
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: pfXoao6uyna3DhXoKFqJ29gR+8Gb0w0e7agt4fwmyAc=
Subject key identifier: 4D:20:AB:6E:54:66:B2:B5:7B:D7:BC:F7:70:2C:1D:80:06:AF:25:3F
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 0197624BD97758D0EFB43B5F5286CA1C3CCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 158C
Signing time: Thu 12 Jun 2025 04:00:27 +0000
Manifest this update: Thu 12 Jun 2025 04:00:27 +0000
Manifest next update: Fri 13 Jun 2025 04:00:27 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: 7cPYNUJkEIZ07fqqzYbg6O597t808uf/K1TVZzYFWJ0=)
2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=)
3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 04:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:4b:d9:77:58:d0:ef:b4:3b:5f:52:86:ca:1c:3c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Jun 12 04:00:27 2025 GMT
Not After : Jun 13 04:00:27 2025 GMT
Subject: CN=4d20ab6e5466b2b57bd7bcf7702c1d8006af253f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d5:35:c1:b3:85:dd:c4:c7:08:69:c3:fc:33:
da:87:4a:c9:4e:b3:48:63:16:11:6e:98:7d:59:38:
d6:88:20:10:8f:1d:fd:be:e9:51:e5:9f:b5:43:bc:
10:0b:af:23:c0:8a:6a:c4:ba:26:0d:10:ef:90:d4:
f9:b3:7b:e5:b2:95:d8:b9:30:02:9f:54:bf:ba:e7:
24:73:68:34:85:6b:6a:94:aa:c5:57:c8:b0:fb:27:
ba:10:83:fe:ea:69:46:06:3e:cc:a3:b7:07:35:43:
6e:a1:de:68:c5:1c:3d:87:5d:ee:51:9e:b1:0f:3b:
09:bf:dc:f9:f2:ca:8c:cd:88:84:cc:57:0d:0f:c7:
4e:9c:ea:a9:09:c5:90:68:4c:f8:a8:80:f4:bd:96:
79:85:e0:27:ea:08:06:7f:b5:64:af:99:dd:4b:3e:
ff:66:7c:49:d7:87:60:f9:d8:7b:da:01:f5:c6:09:
67:bd:8f:8d:6a:0f:ae:dd:cd:14:a6:8c:73:77:fe:
9f:89:1f:fd:96:83:f4:82:c5:a7:05:aa:48:49:78:
e3:a8:88:87:d8:30:c2:45:90:67:de:9c:c4:ce:87:
62:e7:17:94:18:d2:dd:bc:91:04:b1:09:81:a5:5b:
ee:90:60:ca:29:72:54:5b:5f:8d:71:ff:7d:88:e5:
1f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:20:AB:6E:54:66:B2:B5:7B:D7:BC:F7:70:2C:1D:80:06:AF:25:3F
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:2e:da:4f:33:24:d3:1f:fb:d4:94:9e:59:97:8c:b7:2c:11:
2d:7b:49:89:4a:2d:74:d4:0d:a4:29:29:19:33:fd:86:7d:ad:
fe:02:32:84:b2:c8:ef:ed:09:5d:7c:d4:cd:e6:22:f5:c3:d8:
cc:01:ef:ae:55:1a:ce:d5:62:d1:02:00:e5:12:5b:cc:11:22:
7b:56:db:d5:47:0c:28:d0:70:68:18:43:c1:73:fb:f4:44:dc:
81:7c:fb:b3:43:a0:b8:9a:b2:08:b7:e3:ac:8a:3b:dc:92:ad:
ad:23:34:76:eb:19:de:95:b6:73:94:93:02:bd:d9:fa:51:a0:
f8:e8:1b:21:00:73:a9:3c:42:38:f0:7e:37:8b:e3:56:73:c2:
2d:9a:4b:59:96:1f:3d:b5:c2:1b:a2:3e:7a:4b:b7:46:1e:51:
4b:8d:fa:f6:bd:2a:d9:84:a6:c3:78:3c:88:6f:30:69:c2:5a:
9a:56:a3:ab:fd:63:14:8e:7f:26:63:dc:8a:cb:8a:52:62:67:
b7:0f:d5:20:21:5b:e5:fa:28:93:c4:77:27:23:0a:b7:e8:f1:
0b:04:a6:88:86:ba:71:16:76:1a:dd:44:6c:9d:35:93:31:56:
aa:ec:2f:7d:bf:96:eb:c6:c6:b1:64:3e:37:c8:00:1c:f2:e4:
71:3b:91:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 13:47:32 2025 by rpki-client