Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
File: 2l7eZe_t7t-MigSyRaOl32OmnoQ.mft (raw, json)
Hash identifier: /Of16ayanx6lVlmM8ooAhWeZ7mAF2EXerOZcYZyImOo=
Subject key identifier: 83:59:F4:94:07:5E:93:84:C0:B3:74:E3:17:9D:33:C2:76:DB:01:BD
Authority key identifier: DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
Certificate issuer: /CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Certificate serial: 01974E573E69834B6B5A3AF970CF7A3A6C7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
Manifest number: 157D
Signing time: Sun 08 Jun 2025 07:00:29 +0000
Manifest this update: Sun 08 Jun 2025 07:00:29 +0000
Manifest next update: Mon 09 Jun 2025 07:00:29 +0000
Files and hashes: 1: 2l7eZe_t7t-MigSyRaOl32OmnoQ.crl (hash: K/CO0cQ3VVk05QqYPUXEeFhAm/hV1CBRu9RFYkimHB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 07:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:57:3e:69:83:4b:6b:5a:3a:f9:70:cf:7a:3a:6c:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Validity
Not Before: Jun 8 07:00:29 2025 GMT
Not After : Jun 9 07:00:29 2025 GMT
Subject: CN=8359f494075e9384c0b374e3179d33c276db01bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:84:46:54:05:15:59:00:92:9e:8d:4f:7d:1e:
a5:3d:f2:83:e4:fa:6f:4c:36:15:df:22:f7:db:27:
f7:17:1d:ae:b5:84:e9:9d:9a:56:92:2a:7c:63:ad:
75:bb:f5:b6:7c:77:6b:2e:62:30:b5:5c:23:0c:c6:
4c:bc:3d:64:54:b1:f7:50:67:bc:86:06:d2:0f:61:
fd:f8:4f:31:c6:93:ae:ed:06:41:55:8e:1a:fc:84:
8f:ad:78:a9:a5:99:f7:b3:a5:be:d4:cf:51:96:92:
71:f2:7a:68:eb:97:54:34:df:c0:0d:75:fb:0d:90:
6b:81:43:5d:b6:ae:28:bd:b7:06:fa:d7:50:00:3f:
65:9c:f8:36:c0:b0:94:11:ac:b4:6c:72:b0:cc:6c:
1b:3b:b9:4e:00:ee:25:63:bf:ad:77:41:d7:38:02:
76:ed:93:ba:a7:b7:69:16:fd:a7:90:89:75:25:56:
23:c1:66:48:63:99:a8:c0:06:e9:a4:df:aa:51:d8:
2c:8f:bc:4e:8e:ff:60:02:35:37:4c:ee:e3:af:5e:
31:f4:be:e4:d0:35:3c:1e:b7:8e:60:8f:2a:28:4d:
01:c4:79:fd:d4:9c:1c:67:79:8d:ca:4d:d0:0b:b7:
bf:96:ad:44:d4:7e:e5:ac:8d:7e:43:76:6b:82:3b:
7d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:59:F4:94:07:5E:93:84:C0:B3:74:E3:17:9D:33:C2:76:DB:01:BD
X509v3 Authority Key Identifier:
keyid:DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:51:1b:8b:a1:f2:ce:1a:6e:46:7b:71:f6:1e:71:97:79:da:
3d:14:59:86:da:e3:bb:16:4d:39:b9:2a:e8:1d:3b:a6:a7:62:
88:de:91:7e:60:c2:49:78:6a:46:b9:c4:5d:7d:1e:0e:ae:d3:
9a:ea:d8:e8:ff:48:03:15:e6:0d:b5:7c:5d:cc:a9:09:69:9b:
56:bc:d9:93:81:11:a3:0f:6e:73:ee:e7:a6:98:7a:31:87:f5:
c8:c4:4e:61:39:ef:2f:06:37:cc:42:b7:0a:94:ae:f9:2c:65:
20:8d:85:d4:0f:68:4d:fd:9e:9e:7b:91:b0:96:32:21:77:26:
3c:dc:ff:dc:24:73:02:28:b9:33:47:8c:0a:1b:bd:85:b6:fa:
41:03:c8:6c:b1:7e:bf:a7:f2:8b:2a:e3:a8:ea:9b:58:a0:10:
aa:c1:cc:bf:d0:ce:02:01:e8:f5:74:3f:2e:d1:02:1b:89:74:
4a:ab:39:78:5c:39:9a:a2:b1:9f:3e:0a:8c:30:43:bb:2c:0f:
64:1d:b1:a6:33:55:61:7d:4a:1a:8d:99:ad:b3:ec:f0:6c:af:
32:1e:1b:06:25:65:0d:fb:f6:96:12:21:6e:e0:7d:cd:48:19:
76:a0:45:5b:d2:f5:43:5e:47:58:18:c3:ac:b4:0e:5f:ff:a3:
39:77:32:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:28:33 2025 by rpki-client