Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
File: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft (raw, json)
Hash identifier: I+XbW7dYuxWefc3jmG2s0xPg7QShKzLq+IryImaIsSw=
Subject key identifier: 56:D3:34:7A:81:03:05:87:A2:6A:35:3E:5D:77:18:C1:74:DD:BE:C3
Authority key identifier: D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
Certificate issuer: /CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Certificate serial: 01985231C1616179A56CE8E16759B0558735
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
Manifest number: 1604
Signing time: Mon 28 Jul 2025 18:00:49 +0000
Manifest this update: Mon 28 Jul 2025 18:00:49 +0000
Manifest next update: Tue 29 Jul 2025 18:00:49 +0000
Files and hashes: 1: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl (hash: 6o2zEfdMEDggtz7X1+k/M9qu/sN6K9YIhRZkcIyPQBc=)
2: wIuWmKQqKRafTdpQCAjgZGdOwSg.roa (hash: FSZWMB16h9Z2ZEIxjWe18pWkdzeyGtdch3JRTJHt/gU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 18:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:52:31:c1:61:61:79:a5:6c:e8:e1:67:59:b0:55:87:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Validity
Not Before: Jul 28 18:00:49 2025 GMT
Not After : Jul 29 18:00:49 2025 GMT
Subject: CN=56d3347a81030587a26a353e5d7718c174ddbec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:95:e6:7d:ff:16:ab:89:f8:5b:9b:2a:38:f9:
ec:07:d7:7c:41:6e:e8:eb:ee:0d:b6:47:ba:ee:73:
72:0c:83:b3:f5:95:79:84:77:cd:e8:c0:19:26:26:
c9:6e:fb:70:4e:8f:e6:5e:01:0f:8c:82:12:5c:3a:
a1:31:9f:70:81:ea:03:59:af:fa:bc:86:4d:47:b2:
c3:b7:ea:fc:d7:61:95:a9:0e:c9:04:a1:03:7a:54:
54:ac:a4:46:66:c5:c0:7f:fa:1d:96:52:0c:17:75:
bd:c1:99:0a:48:4c:a3:6c:87:b5:d5:e5:d9:cf:87:
1f:c9:8b:67:91:0f:1d:53:7c:8b:12:2a:56:d9:94:
b6:cc:1d:87:06:35:30:95:66:9d:0c:98:98:ed:e3:
0c:f1:3e:34:cb:1d:9f:c5:6c:25:72:69:ef:ba:8b:
a9:f2:b8:77:72:18:9c:57:61:9d:9a:1d:be:44:5e:
14:74:fd:e8:9b:cd:df:70:99:cc:73:9e:39:6b:4c:
78:5a:72:8f:67:11:72:33:67:e6:13:09:25:4e:d4:
ea:89:13:50:80:e5:1e:15:80:43:a1:ea:a4:f9:10:
2a:25:6e:6e:a1:78:ba:de:9b:04:7f:d1:2c:19:ff:
80:b7:92:90:d4:48:75:a0:01:dd:8d:06:09:0c:37:
d8:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D3:34:7A:81:03:05:87:A2:6A:35:3E:5D:77:18:C1:74:DD:BE:C3
X509v3 Authority Key Identifier:
keyid:D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:15:85:e6:9b:59:13:2a:8d:9f:a8:ab:70:73:91:b4:81:3e:
9f:a0:e4:6f:1b:fe:91:11:59:58:8a:9d:94:df:b2:ae:38:54:
0a:17:b1:a2:14:f6:92:1b:aa:b2:0f:43:06:99:3c:15:66:29:
f2:d5:dd:27:ec:37:0a:33:73:06:96:d3:d1:f5:29:69:de:c8:
3a:a3:7b:b5:be:18:b9:7e:d7:85:69:bc:9a:c1:1d:ed:62:70:
24:ae:a4:d7:92:c2:ca:52:f9:b6:f7:e9:3c:7b:46:3a:e6:a7:
8b:b5:b6:8f:88:1e:d7:6b:1d:6a:e4:5d:f6:69:cd:07:e8:ba:
e3:4e:c0:29:cd:6b:f8:4d:ec:30:a3:e6:f0:da:3e:d4:17:cc:
6b:37:a4:03:4a:ca:52:c7:75:0d:07:c1:8f:45:94:98:09:a0:
d4:71:f1:f6:20:aa:02:c1:06:a3:2d:f2:0f:a1:7e:db:be:95:
2c:5e:c2:50:b8:86:4e:38:be:59:19:f2:af:54:92:fe:7a:a2:
ef:62:e1:9c:9b:cd:41:2e:3c:bd:20:8b:f5:c1:0f:4c:ef:b9:
ac:0d:56:53:9a:15:c6:5e:11:86:ca:98:9c:1d:f3:a4:97:45:
f3:10:90:8a:77:86:d4:d9:7b:8f:97:d2:30:05:f6:6a:a5:b9:
e5:9f:d9:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 04:01:56 2025 by rpki-client