb:21:0c:32:c3:44:
a3:87:bc:a6:01:c4:72:74:5f:9a:f4:0b:1a:78:00:77:94:d7:
d3:58:fc:b1:6d:32:c9:d4:b8:c8:6f:fb:6f:4b:e0:fe:b8:5b:
ba:95:34:cc:40:01:7b:e8:66:29:c4:67:e7:97:e1:95:df:a3:
01:0e:8e:81:e4:18:ad:f5:ae:5b:9d:b5:bd:9d:35:b6:12:d4:
98:7a:3b:4b:e4:79:00:61:5e:ac:eb:de:2c:c9:f0:7c:31:56:
ee:63:e8:fe:45:f8:30:8b:93:b2:79:50:bb:83:1c:35:47:ab:
ff:c5:d3:40:c0:61:f6:bd:00:c3:6a:24:c1:77:19:7f:12:1a:
42:39:20:13:85:ea:c6:8c:f0:2d:01:36:14:11:89:7a:fa:4c:
71:9b:d7:6c:f4:2a:bc:bf:f5:08:55:92:69:b8:fb:27:90:7c:
2e:da:3a:d6:0e:72:5e:9c:4c:f3:8e:19:52:c6:28:e8:fb:5d:
f3:37:f3:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 20:47:31 2025 by rpki-client