Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
File: 2GucF3igUp7n4jIAPL5cmTw2_ds.mft (raw, json)
Hash identifier: UIz/NxNKkFBJCm8pI1vdI0/YDt2pYMRwCEN2hrAxU3g=
Subject key identifier: 73:CA:51:DF:99:0A:95:30:71:95:5A:4C:23:87:09:30:16:71:58:52
Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Certificate serial: 019746D4A6A440ABD08F9AA7B3479067C8A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
Manifest number: 02DB
Signing time: Fri 06 Jun 2025 20:00:30 +0000
Manifest this update: Fri 06 Jun 2025 20:00:30 +0000
Manifest next update: Sat 07 Jun 2025 20:00:30 +0000
Files and hashes: 1: 2GucF3igUp7n4jIAPL5cmTw2_ds.crl (hash: VwZwmLn6ubkJ3tQnqez9U7EmZh4ygmHvpb4sP8JHW7E=)
2: xaTFNHvIwGFGt2nvvisSJGJJn1U.roa (hash: dncutlGZCp4ijfHdULe589Ce9+6dKbRvNV71t7mvtSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:d4:a6:a4:40:ab:d0:8f:9a:a7:b3:47:90:67:c8:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Validity
Not Before: Jun 6 20:00:30 2025 GMT
Not After : Jun 7 20:00:30 2025 GMT
Subject: CN=73ca51df990a953071955a4c2387093016715852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fb:79:5d:5e:02:07:d2:0a:d4:ac:6c:10:27:
cd:53:7e:f9:18:68:8c:02:b4:35:bf:bf:7d:1f:7e:
97:5e:94:f8:98:b8:08:97:c9:db:66:0e:83:a7:e4:
8e:3a:95:52:ea:c3:18:8a:4d:a4:26:82:fb:ca:f1:
b7:e1:8f:c6:51:a3:3f:68:56:28:0a:d3:54:c8:62:
13:31:7d:b3:9d:d7:9e:f8:44:3a:7e:e5:bd:57:ca:
e3:7f:8f:97:22:d6:a7:fa:88:83:ef:9c:5e:d4:53:
ec:65:26:1e:d4:9a:94:51:49:bc:f7:7b:63:40:c7:
b4:db:60:ce:63:bb:35:2d:21:f6:d9:c6:b0:d7:b3:
a8:c3:d5:ae:1b:5c:e1:1e:c6:d8:f7:bb:17:bb:c2:
0c:dd:02:a0:b1:a4:85:dd:f3:58:b9:38:77:80:09:
cd:fb:21:a8:76:26:4a:89:f6:4f:0f:c6:74:6b:b9:
58:7d:a0:a4:6e:71:38:0d:3f:54:1e:2c:7b:b5:44:
dc:be:40:6b:23:a7:ae:c8:43:bb:36:16:57:56:5d:
af:7f:70:36:b9:f5:f3:7e:b2:40:fb:07:46:30:be:
c3:8c:e0:54:c4:3e:69:19:d0:ea:25:7a:07:67:94:
da:8b:d0:b6:ba:e9:a6:76:4f:12:41:04:4e:77:bb:
9d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:CA:51:DF:99:0A:95:30:71:95:5A:4C:23:87:09:30:16:71:58:52
X509v3 Authority Key Identifier:
keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:0d:5e:ab:d1:94:af:04:ff:f5:3d:50:a2:3c:fb:96:c2:9a:
55:38:96:a6:4e:6c:b0:27:a9:71:1c:a4:e8:39:54:82:2a:fb:
7b:6e:7c:a4:39:07:35:cd:f6:da:3c:c2:e9:e1:53:8d:c1:fc:
3e:82:55:3d:d2:c9:f6:28:af:42:7f:de:82:ec:65:1e:c4:53:
ce:be:2c:ba:6a:50:53:fc:77:8d:52:f1:51:e7:1b:f6:8a:91:
72:e8:f8:c8:72:72:a5:a8:1a:c3:75:08:c9:35:77:94:ca:7a:
27:07:13:ab:3c:c7:fe:41:28:89:f0:de:4c:35:07:b0:4f:b0:
c8:07:06:44:6e:dd:3e:33:2a:3b:10:3f:28:cc:61:ae:c2:ea:
d7:a9:2d:e6:cd:73:85:ac:72:a9:1a:1f:b8:8d:5b:06:59:cf:
48:d2:3f:2c:65:61:be:70:ba:37:ec:57:f3:a3:1b:11:c6:70:
54:b4:fe:72:47:90:d2:8f:cc:98:21:39:6a:12:08:7b:8a:75:
7d:69:9f:13:74:d4:cc:04:35:bc:e9:51:c3:fc:be:cf:e4:ca:
3a:c7:36:4e:06:e0:dc:c6:30:c4:eb:be:1e:55:52:a0:d5:01:
dc:20:5f:ec:84:db:e0:6b:4b:95:ed:16:76:17:53:f4:6b:91:
3b:6d:f7:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 00:54:29 2025 by rpki-client