Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
File: 2CsoRvCTvJQWBBvmiix4MWHrBN8.mft (raw, json)
Hash identifier: 3GPgqywvsypz+T4sGsPbg/FgT/f2P6oAG6nevWP+jok=
Subject key identifier: BE:1A:8B:80:FD:D2:91:9C:B5:36:AD:B2:A9:00:F2:BE:C8:EC:CC:EB
Authority key identifier: D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
Certificate issuer: /CN=d82b2846f093bc9416041be68a2c783161eb04df
Certificate serial: 019755A2F8882FDCFA52B6AD73BAEDEC691F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
Manifest number: 072A
Signing time: Mon 09 Jun 2025 17:00:33 +0000
Manifest this update: Mon 09 Jun 2025 17:00:33 +0000
Manifest next update: Tue 10 Jun 2025 17:00:33 +0000
Files and hashes: 1: 1tdaIrt9xypJtReKdxeXXdM964s.roa (hash: 2jF3CjF80ww6ITNBk+zVZgXhV0QGg1umOnc7I4ePaOY=)
2: 2CsoRvCTvJQWBBvmiix4MWHrBN8.crl (hash: ZB4dSAiS24k5HTUw/hSBkXoIOirupd/cHZythOLrljc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:55:a2:f8:88:2f:dc:fa:52:b6:ad:73:ba:ed:ec:69:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d82b2846f093bc9416041be68a2c783161eb04df
Validity
Not Before: Jun 9 17:00:33 2025 GMT
Not After : Jun 10 17:00:33 2025 GMT
Subject: CN=be1a8b80fdd2919cb536adb2a900f2bec8eccceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:21:ed:77:95:59:77:e1:e7:dd:d7:31:55:20:
78:fe:a2:cc:56:5b:40:53:be:48:3e:af:8d:15:d9:
af:e8:e5:6e:55:2d:ef:60:ca:5c:12:dd:3a:27:29:
80:e4:08:14:2e:0a:c2:6c:af:07:0c:9b:49:72:5a:
68:d0:f8:66:e4:f4:0d:b9:63:6f:c7:d6:57:ef:fe:
f2:63:71:0e:ee:0d:c8:68:6d:e1:76:b9:1f:40:8f:
0d:a2:bc:5e:f5:ef:56:da:f6:b5:ff:01:77:e5:2b:
cc:b0:4d:6a:12:47:17:09:c3:1e:eb:ab:cb:d7:21:
9f:ea:2d:d1:be:57:ce:ad:32:10:80:1a:ba:d6:8f:
85:a1:8b:91:6e:b3:02:a0:c4:6b:0b:6e:35:70:fb:
e4:cd:29:eb:f6:a9:30:ad:b8:4c:0b:f8:9a:8a:94:
0e:ae:61:b0:73:26:a5:56:26:1d:b1:bb:eb:9e:48:
16:83:df:ea:f4:03:ff:a6:d6:3b:70:f3:67:52:9f:
6f:e1:2e:09:34:0d:ce:82:87:69:e3:b9:10:b5:fd:
11:c3:a6:7f:b1:87:49:32:83:79:1c:97:af:12:e6:
cc:e9:5e:3f:09:e3:91:8d:a1:7d:f3:b5:e4:c6:13:
1b:43:ed:e3:cf:f2:e5:95:d5:e3:a0:b1:da:c6:cb:
93:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:1A:8B:80:FD:D2:91:9C:B5:36:AD:B2:A9:00:F2:BE:C8:EC:CC:EB
X509v3 Authority Key Identifier:
keyid:D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:f3:92:bf:3e:eb:9b:12:b8:89:10:ea:98:18:d9:72:69:74:
9d:99:1e:04:2b:1e:3c:30:95:e2:fb:0c:50:8c:a0:e7:39:1f:
94:f5:d6:23:9c:21:bb:57:3d:3f:b7:f6:8e:50:e1:88:3b:bc:
d6:f7:1a:0c:7d:15:de:31:03:da:83:70:5c:98:31:1d:59:f6:
2a:2c:32:a1:ae:bc:5d:a1:86:d3:65:d9:8d:12:46:16:41:eb:
90:9b:9b:71:ca:f5:00:c3:3d:4d:3a:5f:ab:96:21:f9:c4:f0:
e3:12:1f:1a:bc:86:64:54:6e:fa:f9:6b:4c:13:54:62:b9:4f:
b6:12:66:4d:a8:15:b9:2f:ed:e0:d9:f3:b0:00:9a:f7:c7:42:
b6:91:e0:1d:a1:e4:2d:4c:da:da:2e:39:f9:7d:42:5f:8c:0e:
91:5a:df:41:8d:9c:77:8b:ce:54:5d:31:cb:ff:4e:6b:16:07:
c6:b9:ee:6a:c2:66:8a:08:90:c0:81:57:42:0e:af:87:b7:ba:
3e:28:11:bc:1e:3f:f9:9a:47:a4:ff:b9:d8:ef:8b:7f:c3:3c:
07:f8:ff:bc:de:95:16:07:8d:bd:74:d0:da:28:a3:8f:63:20:
ac:bf:3a:4d:58:4a:51:20:09:79:25:90:95:b8:95:f5:b6:0d:
41:7a:1b:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 01:24:56 2025 by rpki-client