Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
File: 2JFWCWVvCPeijSS3xLqbY5ygsAk.mft (raw, json)
Hash identifier: BgzoRbGIm9QsB2GPFnAH4CgKV4jPJ3fvB5RomWcLjQ0=
Subject key identifier: 6C:73:20:CB:E3:82:AB:BD:12:8B:6A:E7:8F:DF:19:F9:45:0A:F3:B0
Authority key identifier: D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
Certificate issuer: /CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Certificate serial: 01977AF9AFB4B99A4C9912FB147AB0091B6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
Manifest number: 0FFB
Signing time: Mon 16 Jun 2025 23:01:13 +0000
Manifest this update: Mon 16 Jun 2025 23:01:13 +0000
Manifest next update: Tue 17 Jun 2025 23:01:13 +0000
Files and hashes: 1: 2JFWCWVvCPeijSS3xLqbY5ygsAk.crl (hash: 4cDVuw1y/9snSwGTa3jvgaU4+V2sS+TGYUlTIj+Pzec=)
2: Wi60RxjWIlDPb3_szVmN-Gl0qoE.roa (hash: IAjzw2r7E4lx4vW0Aq4BO6OsCC7MgvRuI1axCmQxfb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 21:51:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7a:f9:af:b4:b9:9a:4c:99:12:fb:14:7a:b0:09:1b:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Validity
Not Before: Jun 16 23:01:13 2025 GMT
Not After : Jun 17 23:01:13 2025 GMT
Subject: CN=6c7320cbe382abbd128b6ae78fdf19f9450af3b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:22:dc:38:17:5e:30:38:6c:bd:e8:ee:05:3e:
40:b0:4d:0d:b8:8b:32:b7:22:8b:8c:49:77:d7:a3:
9f:dd:a2:bf:67:b0:ca:ea:f9:d5:5a:80:ca:f3:87:
11:0d:07:54:56:f3:a2:a0:63:75:d2:ea:8e:b8:95:
4a:9b:dd:a7:a5:b8:9f:8a:b9:7f:60:09:84:98:da:
4a:c9:7a:2a:8f:bd:89:ca:76:62:de:9d:dc:75:38:
46:30:48:eb:be:29:0f:20:5f:e1:30:fd:9e:5f:42:
61:67:a4:7b:c7:1b:23:02:d5:d5:1a:ba:15:e5:f6:
ed:f3:b7:e0:d0:dc:3e:c4:89:69:3f:96:e8:81:fc:
1c:3c:69:01:05:0d:c1:16:cc:b6:c5:8e:09:bc:0f:
e8:fc:54:9a:45:dd:4d:48:3b:7f:ca:17:dc:e9:8d:
a8:ad:b5:6d:50:0a:b6:51:5a:f7:78:6a:ed:1f:99:
13:ae:7d:b0:07:a0:7c:35:29:1a:4c:5c:a3:fb:fd:
0f:b5:79:68:ec:1e:55:cf:f9:97:f7:fd:7f:17:dd:
02:51:d3:95:3f:fe:d9:8d:da:a3:5b:ad:59:7d:34:
54:c1:cc:07:49:36:f8:5e:d9:00:4a:0e:df:a4:f2:
c3:21:52:7f:dd:db:ee:6a:0d:ac:52:e3:17:99:d3:
ed:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:73:20:CB:E3:82:AB:BD:12:8B:6A:E7:8F:DF:19:F9:45:0A:F3:B0
X509v3 Authority Key Identifier:
keyid:D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:70:7c:8e:4f:6f:c8:55:17:60:43:c4:4d:b7:8b:3e:84:78:
84:a9:da:80:67:b6:56:d6:74:7e:79:19:f8:67:68:ce:f3:74:
3a:30:1d:b2:44:13:f9:ed:6e:de:e3:da:58:0c:fe:43:e0:f7:
5a:5e:a3:19:8c:a3:4a:a9:b5:6a:e0:37:00:ab:3d:79:8c:f9:
31:ea:a5:04:ae:d8:4a:12:35:74:64:40:eb:f0:e6:1c:3d:c0:
38:01:8b:a9:9a:28:33:4e:4b:27:64:6a:27:2a:0c:f2:30:b2:
b7:cb:cd:de:90:c1:e6:e3:ac:d5:c3:e1:48:fb:4d:cc:a7:8d:
33:a6:69:31:4d:59:ea:74:eb:45:fe:4a:b4:7e:45:34:9b:89:
91:dd:fa:49:7d:a8:cd:dc:09:30:41:e7:9a:09:cf:29:18:90:
3e:ec:28:85:6d:79:60:80:3d:65:e1:ab:47:f4:02:5a:e6:00:
55:26:98:2f:29:23:26:9a:9e:e3:86:9c:74:8c:e5:f3:c8:94:
44:23:a7:c9:f8:1f:72:ea:ed:1b:dc:bf:5a:d6:ec:db:6e:30:
4a:f1:76:ae:d8:fd:a6:59:de:52:db:f8:59:f2:4f:d5:20:95:
34:32:34:39:8f:54:58:6c:bb:9d:cb:bd:95:71:31:d8:e8:f0:
40:83:1d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 02:53:16 2025 by rpki-client