Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
File: 2PWmbP0hpcrXopuOtc2SqkYDIMM.mft (raw, json)
Hash identifier: Ptbe0g17PEhO4/RjhmpW5NT19POyQbLmGcWdSvg171w=
Subject key identifier: 0E:19:4E:D4:B8:98:1E:7B:13:B5:D8:C3:E7:52:FC:04:CA:CD:99:16
Authority key identifier: D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
Certificate issuer: /CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Certificate serial: 01977007C0879F23E960297991AD7CA9E164
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 20:00:45 +0000
Manifest this update: Sat 14 Jun 2025 20:00:45 +0000
Manifest next update: Sun 15 Jun 2025 20:00:45 +0000
Files and hashes: 1: 2PWmbP0hpcrXopuOtc2SqkYDIMM.crl (hash: fz3n6B+/z6ZPrKe+nKKZwTZpPeE1i2IUJ2trCm7ihc8=)
2: 4yhoCs9M-fjQaMlDWlUpC1ERe-g.roa (hash: t+8njXgDpdo9kegDaGKO6tPmuatvzfS0I/p9sqY0v4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:07:c0:87:9f:23:e9:60:29:79:91:ad:7c:a9:e1:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Validity
Not Before: Jun 14 20:00:45 2025 GMT
Not After : Jun 15 20:00:45 2025 GMT
Subject: CN=0e194ed4b8981e7b13b5d8c3e752fc04cacd9916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3a:47:41:b5:72:e7:90:3c:84:cc:10:e1:3c:
2d:9a:f7:f8:be:ae:da:2f:a7:aa:c9:ac:a9:02:8f:
15:bf:44:56:bb:23:9d:d9:3e:50:d5:95:be:9a:16:
77:e4:11:d5:2c:07:65:23:ae:d0:5a:ed:dd:07:f7:
4c:04:cc:69:6c:ae:a5:c9:1d:fb:e7:48:33:0d:2c:
91:da:86:ff:61:4b:e8:28:23:ad:e4:21:c8:4b:bc:
a1:af:c5:86:f0:ef:fc:45:c5:df:73:2a:38:2c:37:
3b:3e:ea:0c:f4:e3:25:8f:8f:61:2c:60:dd:98:ff:
3f:44:b1:0f:c8:7a:7c:d7:1e:c1:49:9e:e0:11:41:
41:24:40:b9:06:85:3e:19:83:6a:ab:79:23:2c:cb:
f0:57:2c:dc:ae:8d:b5:cc:44:20:c5:cc:a0:fa:06:
f9:96:77:69:5d:e5:e3:ad:6e:ae:8c:7d:ba:41:c4:
5e:d3:fc:dc:6b:20:d0:5a:d0:12:af:5b:e8:4c:3a:
19:f8:10:ed:13:a8:d9:60:83:d0:ad:54:fb:d2:5c:
93:ab:11:5d:f0:10:8d:32:44:e8:fb:43:9d:6a:92:
4f:bb:d6:ca:c9:34:da:17:19:bf:6b:04:f1:23:22:
77:f7:54:24:b6:de:87:f5:d9:11:dc:5d:a4:a2:ff:
03:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:19:4E:D4:B8:98:1E:7B:13:B5:D8:C3:E7:52:FC:04:CA:CD:99:16
X509v3 Authority Key Identifier:
keyid:D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:f9:8e:2d:c8:76:40:2a:fa:87:04:68:a5:b3:e9:1c:8f:d7:
96:35:b7:7b:5c:11:e4:b2:1d:15:53:23:45:25:3f:02:03:37:
ec:3d:03:88:d7:3c:de:e1:3c:d9:9c:40:cc:70:a9:b3:ee:8b:
63:c6:d9:61:4a:5c:d1:47:55:26:af:fa:39:23:7c:e1:41:14:
35:99:4c:75:b5:f3:03:25:75:c1:08:3d:45:b2:31:51:37:58:
54:da:0c:53:54:0a:29:53:80:35:e5:58:3e:b1:e7:a9:0e:2d:
f7:00:cf:fa:b2:7b:4f:13:c8:9d:27:80:51:05:c6:16:f3:a6:
97:90:d7:a5:17:38:a4:68:db:a0:13:1b:9b:75:54:1a:a6:af:
90:8a:d5:2f:17:78:4b:5f:35:ad:6e:dc:40:80:f6:b2:f3:22:
70:f3:1e:41:18:c2:c1:ae:47:6d:4f:24:d7:57:29:4d:85:52:
56:be:89:ed:9b:72:cc:df:07:cf:b8:10:b3:d3:19:d4:f1:f1:
55:f9:ab:e3:68:d0:b0:ad:83:f2:3b:fd:85:47:c0:04:84:24:
04:5c:b2:31:32:d0:39:57:d6:83:01:cf:d2:b7:53:3f:b0:3d:
f5:b0:fb:bc:8a:be:0c:24:c9:39:b4:a0:63:95:94:d5:b4:d4:
d6:cb:36:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:09:54 2025 by rpki-client