
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
File: 2CsoRvCTvJQWBBvmiix4MWHrBN8.mft (raw, json)
Hash identifier: 2IqtXxVFpuPALUFxfWz1M19Ms2KdEHoMkDcvXmtJGgE=
Subject key identifier: 3E:2B:7F:4E:8C:80:51:14:45:63:F9:DF:76:8E:41:0C:A1:5F:DE:FC
Authority key identifier: D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
Certificate issuer: /CN=d82b2846f093bc9416041be68a2c783161eb04df
Certificate serial: 01976EBE1D39B243C324FAE8C9179FA36364
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
Manifest number: 0737
Signing time: Sat 14 Jun 2025 14:00:42 +0000
Manifest this update: Sat 14 Jun 2025 14:00:42 +0000
Manifest next update: Sun 15 Jun 2025 14:00:42 +0000
Files and hashes: 1: 1tdaIrt9xypJtReKdxeXXdM964s.roa (hash: 2jF3CjF80ww6ITNBk+zVZgXhV0QGg1umOnc7I4ePaOY=)
2: 2CsoRvCTvJQWBBvmiix4MWHrBN8.crl (hash: btTGBd9z7Pw43ijsL15aqWmwakZ1sbg2ri0euSSDveU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:be:1d:39:b2:43:c3:24:fa:e8:c9:17:9f:a3:63:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d82b2846f093bc9416041be68a2c783161eb04df
Validity
Not Before: Jun 14 14:00:42 2025 GMT
Not After : Jun 15 14:00:42 2025 GMT
Subject: CN=3e2b7f4e8c8051144563f9df768e410ca15fdefc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:20:ae:2a:8c:6b:1b:61:b0:81:78:13:b5:a6:
ff:6e:e1:14:45:88:2f:d1:fb:08:98:58:62:7f:32:
09:bd:ee:36:10:c3:71:59:da:e4:56:2e:8e:a4:01:
50:8d:71:14:b9:e4:30:37:51:3b:f0:91:48:36:40:
8d:51:16:f6:31:21:7f:20:03:b8:c9:4c:91:e7:c7:
cb:ec:6d:1a:aa:0f:eb:a5:52:06:d6:3f:88:54:d0:
08:68:70:85:b1:b6:ca:39:c3:cc:79:94:dd:64:e1:
2b:5d:38:a9:a8:e0:84:34:32:fb:c6:2d:e5:e0:62:
41:bc:ab:0f:71:7c:90:ac:3f:f9:0b:1d:12:d7:f7:
51:83:f2:77:31:13:d6:36:1a:9d:56:e4:57:f3:b4:
25:24:92:e6:05:68:57:f7:24:ee:9e:cc:dd:bb:e5:
04:e9:2e:92:64:f4:70:bc:9e:25:98:6a:3d:cc:62:
70:26:9c:42:e3:8b:45:90:ac:3c:07:cf:65:da:68:
b4:88:ed:ae:f1:1d:1e:7f:96:05:9a:b8:ca:4f:92:
b3:6b:c9:81:d8:e6:ee:3a:5c:10:60:1c:30:50:0f:
5e:19:0c:43:28:3c:d2:a7:11:4a:56:18:09:08:6d:
63:e2:9f:58:fc:f8:81:49:1a:4e:62:b8:29:cb:96:
32:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:2B:7F:4E:8C:80:51:14:45:63:F9:DF:76:8E:41:0C:A1:5F:DE:FC
X509v3 Authority Key Identifier:
keyid:D8:2B:28:46:F0:93:BC:94:16:04:1B:E6:8A:2C:78:31:61:EB:04:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2CsoRvCTvJQWBBvmiix4MWHrBN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/5b2d6e-8247-448f-a358-5473ee1daa9b/1/2CsoRvCTvJQWBBvmiix4MWHrBN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:52:fe:07:2e:5f:67:ac:03:c1:ed:a8:b9:5c:c0:e8:bb:ef:
8b:74:82:e9:92:28:0a:a5:88:7c:df:37:81:b5:f8:69:9f:7b:
85:74:b3:14:23:0d:43:eb:69:cc:da:b8:90:1c:2d:6a:a2:18:
a1:09:69:06:ac:7a:e5:9b:32:d9:f2:e0:20:78:8d:a0:82:20:
cb:4a:63:4d:a2:48:86:4f:50:42:f9:16:26:c8:92:5c:f6:67:
c2:ad:36:fa:66:1a:fe:65:ad:36:17:7c:b8:89:87:2e:b8:f1:
79:2d:82:25:e9:77:22:5c:88:1d:28:ab:75:87:07:49:9e:14:
50:60:d6:50:99:5e:03:8b:0e:a8:39:d7:a4:a0:64:b2:dc:dd:
61:73:54:d1:43:d4:58:71:71:d4:45:0f:9d:8d:93:04:7d:e0:
b2:29:f3:e7:1b:99:6a:95:c9:2a:87:f3:03:3c:0a:3e:0c:52:
09:f7:4e:4e:46:e1:67:26:20:3b:74:73:5c:89:0d:1a:ee:b9:
13:58:c5:d1:c4:ab:dc:82:4b:90:df:9e:cd:52:a0:8e:35:c1:
39:8a:f8:b1:5f:86:5d:5f:68:ec:8a:b9:b6:6f:65:ee:55:f9:
fb:88:a7:f6:d9:70:8c:c2:4d:ec:02:8c:bf:6e:f7:d5:a5:bc:
c6:f9:0f:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:47:06 2025 by rpki-client