Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
File: 2ko-wHuXhY5oNKWh-I64_jG_eyA.mft (raw, json)
Hash identifier: UDVZgY+N7uZrtFNZEjKwqfZ1M41NBRqPp91onWBd+NI=
Subject key identifier: 42:31:55:EB:0D:31:0F:BF:A8:C5:A9:DC:C9:F7:27:8C:95:BA:11:53
Authority key identifier: DA:4A:3E:C0:7B:97:85:8E:68:34:A5:A1:F8:8E:B8:FE:31:BF:7B:20
Certificate issuer: /CN=da4a3ec07b97858e6834a5a1f88eb8fe31bf7b20
Certificate serial: 01974B8D7F7C71EC3DF99F89059E087692B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
Manifest number: 0629
Signing time: Sat 07 Jun 2025 18:00:53 +0000
Manifest this update: Sat 07 Jun 2025 18:00:53 +0000
Manifest next update: Sun 08 Jun 2025 18:00:53 +0000
Files and hashes: 1: 2ko-wHuXhY5oNKWh-I64_jG_eyA.crl (hash: 1z8jQMlzafTBaP/Q6M7/RaaeQHARxiz3UGqsi/0l/Rc=)
2: SKL1Cd8Tn-ZKbcOxgMo9-wJ0gbQ.roa (hash: 4u4TOuVY+peXwBlO4N668GLOAFUf52/Bj870kxpoG3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:8d:7f:7c:71:ec:3d:f9:9f:89:05:9e:08:76:92:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da4a3ec07b97858e6834a5a1f88eb8fe31bf7b20
Validity
Not Before: Jun 7 18:00:53 2025 GMT
Not After : Jun 8 18:00:53 2025 GMT
Subject: CN=423155eb0d310fbfa8c5a9dcc9f7278c95ba1153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:26:94:65:1f:b7:1b:24:19:d4:51:cd:03:d6:
d4:67:f6:16:a9:14:6f:f7:3a:2b:14:0f:07:5f:18:
01:93:5b:df:45:9a:63:31:d0:e3:fa:9e:11:a5:f4:
ae:e4:09:44:e7:d6:77:0a:66:36:49:b7:21:6e:ca:
23:6a:da:8c:b5:50:63:ea:ca:25:12:f3:ef:13:67:
dc:e1:a8:bc:22:33:69:9f:89:7d:42:b3:58:7e:2f:
10:e9:6e:7d:d4:4f:f2:78:71:de:3b:bc:ae:47:1f:
5f:8a:c8:e5:72:7a:cf:2b:f4:9d:3a:d5:ab:24:95:
fb:a0:80:80:68:30:e5:6e:a0:5c:13:76:4c:2d:ae:
d4:21:bf:33:76:f6:c3:36:e7:38:31:e4:57:c3:b3:
15:d3:7d:97:40:f7:91:24:c1:e8:3f:0e:bd:37:18:
b6:c0:c0:c1:ee:a7:10:56:4d:4f:da:1c:30:24:ba:
89:77:51:cc:94:5a:dd:68:0b:8f:54:5c:9b:ec:6c:
66:7a:30:a1:ae:c2:73:1e:c1:3a:76:43:b5:fc:00:
ed:29:53:97:28:63:74:54:85:ea:cc:b9:54:90:5d:
71:f9:1f:81:d5:ed:bb:a6:ed:42:26:1b:3b:15:9e:
c2:ab:95:2b:af:50:31:2e:b1:e4:8a:19:6b:a3:a8:
01:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:31:55:EB:0D:31:0F:BF:A8:C5:A9:DC:C9:F7:27:8C:95:BA:11:53
X509v3 Authority Key Identifier:
keyid:DA:4A:3E:C0:7B:97:85:8E:68:34:A5:A1:F8:8E:B8:FE:31:BF:7B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:f5:3a:9c:6b:d1:e2:c2:67:c1:4c:e0:35:c3:c6:e8:29:77:
dd:a5:18:98:37:b6:d8:5e:0a:34:07:a8:f5:80:8e:e9:67:25:
6b:60:1c:65:d7:4a:b3:df:28:1d:67:c5:82:b2:79:66:c6:29:
98:33:26:4e:11:ef:bc:2b:ab:7d:e6:7e:53:57:83:32:27:7d:
93:ba:9c:de:91:10:6e:87:fd:a7:35:47:ef:73:6c:31:de:a2:
23:ff:74:ba:0d:d0:92:03:14:c4:e0:5b:f5:a2:e5:24:76:41:
92:5a:a0:72:b6:19:01:81:02:13:96:0b:59:dc:64:1d:6f:9f:
de:df:d9:38:72:0f:9e:3c:86:28:f0:ae:bc:cb:4c:c5:87:5a:
44:96:43:be:4d:da:55:c4:df:6e:f9:45:19:2a:d7:4d:88:fc:
ca:e7:ed:46:00:55:a3:5d:46:81:d7:7b:d5:c8:9b:a5:3b:22:
74:38:de:8c:d5:ef:29:b5:dc:92:7b:b0:14:2d:1b:52:8f:8c:
60:7f:60:bc:9e:52:65:97:0d:23:6f:1d:a5:7f:a7:82:ae:db:
9b:3f:ae:c5:f0:c0:8b:38:aa:8a:bf:68:c0:ef:aa:b8:4b:c1:
cb:8b:7b:dd:36:a2:50:33:06:c9:69:a1:f0:80:5f:3c:3c:9b:
10:c4:d9:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 01:46:32 2025 by rpki-client