Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
File: 2wy7NfYw1Aytd1B_2r03_e3BIQM.mft (raw, json)
Hash identifier: 46ZjP8Hf/bLyTieRNV1+EMLHf7Af2BYQk/wWgHj3rFk=
Subject key identifier: DC:51:A9:62:78:CE:B4:C0:77:32:43:29:88:38:90:8A:45:D4:6F:5B
Authority key identifier: DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
Certificate issuer: /CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Certificate serial: 01974C31C38BFFB581BC003B187C41163474
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
Manifest number: 32
Signing time: Sat 07 Jun 2025 21:00:19 +0000
Manifest this update: Sat 07 Jun 2025 21:00:19 +0000
Manifest next update: Sun 08 Jun 2025 21:00:19 +0000
Files and hashes: 1: 2wy7NfYw1Aytd1B_2r03_e3BIQM.crl (hash: jhkdtBnXshynR27y9wy+NEIZX7iEjwa6mRdp2iFXjxI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:31:c3:8b:ff:b5:81:bc:00:3b:18:7c:41:16:34:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Validity
Not Before: Jun 7 21:00:19 2025 GMT
Not After : Jun 8 21:00:19 2025 GMT
Subject: CN=dc51a96278ceb4c0773243298838908a45d46f5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b6:7b:98:c7:3c:14:5a:af:25:00:6f:26:b4:
21:c7:ef:33:ea:2b:17:03:15:fb:34:d3:c4:3a:79:
d3:dc:f1:58:bc:9c:f9:cd:2f:df:8e:65:d0:99:ff:
25:ed:9b:6e:f5:24:e4:75:2a:18:5a:e3:08:20:83:
de:b8:53:84:1b:47:30:0c:5e:89:c6:3d:79:f9:7f:
24:b1:71:47:b2:6d:28:00:42:a1:e5:79:86:e0:16:
52:eb:bf:a8:56:77:1b:b8:21:aa:00:2d:da:12:f7:
b1:c6:e3:63:e2:11:d2:a3:86:5e:f4:0e:8c:d5:ad:
31:ce:0c:bb:21:6a:f1:67:30:b3:62:e2:01:65:63:
0e:36:be:69:43:e0:07:4d:f2:1e:6e:ea:e0:9d:07:
01:b7:a7:da:5b:e9:85:20:08:10:8e:0d:d8:95:be:
52:8e:08:c9:32:bd:30:d3:50:ea:c5:1e:1c:5e:21:
38:3b:29:78:86:18:f8:c8:65:39:6f:dc:85:ca:be:
f0:27:c2:33:13:36:37:99:2c:a6:a9:ce:69:5b:3e:
b7:e9:ae:dd:b5:fb:94:7e:64:21:fb:e1:e0:a0:77:
8e:1c:65:64:c0:45:fb:81:04:b3:4e:74:48:b6:08:
61:cc:7d:97:bc:f0:13:76:10:70:b0:96:94:d2:a4:
26:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:51:A9:62:78:CE:B4:C0:77:32:43:29:88:38:90:8A:45:D4:6F:5B
X509v3 Authority Key Identifier:
keyid:DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:91:c2:ec:ab:18:9f:f4:8d:89:7f:e9:e5:5b:9b:80:81:4b:
e8:45:da:1f:34:a2:a5:54:e6:c8:e1:49:45:b8:c7:46:c8:59:
0e:ae:2c:85:a2:15:4b:e8:aa:e9:ba:18:e7:98:be:ef:5f:3e:
b7:a8:12:32:a3:58:3a:89:5b:c7:0b:4c:53:25:3e:3d:3f:37:
5d:e9:1f:a9:b2:e9:a0:d8:0d:79:da:17:42:13:f0:17:92:c9:
87:db:0b:dc:f5:af:79:b2:5e:e1:45:7b:4c:8f:82:5d:49:10:
74:d4:8c:51:4c:a6:d0:33:ca:ab:48:c7:9b:65:fd:ce:8d:b3:
e8:1c:20:e6:a9:83:1d:cd:c0:3c:84:99:8f:93:9c:74:ea:d2:
74:99:69:e6:68:21:26:21:bd:4a:79:ed:4f:3a:44:5b:59:c5:
98:b3:dd:b4:7f:fd:9d:46:cc:32:a9:18:de:e1:cd:b2:0c:72:
03:c0:05:a6:07:f7:c0:99:bc:c7:50:18:43:09:4d:6c:dd:27:
71:4b:29:49:20:32:b3:dc:bd:02:46:12:a9:70:f7:3d:08:43:
c7:04:b8:61:18:14:af:88:a9:f7:aa:e7:6f:0f:7b:cf:ee:a2:
d2:04:3a:30:f6:59:7a:ff:0c:8b:b3:95:52:8b:7b:fa:f3:c4:
fa:f8:a6:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:14:49 2025 by rpki-client