Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
File: 2axioKJWftFz3CqtN25FXIW8trs.mft (raw, json)
Hash identifier: Zs6FpNCvyxspHnFmWc13Sb1jd8a8WFmidIUGAAIbhB8=
Subject key identifier: 3A:B8:30:30:1E:B4:74:F5:1E:B0:AF:A3:2A:BC:55:10:11:35:47:0A
Authority key identifier: D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB
Certificate issuer: /CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb
Certificate serial: 019873E22E3B77D3E3D379111A43772DCB14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
Manifest number: 1613
Signing time: Mon 04 Aug 2025 07:00:59 +0000
Manifest this update: Mon 04 Aug 2025 07:00:59 +0000
Manifest next update: Tue 05 Aug 2025 07:00:59 +0000
Files and hashes: 1: 2axioKJWftFz3CqtN25FXIW8trs.crl (hash: E1xvs8uwT3ojNJ7vEginKdT9ZkXsGwsbHVN+cFO8VWo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:2e:3b:77:d3:e3:d3:79:11:1a:43:77:2d:cb:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb
Validity
Not Before: Aug 4 07:00:59 2025 GMT
Not After : Aug 5 07:00:59 2025 GMT
Subject: CN=3ab830301eb474f51eb0afa32abc55101135470a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b3:07:07:9e:de:9d:7f:2c:32:0c:1e:2f:56:
f3:74:83:b9:b6:da:88:55:c8:7b:c5:31:f4:ab:ad:
63:11:a0:c4:c8:49:56:1d:3a:75:a3:ff:0e:4f:b1:
71:cc:11:3f:47:fa:b1:81:6b:5f:dd:ce:87:db:ab:
41:0a:30:1a:54:d0:7b:a0:a6:3d:e7:f5:b5:a1:4f:
a6:13:9c:14:62:43:f6:45:54:49:eb:ac:c9:c0:13:
95:7a:ca:89:77:fd:45:09:1b:a0:97:bc:a2:bf:c8:
fd:1c:9c:45:de:0f:22:7f:d0:3c:c7:5c:6a:5f:89:
7a:80:da:b7:6b:b2:40:e3:0f:bd:7b:cf:81:98:42:
75:12:5d:3f:cd:df:17:59:88:fc:d6:14:30:5a:a7:
d1:b4:9a:5a:f2:50:cd:c3:d7:7e:1c:ea:10:2f:4c:
10:9d:c4:d6:0d:71:d3:e1:f2:c8:fa:74:be:df:cb:
1b:22:40:68:47:55:a5:ab:b9:c2:e5:59:47:e4:92:
aa:37:dc:8c:a9:2c:ba:d0:75:c9:7e:2a:71:f6:d2:
02:22:85:38:ca:66:2f:c1:2e:51:70:29:00:d1:d2:
70:76:f3:ad:fd:f0:eb:da:5a:06:79:28:dc:62:95:
58:f6:bd:69:2d:c8:5f:d4:97:70:5c:16:63:ba:a4:
38:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:B8:30:30:1E:B4:74:F5:1E:B0:AF:A3:2A:BC:55:10:11:35:47:0A
X509v3 Authority Key Identifier:
keyid:D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:cf:32:0e:72:73:e7:d1:18:62:ba:67:74:e2:5e:1c:7f:f4:
c9:6e:4a:74:67:e9:af:b3:90:6a:3a:fc:58:aa:6d:d4:30:b8:
69:f0:9e:1e:8f:96:93:b4:79:eb:f0:ba:fa:02:62:7f:0b:46:
9a:28:84:a6:a7:05:95:95:92:87:6b:40:4b:e2:ff:1d:4d:d8:
ec:5a:1e:f3:07:05:98:32:fb:36:f8:82:0b:b9:d5:9a:1d:17:
51:56:83:d8:d5:6d:f3:b9:72:9e:cc:08:f7:a7:fa:db:51:e5:
d5:61:64:e1:68:96:a3:23:b5:45:37:7b:25:af:cf:f4:67:c5:
a4:9e:af:bd:3f:46:7a:f4:05:f9:e5:5c:ad:08:4a:fc:07:90:
17:f7:b1:2c:b8:b5:ba:ea:a1:80:24:db:01:bc:92:8a:1b:7e:
13:a0:46:3e:90:c1:b5:78:d3:1b:66:bd:f9:a0:e8:91:84:a7:
34:ac:42:e4:93:4d:be:c0:41:2f:40:8f:3d:48:1d:60:ed:2b:
4c:98:52:01:46:49:99:9a:c3:7d:f6:9d:76:8b:f9:26:81:6d:
27:c4:09:ce:14:f5:16:09:3b:c7:07:e1:12:3d:31:fc:cc:00:
b6:1f:a8:f6:23:d2:2c:f8:57:fd:07:32:a2:7c:19:e1:cf:dc:
4e:57:cf:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:15 2025 by rpki-client