Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
File: 2671wyvqS1TRfiQbXMyvB7wKjuk.mft (raw, json)
Hash identifier: cg3Du2xJMtErspGOFwnJ6DpICF9n8xWP2uYzXlCamEI=
Subject key identifier: 13:3B:29:10:35:C7:9A:27:DC:2F:02:C2:0C:73:C7:A1:D2:A5:63:F1
Authority key identifier: DB:AE:F5:C3:2B:EA:4B:54:D1:7E:24:1B:5C:CC:AF:07:BC:0A:8E:E9
Certificate issuer: /CN=dbaef5c32bea4b54d17e241b5cccaf07bc0a8ee9
Certificate serial: 0197499F2BD0135E36A57BF0CE16B98AF03E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
Manifest number: 0EF6
Signing time: Sat 07 Jun 2025 09:00:57 +0000
Manifest this update: Sat 07 Jun 2025 09:00:57 +0000
Manifest next update: Sun 08 Jun 2025 09:00:57 +0000
Files and hashes: 1: 1K5S67uusJJll8Ab0hq1pL5liKA.roa (hash: StmRzvzcRi3NdAfCMsQ2aiXFRAlDcm1+BCF0RfR6JW8=)
2: 2671wyvqS1TRfiQbXMyvB7wKjuk.crl (hash: M4WBmAFck6+8pxczQvWb3OfAVKMixbtBN1U1DkpKpGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:2b:d0:13:5e:36:a5:7b:f0:ce:16:b9:8a:f0:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbaef5c32bea4b54d17e241b5cccaf07bc0a8ee9
Validity
Not Before: Jun 7 09:00:57 2025 GMT
Not After : Jun 8 09:00:57 2025 GMT
Subject: CN=133b291035c79a27dc2f02c20c73c7a1d2a563f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:81:4a:6e:93:a2:50:bb:9b:bb:4b:bf:3d:68:
91:04:a7:ce:4e:cc:9f:5c:1a:02:ae:e3:9e:c1:3a:
8b:ed:c2:ae:4e:ba:4d:58:89:74:a0:1a:25:cf:74:
56:69:dd:7b:f9:17:7c:93:11:95:1d:6c:f2:f5:d0:
89:a8:60:f3:cc:ca:da:e5:58:42:6a:ad:fb:4f:d6:
4c:c2:89:4c:ff:92:e0:6a:d5:6b:71:f7:8a:f2:4e:
21:2d:7a:3a:41:84:68:b5:7e:9d:1a:1b:8e:a4:57:
cc:a0:77:9b:32:bb:83:9e:19:51:90:aa:d6:ae:03:
9f:e1:a5:9f:3e:27:49:b5:44:3b:d6:91:d6:00:74:
31:f0:ab:49:c2:06:79:60:bb:85:45:21:27:01:3a:
08:79:cf:c6:a0:d8:d9:fa:bb:98:23:1d:66:7a:6d:
b2:07:27:67:6e:53:47:fe:5d:f6:e4:11:ea:23:ab:
03:dd:80:eb:14:82:f6:a5:16:d1:10:1f:0f:8d:e9:
86:e3:13:76:69:12:33:3d:7e:5a:dc:ad:9c:2b:cc:
6f:00:f9:d2:8a:9a:19:54:e0:1c:de:5a:1c:20:c0:
fa:e3:60:4d:4a:f7:50:8f:24:67:75:cb:03:49:04:
d8:05:18:5d:c2:fa:8c:49:c0:bf:06:3a:e3:5e:82:
f4:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3B:29:10:35:C7:9A:27:DC:2F:02:C2:0C:73:C7:A1:D2:A5:63:F1
X509v3 Authority Key Identifier:
keyid:DB:AE:F5:C3:2B:EA:4B:54:D1:7E:24:1B:5C:CC:AF:07:BC:0A:8E:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2671wyvqS1TRfiQbXMyvB7wKjuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/dee66f-45cc-4cb4-9fbb-642ce674f974/1/2671wyvqS1TRfiQbXMyvB7wKjuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:d0:83:6b:6f:6c:f2:c6:68:15:60:36:a7:80:fa:ee:f6:52:
d7:70:c2:9f:e9:b5:03:48:bb:02:d2:64:88:96:53:04:19:75:
d8:44:51:87:5c:f5:3c:78:b7:5f:e8:15:f2:99:c6:f5:31:8d:
f8:0c:06:63:4d:7f:d0:41:cb:24:51:cd:53:25:f5:09:c9:90:
a9:02:bd:cb:0e:55:05:96:c0:2c:35:91:d3:9c:49:82:21:e3:
5e:0e:77:54:43:35:ee:66:24:96:65:03:90:f0:5f:4b:23:6e:
f1:b6:76:bb:39:e6:b6:9e:bc:e1:e8:d6:58:d5:46:42:f0:4b:
4e:de:e5:77:d8:39:5c:46:98:1b:dc:1e:37:94:f0:2f:67:eb:
9a:e5:23:df:b7:ab:e0:88:94:14:93:e2:56:f9:a3:84:b8:98:
44:56:5a:4b:bd:83:1d:b6:b5:6c:b1:21:61:e5:82:f4:4e:5e:
67:cd:2b:55:f0:2b:f3:99:ff:90:81:c1:60:7e:df:9b:42:2b:
20:19:89:da:8e:6e:d9:a1:be:d6:ff:29:dd:66:c9:ad:40:da:
29:cc:73:49:57:81:17:09:91:01:8d:ea:25:12:09:94:d2:73:
7e:fa:f5:01:be:36:de:74:ce:d1:dd:4a:ce:e5:58:f2:19:cb:
aa:ca:2f:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:48:11 2025 by rpki-client