Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
File: 2ZaAKfEkCW6rlV35t6gciMszOgU.mft (raw, json)
Hash identifier: qjTVZfWaMpqCMbKRuIwrl6ekZ63JYn2n+DytUwngSnM=
Subject key identifier: F3:EB:0E:ED:BC:7E:7D:F8:6E:BC:62:D1:1E:4D:42:0F:96:42:0E:94
Authority key identifier: D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
Certificate issuer: /CN=d9968029f124096eab955df9b7a81c88cb333a05
Certificate serial: 0197470C0B603520F88F471AB2C04FCA7C6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
Manifest number: 0D2F
Signing time: Fri 06 Jun 2025 21:01:00 +0000
Manifest this update: Fri 06 Jun 2025 21:01:00 +0000
Manifest next update: Sat 07 Jun 2025 21:01:00 +0000
Files and hashes: 1: 2ZaAKfEkCW6rlV35t6gciMszOgU.crl (hash: YxmMyiqS4nHOS3yb+yH8Bg6BbTAOe98Eg/8gncTJdTo=)
2: anoG2QxpBajiR81r5Nnqj0baENo.roa (hash: KO9yPbtejqfpWJpsarLnmq3okmJ48dSkW7G2+vLUOFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 21:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0c:0b:60:35:20:f8:8f:47:1a:b2:c0:4f:ca:7c:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9968029f124096eab955df9b7a81c88cb333a05
Validity
Not Before: Jun 6 21:01:00 2025 GMT
Not After : Jun 7 21:01:00 2025 GMT
Subject: CN=f3eb0eedbc7e7df86ebc62d11e4d420f96420e94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:32:88:38:fa:d1:8f:ba:32:0e:5f:57:75:7e:
78:ac:94:de:15:89:f6:44:66:3e:b8:2e:5c:e5:f9:
d6:3c:8e:f2:f5:51:7f:48:cc:37:76:f7:3c:a7:58:
e6:af:9c:70:41:21:e1:13:0e:fc:f8:87:38:27:ed:
b1:2c:f8:21:9f:11:ae:8b:97:59:9f:a6:f3:76:9e:
b7:f1:7a:02:56:e6:9c:fe:4a:cc:39:ae:c4:06:fd:
7a:4c:bc:ba:94:08:42:eb:07:59:dc:40:5c:2d:5d:
32:09:47:33:03:c2:60:e5:98:1a:d4:0a:7f:df:83:
47:55:68:5e:05:80:db:0e:6d:04:bf:97:b6:1d:c2:
85:a7:6e:20:86:c7:da:ea:6c:39:86:cb:97:92:c8:
e0:3a:e8:72:ad:1a:41:2b:d7:ec:a7:b4:51:cd:ce:
95:c4:ed:cc:d8:28:5a:e2:9b:11:ae:e1:e4:a3:21:
77:d5:0d:52:1e:d5:f1:9c:27:55:5a:3e:1d:b0:a9:
b0:17:5a:94:9e:dc:57:25:1d:ba:d4:b4:3d:a8:c8:
df:9f:92:7e:aa:c4:ce:09:c4:3c:f0:66:d2:ba:f9:
7f:b1:56:80:38:99:e8:e0:cb:5b:4f:9f:c8:14:ee:
ea:04:6a:da:a4:d6:79:cb:fe:1b:42:5e:11:e4:9b:
d5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:EB:0E:ED:BC:7E:7D:F8:6E:BC:62:D1:1E:4D:42:0F:96:42:0E:94
X509v3 Authority Key Identifier:
keyid:D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:49:a6:a6:f7:c9:68:a7:ed:33:23:79:9b:26:38:4d:4f:f5:
2c:db:ee:cb:fe:0b:04:0d:86:b6:24:e4:d1:3f:3c:07:f3:50:
ae:11:1f:eb:6e:91:c8:32:49:b6:7c:53:cf:3b:4c:8f:b5:da:
3e:c7:78:e4:fa:b7:a4:af:d8:28:97:12:3f:ef:48:9b:43:ab:
72:22:9e:3c:37:b4:b8:36:1d:05:7d:0c:76:7c:f7:07:db:f5:
fb:55:7d:2a:d4:75:97:33:00:a5:2c:ec:3e:7b:8c:79:11:08:
0e:6f:5f:f7:14:7a:72:49:ab:8b:7c:22:f3:6d:9c:b0:47:24:
f1:24:98:69:1c:b0:7b:57:cf:9c:a9:ed:99:cb:f2:fe:71:c7:
b2:09:51:ce:cc:ee:9c:d9:8d:15:0e:7e:3a:70:c9:9f:c9:5d:
06:69:6e:a3:df:70:33:e1:de:33:1e:46:7b:52:26:75:33:0d:
c5:1d:d2:d5:75:c8:75:4e:0b:18:4a:fd:93:b8:fd:7f:a3:a6:
31:ca:94:60:a0:ad:1a:15:2f:69:f3:f7:06:c1:95:de:87:5a:
88:57:3a:58:ab:f5:2b:01:39:91:44:1c:07:79:48:d9:56:ac:
88:e0:4d:90:ef:2d:08:07:4d:91:a8:70:50:75:01:0f:69:b1:
39:08:2d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 05:56:15 2025 by rpki-client