Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
File: 2PcA7rBSdLMdwdrzDNfIExCrRS0.mft (raw, json)
Hash identifier: aypngL1ZrDeJt37yMH2BEZHz6KK4g9IcomOwhRtEm1E=
Subject key identifier: DC:56:9F:E7:E8:2D:34:29:3E:C0:A4:BD:E5:BC:50:6F:7D:F5:D1:A5
Authority key identifier: D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D
Certificate issuer: /CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d
Certificate serial: 0197488D4A3412BC7684D1F29EAEE602DDD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
Manifest number: 07B8
Signing time: Sat 07 Jun 2025 04:01:48 +0000
Manifest this update: Sat 07 Jun 2025 04:01:48 +0000
Manifest next update: Sun 08 Jun 2025 04:01:48 +0000
Files and hashes: 1: 2PcA7rBSdLMdwdrzDNfIExCrRS0.crl (hash: UwApG5SLbib6y6K4u01vIfelruxhxz22Z57rC80fvhw=)
2: xZeFO5Zwl5xEF1LyaSp03R5_7jg.roa (hash: IWeEq50Ry3wHX8kf3jXxRipWlWHUzhkegAPH2nDXTxI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8d:4a:34:12:bc:76:84:d1:f2:9e:ae:e6:02:dd:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d
Validity
Not Before: Jun 7 04:01:48 2025 GMT
Not After : Jun 8 04:01:48 2025 GMT
Subject: CN=dc569fe7e82d34293ec0a4bde5bc506f7df5d1a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3f:37:68:ec:aa:e0:ae:a2:ed:50:e6:ef:0b:
ec:87:8d:3e:c1:89:ad:ba:7c:8d:68:8d:cd:c4:e4:
c4:53:86:30:ba:de:9c:d0:a4:43:76:4a:99:c6:5f:
f2:1a:b1:9b:c7:e0:ab:6e:76:5f:bc:41:56:f3:d1:
65:eb:d3:7d:6b:0a:a9:3b:51:e6:dd:da:ac:ca:dd:
02:a6:f7:86:ca:ba:f4:95:e6:b1:6c:55:dd:49:f8:
57:2c:09:42:ad:c4:e6:e3:90:0c:4b:4b:1e:15:fa:
bc:e6:0b:89:8b:09:28:39:a9:f7:93:02:64:47:ca:
ad:e3:f3:4c:58:e7:fe:0d:7b:5f:05:ce:3f:1a:5f:
96:ae:80:1f:a3:72:99:11:85:55:e8:84:a2:47:87:
56:51:0e:62:c9:38:54:b0:6f:10:a1:ef:2e:81:83:
b6:20:10:c6:e6:07:c3:6e:54:05:bb:0e:e3:c0:b9:
f9:31:5d:bb:8f:29:75:fe:4f:9e:b2:60:73:f2:14:
08:96:51:5f:52:a3:8f:ce:1d:25:fd:7c:b4:7e:d9:
b6:90:69:7d:c7:95:77:cb:3f:6e:37:b2:bf:08:fb:
18:d2:30:20:91:48:18:31:1e:6a:8c:91:3b:b4:10:
c3:59:de:d2:4a:a1:c9:51:df:0e:10:4c:fd:6a:0d:
51:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:56:9F:E7:E8:2D:34:29:3E:C0:A4:BD:E5:BC:50:6F:7D:F5:D1:A5
X509v3 Authority Key Identifier:
keyid:D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:b9:a8:f1:16:22:63:9f:7f:96:b6:9c:4d:9e:ea:0d:90:5e:
14:03:40:27:b7:cc:72:e4:ef:ad:3d:30:21:c3:16:03:d5:35:
c8:a1:5e:d1:53:19:6c:35:91:46:0b:70:48:4c:8b:2a:97:66:
95:bd:54:3d:7a:c9:bc:a9:b9:b1:c1:87:83:65:95:94:51:17:
e8:72:b4:23:16:25:88:e6:fc:d6:05:43:71:e4:f9:d5:01:3b:
8e:31:1a:0c:5b:b5:51:ea:7e:c7:ae:ba:94:e9:69:7a:36:28:
68:ae:c4:09:9c:e8:7c:60:8f:80:25:3f:6a:24:17:dc:29:4a:
bc:61:78:ad:5f:00:17:8a:69:aa:37:b5:13:cb:78:56:87:62:
d1:ad:8d:24:26:6d:50:d5:06:84:ca:fc:cb:63:6e:aa:c4:ce:
a2:a7:c2:10:8f:03:c9:7f:64:c7:e9:13:61:61:1d:04:37:28:
7b:43:ea:6c:ff:e4:99:aa:0b:30:8f:26:4d:0b:de:26:33:de:
ce:26:88:b6:cf:ac:da:88:49:ef:3c:e1:4b:e3:d5:34:27:f4:
26:fc:ff:ae:8c:fd:78:fa:89:29:b2:e2:47:d9:cc:3b:85:cb:
8f:3e:67:ad:d8:d4:31:d7:38:1a:96:81:ef:0c:8a:4e:cc:65:
3d:ba:73:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:39:36 2025 by rpki-client