Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: ZWT/c099apV6bB6B53Kqk3piU+r+ULGKpRttSS/RPXE=
Subject key identifier: 42:14:AB:4B:44:56:94:EE:7D:15:C0:A8:EC:89:A8:D5:E1:F0:F6:7A
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 019785EAC0F5116D0DC7DED545CD80D0F78C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 1169
Signing time: Thu 19 Jun 2025 02:00:43 +0000
Manifest this update: Thu 19 Jun 2025 02:00:43 +0000
Manifest next update: Fri 20 Jun 2025 02:00:43 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: U9jS64ofufJ4V9bLaoF+5xZd3jgcZ7X+LsWPJwGbilU=)
2: B9-JyKOh9vcA8Yt248kp1OHsLjE.roa (hash: IbF0FRhBYEIf5hZ2KcvfEljtf1YgGGazPG/5I71dHJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Jun 2025 02:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:85:ea:c0:f5:11:6d:0d:c7:de:d5:45:cd:80:d0:f7:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Jun 19 02:00:43 2025 GMT
Not After : Jun 20 02:00:43 2025 GMT
Subject: CN=4214ab4b445694ee7d15c0a8ec89a8d5e1f0f67a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d5:9f:45:b9:b0:61:11:fd:e1:0b:d1:3d:bb:
b4:9f:e6:76:2c:07:44:9a:2e:e8:2a:40:15:13:54:
a3:6e:8d:1b:cf:7e:92:68:0c:1d:1f:89:48:04:33:
1a:39:2b:11:21:1b:cc:55:a7:3b:fe:89:8c:16:2b:
b2:71:ba:ae:87:82:d6:d0:c2:be:42:e0:1f:cb:50:
7d:17:3f:a8:3c:94:3c:19:05:6a:e2:e3:02:b1:9a:
b9:8a:e7:3d:ca:8f:cb:5b:4f:fa:8f:f6:3b:f9:20:
4c:93:7a:58:07:be:8c:7c:a3:64:6e:f2:f6:82:62:
5a:eb:a2:ef:7b:90:1a:55:16:53:5b:a9:ea:5f:50:
33:3d:73:3f:ec:1d:05:a2:db:5a:97:56:09:b8:0d:
42:27:eb:cb:2a:e9:f7:19:69:5a:eb:07:42:09:8d:
a6:a1:74:6a:ba:e4:b0:1d:6b:54:ba:21:3d:46:2f:
26:30:4a:a4:00:a3:c8:c9:a9:c8:2d:52:81:0c:5d:
33:f1:1d:e7:31:56:15:65:af:79:1c:8c:89:b8:25:
5b:aa:33:39:bd:3a:8e:73:0d:ef:2d:ea:4d:31:1d:
16:f5:84:04:06:3e:86:b1:0e:7d:1b:4c:11:ea:3a:
e0:76:84:4f:36:0f:6e:26:d2:15:99:fd:30:31:cc:
e8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:14:AB:4B:44:56:94:EE:7D:15:C0:A8:EC:89:A8:D5:E1:F0:F6:7A
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:3f:d3:4d:1b:a6:fa:6b:58:4a:a8:23:07:c1:13:6b:a5:8f:
98:22:71:36:d2:12:a9:ab:eb:3d:37:85:51:c6:51:55:43:29:
4b:23:31:63:15:23:6d:35:5b:92:1a:50:e7:26:b5:09:cc:ba:
29:25:44:4b:68:68:68:8f:d8:61:20:95:8f:84:4b:23:f7:a6:
a4:df:8d:1f:8b:54:9f:03:bf:c4:38:c2:3e:a8:4f:d3:d2:33:
cc:bd:a3:9b:fc:e6:22:6a:9f:a4:c7:ed:4f:8e:dd:83:e8:3c:
5f:87:69:2c:6f:51:16:56:91:26:cc:a6:99:8c:61:8e:1e:0d:
f5:1e:f8:a7:fa:b1:04:27:8f:55:aa:93:56:69:04:b0:36:c4:
56:4e:cb:c0:69:4a:e4:ce:7a:2b:08:5f:6e:74:76:8d:c7:54:
0d:0d:83:ff:66:ed:28:53:41:ed:ef:6f:a8:af:7e:cd:cd:7b:
d7:f4:57:5f:5c:11:8c:85:74:e5:7d:07:bb:13:2c:ec:8b:83:
a1:85:07:c6:d4:45:e2:4c:cc:da:29:96:b0:ff:c7:f4:c5:09:
44:36:11:bc:83:a6:b5:a3:e5:a7:df:10:b3:7c:ce:b3:cf:58:
4b:e1:d1:47:49:9c:97:54:67:d9:cf:fe:fa:dc:55:d1:ca:dc:
1a:96:28:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 12:55:57 2025 by rpki-client