Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft
File: 2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft (raw, json)
Hash identifier: nzVj0YURm5AmAv06KapQq2jmyfW9URvwm/HX/5bmcGU=
Subject key identifier: FF:AB:99:F6:AD:AA:94:A2:6A:B5:8B:E0:2D:CF:F4:FD:DD:11:2D:17
Authority key identifier: D9:FE:0C:C3:14:3F:99:C5:E5:58:36:A3:FF:6C:0B:66:FC:20:C4:D5
Certificate issuer: /CN=d9fe0cc3143f99c5e55836a3ff6c0b66fc20c4d5
Certificate serial: 01974A7AFCEDCD3DEADCAE24B04DCB0D05D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft
Manifest number: 0A1B
Signing time: Sat 07 Jun 2025 13:01:03 +0000
Manifest this update: Sat 07 Jun 2025 13:01:03 +0000
Manifest next update: Sun 08 Jun 2025 13:01:03 +0000
Files and hashes: 1: 2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl (hash: 8bbSv5HBFBFHF/bFIUDXIZ+n/wxZC7ZYutLbYqJxy6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:fc:ed:cd:3d:ea:dc:ae:24:b0:4d:cb:0d:05:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9fe0cc3143f99c5e55836a3ff6c0b66fc20c4d5
Validity
Not Before: Jun 7 13:01:03 2025 GMT
Not After : Jun 8 13:01:03 2025 GMT
Subject: CN=ffab99f6adaa94a26ab58be02dcff4fddd112d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:51:46:88:8f:18:84:1c:16:b5:a7:67:4e:f1:
28:33:20:1b:d4:16:58:bd:89:27:d2:3b:b1:a2:d1:
a8:99:58:97:20:f4:1b:d5:72:11:f7:aa:c5:34:94:
23:1e:d0:2e:71:fa:d5:46:76:71:84:51:c8:4b:4e:
3e:9e:42:d2:c0:4e:82:79:e6:e9:fa:e2:e6:3d:09:
1b:4f:67:92:91:c2:c3:fc:ad:cf:e8:44:4b:13:bb:
ab:c5:79:11:e7:e0:76:95:34:65:84:30:5d:6e:ce:
74:23:de:1a:de:2c:54:34:60:05:e9:38:a6:98:a4:
85:d7:d1:92:35:d8:35:46:29:29:ae:04:fa:c2:54:
e0:85:fb:81:30:79:ad:81:b8:22:a2:93:b5:38:c9:
df:8b:03:70:52:7d:55:c8:27:d7:e5:1c:94:39:f0:
a4:e6:09:64:56:3d:68:23:48:69:d8:cd:73:7c:2b:
5f:8b:6c:69:54:84:cf:0e:35:3b:87:bd:ef:d3:76:
ad:e7:4a:18:06:44:9e:b7:5f:85:aa:12:b9:98:64:
7e:bc:b1:48:e8:19:39:47:53:40:f8:2b:a2:0e:58:
4e:a7:94:da:32:d1:22:a6:89:07:a7:2c:ac:12:4b:
0b:03:c7:24:8c:38:74:6e:fc:29:29:38:9f:a8:7a:
92:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:AB:99:F6:AD:AA:94:A2:6A:B5:8B:E0:2D:CF:F4:FD:DD:11:2D:17
X509v3 Authority Key Identifier:
keyid:D9:FE:0C:C3:14:3F:99:C5:E5:58:36:A3:FF:6C:0B:66:FC:20:C4:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:93:42:b4:8b:c6:6c:28:e7:73:3d:a8:95:ce:ce:f7:c7:b6:
76:28:32:19:fa:28:6f:f6:a2:a5:67:76:0e:97:61:6a:b6:1f:
ff:c7:dc:62:ae:a5:69:77:33:a2:7d:31:44:0c:63:23:2b:41:
86:a3:f2:a2:af:bc:89:e8:8d:a6:6c:d3:53:e5:bb:d5:ab:67:
71:d3:06:f6:e7:be:b1:34:43:25:f6:0a:c4:6e:fe:9b:d6:00:
f7:76:e8:90:79:17:db:03:84:04:3f:32:76:cd:96:59:e6:8a:
aa:b5:d2:85:99:b4:8b:c7:0f:fb:f9:ba:f0:7e:6a:25:71:8c:
0c:a2:ec:39:61:70:c0:2e:f0:be:2d:42:9a:94:60:59:75:fd:
e0:e0:a8:25:0b:a6:79:5b:6b:0c:31:b2:db:47:08:ea:5d:92:
54:29:0e:b9:85:2a:43:3a:dd:fd:c9:4b:16:ec:b3:73:8a:bc:
d7:b6:b8:35:51:73:9d:a3:a4:46:a1:2f:f3:ea:26:c9:4c:70:
f1:ce:3b:c1:29:6c:22:bf:90:b9:e7:57:00:ba:47:0c:90:db:
62:9c:68:74:11:61:ac:12:5d:69:f9:33:ca:99:82:30:f2:27:
d4:6d:a0:6b:39:6b:73:4e:88:e4:ea:eb:1b:66:3e:5c:2e:51:
98:e6:bc:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:26:39 2025 by rpki-client