Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.mft
File: 2nVBcltyi1qJ87-vIPh2VWPC8_s.mft (raw, json)
Hash identifier: OB7LYXZP5tbAmcMDTmCLaL/f6/n5NqUBJ1JsgRK8iT4=
Subject key identifier: BC:34:C2:E3:82:E0:BB:70:FD:58:EF:BC:06:E2:B3:01:AE:4E:4A:AE
Authority key identifier: DA:75:41:72:5B:72:8B:5A:89:F3:BF:AF:20:F8:76:55:63:C2:F3:FB
Certificate issuer: /CN=da7541725b728b5a89f3bfaf20f8765563c2f3fb
Certificate serial: 019875D201A9CB4D4A2D1A7BD358A788F598
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nVBcltyi1qJ87-vIPh2VWPC8_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.mft
Manifest number: 1614
Signing time: Mon 04 Aug 2025 16:02:33 +0000
Manifest this update: Mon 04 Aug 2025 16:02:33 +0000
Manifest next update: Tue 05 Aug 2025 16:02:33 +0000
Files and hashes: 1: 2nVBcltyi1qJ87-vIPh2VWPC8_s.crl (hash: yojarFJlzM0bBnd7cAt/IBYBtqbMvgH9dVoy2sPHv4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nVBcltyi1qJ87-vIPh2VWPC8_s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:d2:01:a9:cb:4d:4a:2d:1a:7b:d3:58:a7:88:f5:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da7541725b728b5a89f3bfaf20f8765563c2f3fb
Validity
Not Before: Aug 4 16:02:33 2025 GMT
Not After : Aug 5 16:02:33 2025 GMT
Subject: CN=bc34c2e382e0bb70fd58efbc06e2b301ae4e4aae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9f:0f:a6:5f:fb:71:4a:94:96:20:fd:1e:08:
f4:dc:23:c7:0b:fe:68:54:b1:88:14:88:16:68:6d:
83:9b:e8:9d:95:62:35:91:35:b9:13:40:5b:57:b6:
0a:17:a5:f4:d5:99:8c:d7:50:52:0a:3a:cf:98:1f:
09:84:21:a9:ea:26:a7:d6:d1:5c:77:05:f2:5a:d7:
f2:5d:f2:e6:d3:71:c5:7c:17:28:09:be:04:1c:fb:
b6:0a:11:23:be:bf:b7:4f:d9:87:c8:18:d5:31:69:
e0:54:88:37:0c:39:5b:68:21:d8:67:e3:17:7e:6a:
71:79:39:c7:b6:c6:78:c7:75:ea:f5:d3:6a:a0:79:
31:75:94:88:4b:42:2e:bd:89:8d:0f:e1:56:bc:49:
8f:c5:5c:06:bc:05:db:c2:15:83:f2:80:ce:e7:d2:
55:36:fc:3b:68:bf:7a:9a:3e:ee:0c:5c:9f:1c:89:
7e:4f:4c:89:ff:43:3a:3b:c3:c6:b2:90:8f:9a:3a:
8b:56:a2:04:15:2e:b2:ef:29:f2:da:05:84:cc:6c:
8a:79:57:80:9d:59:f4:fb:9b:a8:6f:e8:52:31:9e:
d9:eb:c3:96:95:9e:f9:72:31:7d:a6:a0:cd:3a:fa:
3b:ab:3e:a2:b3:32:1a:e7:ca:50:6c:aa:43:e4:c8:
b7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:34:C2:E3:82:E0:BB:70:FD:58:EF:BC:06:E2:B3:01:AE:4E:4A:AE
X509v3 Authority Key Identifier:
keyid:DA:75:41:72:5B:72:8B:5A:89:F3:BF:AF:20:F8:76:55:63:C2:F3:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nVBcltyi1qJ87-vIPh2VWPC8_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/4d39b1-fc9a-4476-a79c-db8fd507d1b6/1/2nVBcltyi1qJ87-vIPh2VWPC8_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:21:c4:c2:bc:e0:f3:f2:16:99:b6:8d:98:20:6a:34:a1:a7:
f1:22:f3:74:06:fc:c6:6d:ea:fd:39:55:20:d5:ad:a1:f8:95:
81:5c:fb:7e:c2:ff:c9:cc:18:15:80:1f:14:1e:ff:0e:f1:e2:
16:21:d2:ac:38:33:52:2e:01:87:31:8e:9f:0c:91:ff:87:06:
90:59:87:7c:33:71:71:ac:04:7e:ce:21:fa:aa:e3:11:02:ee:
0d:e7:e0:e0:0f:f9:6a:e3:9e:e9:dd:a2:ad:c8:d9:46:6c:ea:
84:d7:a2:3f:cb:47:f7:85:f3:ee:06:19:83:4b:8e:6f:a3:5c:
26:0a:81:08:c7:2f:2c:66:50:3f:97:df:c5:16:11:eb:7e:67:
29:95:df:25:65:6f:e3:8e:c8:c4:ec:4c:4f:2f:f8:19:cc:90:
1e:e6:4c:43:77:75:9d:94:a3:24:39:0b:c7:a2:01:8e:e3:c2:
ae:fe:0d:77:d2:67:16:4e:36:ba:02:0c:59:60:69:d4:4b:73:
8c:3f:31:c0:42:1c:3d:22:c6:51:93:61:e9:99:b4:ec:37:cf:
a6:ff:82:45:71:b8:f3:35:0f:87:ff:20:2a:6e:76:63:92:ab:
a9:ea:fe:b9:93:2e:83:bb:a9:96:50:4d:72:60:67:bb:26:b8:
65:30:de:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 21:30:58 2025 by rpki-client