Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
File: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft (raw, json)
Hash identifier: Rd+8Gy7swvXoWJhRPEmUHJnUG0bcFyWSc8+DjvOtjIY=
Subject key identifier: D2:93:7A:49:F3:AF:42:0D:50:37:AB:7B:B9:89:E8:B1:26:67:E5:B9
Authority key identifier: D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
Certificate issuer: /CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Certificate serial: 01974D7C3F7BA1AA4051D5973F245D8D23E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
Manifest number: 157D
Signing time: Sun 08 Jun 2025 03:01:17 +0000
Manifest this update: Sun 08 Jun 2025 03:01:17 +0000
Manifest next update: Mon 09 Jun 2025 03:01:17 +0000
Files and hashes: 1: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl (hash: OIo2pq9jbnFKug4wFzk485d8xT728y6253lVjpAkr3E=)
2: wIuWmKQqKRafTdpQCAjgZGdOwSg.roa (hash: FSZWMB16h9Z2ZEIxjWe18pWkdzeyGtdch3JRTJHt/gU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7c:3f:7b:a1:aa:40:51:d5:97:3f:24:5d:8d:23:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Validity
Not Before: Jun 8 03:01:17 2025 GMT
Not After : Jun 9 03:01:17 2025 GMT
Subject: CN=d2937a49f3af420d5037ab7bb989e8b12667e5b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9a:c9:ed:bf:ef:c8:1b:5f:cc:cf:7f:0d:75:
e5:fb:d1:0a:14:ff:f5:e8:92:c6:a2:ae:4a:c0:a1:
20:64:08:09:6b:86:42:e0:d4:00:76:02:1a:e7:07:
58:88:ae:62:0a:c6:bb:81:55:1c:3c:d0:79:c9:9c:
5f:5d:da:95:61:c3:b6:39:6c:a5:e4:52:04:00:ed:
53:b4:97:1e:ec:7b:5a:5d:cc:ec:f2:d7:e3:f9:a5:
b5:6f:20:4e:7a:ca:74:2f:91:53:f5:1d:28:3c:09:
58:88:a3:85:22:06:d0:ad:c7:00:cc:8b:8b:20:c0:
28:89:3b:71:ba:78:f4:4c:02:11:e6:6e:82:fd:6c:
60:52:b7:90:dc:3d:52:aa:83:4a:0d:4a:1e:e1:8c:
e5:2d:4f:92:3a:bc:0d:59:74:7a:06:44:3c:94:c1:
d4:8e:56:c3:2d:58:ad:66:d2:6b:2a:14:81:02:87:
0c:0d:db:70:1f:53:b1:ed:5f:7b:6b:bd:73:f2:07:
ea:96:03:5f:0e:f6:43:87:c2:63:10:bb:79:3e:7f:
91:96:22:9e:eb:92:3e:e5:9a:88:b8:68:14:93:81:
87:84:3c:0f:1d:7f:31:42:31:73:be:20:90:d0:ea:
e6:ba:5a:de:17:b1:4b:3c:1f:b1:d5:68:5f:ea:6e:
d7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:93:7A:49:F3:AF:42:0D:50:37:AB:7B:B9:89:E8:B1:26:67:E5:B9
X509v3 Authority Key Identifier:
keyid:D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:66:d0:31:9d:04:92:5c:82:f9:14:5c:de:bb:c8:66:4c:d2:
92:61:dc:a7:b2:87:87:b8:da:e3:bd:06:a6:8e:85:57:e3:7c:
bd:5b:32:7c:3e:f7:eb:33:93:b8:7d:0c:e3:0c:40:b2:b0:c6:
21:a5:43:1d:c4:c0:33:32:67:78:51:d0:77:fe:dc:39:c8:0f:
28:e1:70:d8:45:08:7e:e4:65:9a:a8:aa:6b:e3:04:1a:02:36:
af:e3:a6:a3:6b:aa:db:be:33:25:f5:f4:0a:9b:e4:50:76:51:
b9:00:3a:12:55:0d:24:46:f9:d4:ff:fd:b7:3b:53:c2:54:c9:
21:e9:a6:50:d0:7e:cf:d2:7a:28:4b:29:b3:49:66:83:d4:08:
02:57:43:21:c5:8f:0f:2e:6e:6c:46:38:c2:34:d7:e9:4e:71:
0a:fe:6d:ca:a2:96:41:65:f9:ce:a4:3d:2a:73:6a:e4:c8:6b:
7e:86:0f:1f:8a:b3:83:68:1b:b7:71:13:d4:4c:14:f0:61:fc:
03:f1:b4:ad:28:f2:1b:96:ef:41:6f:a7:40:65:ee:82:ab:be:
9c:71:1f:6e:c8:5d:5e:eb:17:0c:67:2b:79:e0:07:d3:f4:0e:
31:6c:de:08:d5:32:ea:35:83:1b:a8:2d:26:d3:eb:e0:8c:5c:
47:f2:b8:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 12:36:14 2025 by rpki-client