Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json)
Hash identifier: l1YeiMJl5RbFoiWi51XMd0owyfX9REZcckhi4REG4Qo=
Subject key identifier: 8E:8D:F2:CF:88:E0:8D:5B:38:A4:13:FF:33:63:D6:5A:22:F9:1A:05
Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac
Certificate serial: 019770E31391D985C3CEC54C2EE730F67DE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
Manifest number: 0B2A
Signing time: Sun 15 Jun 2025 00:00:19 +0000
Manifest this update: Sun 15 Jun 2025 00:00:19 +0000
Manifest next update: Mon 16 Jun 2025 00:00:19 +0000
Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: Qjen7O5whL5Rx7oDnOeU8ZeZ10UpoXY2FfGdrLZByMQ=)
2: x6hLDer_XW1q_iEu4GXkzkZyC4s.roa (hash: WqVvea5/LNqbNIIZsdml33Mg9/QcNbUM12u8YdmaIWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:e3:13:91:d9:85:c3:ce:c5:4c:2e:e7:30:f6:7d:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac
Validity
Not Before: Jun 15 00:00:19 2025 GMT
Not After : Jun 16 00:00:19 2025 GMT
Subject: CN=8e8df2cf88e08d5b38a413ff3363d65a22f91a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:40:ad:a7:9a:73:fa:a9:69:ee:d3:ee:e4:d7:
58:43:f1:64:0c:ee:7a:a6:21:54:6d:49:fd:70:cc:
26:7a:7c:a0:1d:d7:26:78:32:eb:93:49:04:38:18:
a7:1e:b4:e1:1b:8b:2a:18:ab:c5:76:5e:a4:0e:01:
71:36:f8:cd:9c:41:6f:9d:d9:75:94:8c:46:d7:ca:
56:58:8d:ef:cc:cd:e5:bc:67:0e:5e:fc:aa:5d:f3:
80:9e:c2:c4:60:83:56:5b:e3:f0:28:0a:49:76:86:
19:4f:98:7c:3b:cf:51:3c:63:8b:81:12:01:57:4e:
dc:2d:1a:40:3a:aa:47:c5:d0:e8:21:4a:ec:19:0b:
bd:2f:ef:a7:07:f1:fe:72:95:b8:5d:d8:31:18:22:
71:fa:af:9c:58:d9:7e:57:ce:43:fc:a3:13:8e:5b:
b0:ad:bc:34:ce:c9:3a:18:15:44:7b:f9:4c:0b:ce:
ce:0e:63:fd:23:56:21:3f:bb:74:28:9a:eb:5a:87:
f7:fe:05:c3:3f:23:da:a4:b3:dd:13:38:26:b5:c4:
31:63:5b:04:19:04:b1:95:a4:5b:d9:36:5e:1f:4c:
61:34:c2:56:0a:8f:ea:b1:72:46:c5:0c:ec:7f:52:
0c:a2:8f:ae:4f:bd:98:62:ac:98:2d:8e:cc:ac:41:
be:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:8D:F2:CF:88:E0:8D:5B:38:A4:13:FF:33:63:D6:5A:22:F9:1A:05
X509v3 Authority Key Identifier:
keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:96:c0:52:88:12:54:70:12:0f:a6:1e:68:06:78:9e:8e:38:
e4:ff:ad:03:df:60:b4:df:d9:67:48:c0:6c:78:9d:ea:88:cd:
50:c3:76:bc:ad:b9:12:91:07:2e:36:8a:16:f8:2d:e6:8d:7c:
81:e9:8b:ba:e3:11:72:41:93:42:38:51:a5:23:0e:0c:5d:03:
11:64:4a:93:28:ff:02:54:80:86:92:1a:fd:72:68:fb:15:96:
4d:9c:da:3c:db:8e:8c:e3:d9:bf:f8:2f:bf:1e:d6:91:49:27:
47:a5:74:a3:00:03:05:17:6c:0c:38:b6:a3:a8:ee:22:fa:fa:
2c:c9:67:c6:f0:8a:6f:91:71:1e:d0:52:2b:4a:15:f2:9b:19:
5a:47:be:7c:8d:78:8e:42:ca:f1:dc:2b:bd:07:75:81:6d:b9:
d6:fc:cf:c1:52:ed:22:6c:36:c9:9e:48:e8:fb:ff:58:f0:52:
b4:eb:68:c0:ef:c2:63:db:21:a9:ad:3a:30:fa:78:dc:f7:e7:
ed:94:1c:75:fd:2d:0a:5f:96:c8:07:e1:42:92:d3:2f:15:cd:
db:b2:1e:59:51:24:1c:a4:e9:58:f1:24:7c:61:ab:d9:41:af:
33:0e:00:6f:d9:69:29:60:1f:3f:6a:b0:5a:98:dc:71:1d:2e:
fd:8b:27:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 04:00:01 2025 by rpki-client