
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
File: 2CsoRvCTvJQWBBvmiix4MWHrBN8.mft (raw, json)
Hash identifier: j5r1HLrnMaUycFCEskP/lJknagkHHDTMrMg7wwZP2yw=
Subject key identifier: 58:D4:66:D7:F4:5D:1F:A9:D4:02:52:74:10:36:CE:91:2C:4B:84:9E
Authority key identifier: D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
Certificate issuer: /CN=d82b2846f093bc9416041be68a2c783161eb04df
Certificate serial: 0197597FC4769C45886BC2AFED4F073E7A87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
Manifest number: 072C
Signing time: Tue 10 Jun 2025 11:00:34 +0000
Manifest this update: Tue 10 Jun 2025 11:00:34 +0000
Manifest next update: Wed 11 Jun 2025 11:00:34 +0000
Files and hashes: 1: 1tdaIrt9xypJtReKdxeXXdM964s.roa (hash: 2jF3CjF80ww6ITNBk+zVZgXhV0QGg1umOnc7I4ePaOY=)
2: 2CsoRvCTvJQWBBvmiix4MWHrBN8.crl (hash: 0tBh9SRUqvgh2DJM/r36UZXVzBxX4iP6fPdj26YljDQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 11:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:7f:c4:76:9c:45:88:6b:c2:af:ed:4f:07:3e:7a:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d82b2846f093bc9416041be68a2c783161eb04df
Validity
Not Before: Jun 10 11:00:34 2025 GMT
Not After : Jun 11 11:00:34 2025 GMT
Subject: CN=58d466d7f45d1fa9d40252741036ce912c4b849e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0a:af:7a:46:8a:80:8e:d5:c5:eb:54:1f:1e:
69:d5:68:f7:fa:ca:8a:5e:42:f4:a4:cd:5d:ae:89:
ce:84:43:e5:5a:b9:02:c6:8c:ca:b7:e4:25:32:89:
cb:6e:60:dc:0a:e8:0c:7a:28:3f:6b:c5:52:ab:42:
87:ca:2b:5a:a5:d7:cf:c9:25:5a:1e:32:5b:92:f3:
c5:3b:ef:57:de:bc:cd:d1:34:05:3a:e3:0b:04:9d:
e5:f7:9f:b3:6e:38:3a:68:6e:2a:6b:d0:75:45:fe:
29:72:58:a0:bb:1b:28:16:c8:9c:ff:7e:00:5f:a1:
83:85:03:ec:90:2c:5e:dc:c3:b0:1d:8d:3d:44:37:
12:4c:6b:3d:1d:fb:45:04:da:ac:0b:06:d3:c0:d7:
c9:94:04:1f:1f:8e:de:d2:36:bc:91:4e:35:8c:23:
61:64:8c:7c:c1:cc:df:67:4e:f2:4c:d5:96:ae:65:
a4:d2:cd:7a:a0:1b:c3:16:7e:6d:0d:65:d6:97:b1:
ec:90:6a:a7:d5:fa:b6:4c:ce:21:8c:df:e3:47:53:
2c:44:09:e9:61:1a:b1:58:6b:e2:16:10:49:13:fc:
51:7b:d6:ac:38:b9:d9:4a:b7:59:b2:dd:d7:46:10:
5f:37:1e:62:d2:17:3d:eb:c3:a5:63:d0:d6:5e:9f:
1f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:D4:66:D7:F4:5D:1F:A9:D4:02:52:74:10:36:CE:91:2C:4B:84:9E
X509v3 Authority Key Identifier:
keyid:D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:76:0f:87:46:97:b1:1e:29:77:b2:4c:c9:db:16:a6:43:4b:
c6:66:a5:67:90:52:b0:52:63:4f:39:5d:03:07:78:d6:5c:6f:
3c:72:e6:d2:db:a3:c4:35:c2:69:32:0f:0c:3d:03:75:6b:b6:
b5:82:5e:9d:94:a4:05:54:c3:bf:f7:6b:59:13:47:6b:4b:42:
5a:a1:d4:c8:e8:8a:3b:4d:24:d0:65:8e:e7:40:cd:63:d9:9a:
cb:44:04:fb:db:75:ed:dc:59:03:9a:42:0e:e5:a7:58:8e:91:
43:ae:c6:3f:37:c0:83:17:66:f4:b3:f1:cc:9c:02:18:74:76:
dc:02:67:0d:5b:63:38:44:a7:32:ed:76:e5:fc:e7:eb:75:28:
27:a5:9a:f3:51:47:d7:4d:2a:0c:2c:bd:70:d7:32:a1:17:98:
2e:d8:d8:87:98:12:94:b2:3b:2c:da:8a:8d:58:45:52:fb:7a:
d7:9c:bb:16:a4:15:a6:72:3c:eb:0f:72:51:b7:bb:90:7e:12:
7b:d2:4f:18:2e:74:cd:0f:25:85:77:f3:3d:79:41:90:5f:6b:
7a:35:eb:09:28:48:0a:a5:5b:7a:fc:48:a9:57:41:ed:f4:11:
af:ee:94:55:2d:b7:d8:0e:0a:51:6a:f0:fd:76:9a:be:b5:b1:
15:16:f2:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 21:22:55 2025 by rpki-client