Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
File: 2ChPGM1EYEvdbQj02HjcYUVsQP0.mft (raw, json)
Hash identifier: 3KLXZBL24O68IO8gckc32cav9trw+6BNAmwlE4E0GbM=
Subject key identifier: DF:B2:36:53:5E:2D:90:9F:A4:0F:90:06:C4:3F:9C:64:5D:7F:DD:48
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 019874870CB8C53E46FCFDE8170E30896021
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
Manifest number: 1628
Signing time: Mon 04 Aug 2025 10:01:04 +0000
Manifest this update: Mon 04 Aug 2025 10:01:04 +0000
Manifest next update: Tue 05 Aug 2025 10:01:04 +0000
Files and hashes: 1: 2ChPGM1EYEvdbQj02HjcYUVsQP0.crl (hash: FHJipzvFXuwHSfpRq6NKp6TKQWtdbfAhIV5vnAU7+4Q=)
2: QwB_J4IBjr_kwpZ0DSZt7jLyFUw.roa (hash: xjQoVVO98cxf92eXukztlmvd0mAJHZVRoWG3GH3edIU=)
3: RZQ5y55NZ91q7qGueZI2kyy2lHI.roa (hash: s/DyWvu0J1swkDaWXLLyRdJ0euIh4+uqvas0DU4Xq7I=)
4: noQO1tLrNCKz3bIWnBbDMmvuYLg.roa (hash: hYTtEju7KkB6LYquIBvGjeZyYymRK8/pFRz4XyGZMT8=)
5: qWeBIgMT9yofaevmnsJv-k3J7gM.roa (hash: OVmNg3h2HayVISC+svzIkwU6u8HmPx4SN/OehOmAqgY=)
6: qq3OJ7E8FdGE4BJdu3ZOq4LInY8.roa (hash: jyVlOFzMs6a5a3ty01oIP3DwXzFAJhXu3CIHkhRdIo8=)
7: v5y-XO_c3BUL4I2vKl0yvM3sR48.roa (hash: job18wRUBRjomyukO0QxaFg1pEdwxYB+4rsX0iFAoJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 10:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:87:0c:b8:c5:3e:46:fc:fd:e8:17:0e:30:89:60:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: Aug 4 10:01:04 2025 GMT
Not After : Aug 5 10:01:04 2025 GMT
Subject: CN=dfb236535e2d909fa40f9006c43f9c645d7fdd48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:cc:de:97:0c:16:f0:ff:9a:f9:36:2e:3c:2a:
13:8a:0a:38:ad:69:73:20:0b:83:da:cb:35:8c:76:
c9:11:a8:19:c3:de:11:eb:b3:76:1b:1b:14:68:7d:
7e:94:4b:58:34:3f:8a:1d:3d:12:39:4d:48:ac:fd:
00:44:09:56:fd:84:12:32:76:1e:45:62:8c:8a:48:
1a:3c:8b:f6:ea:e9:df:25:15:9a:b2:70:6f:df:73:
a0:3a:ef:d3:77:fa:b4:bc:26:5d:48:f0:90:8d:20:
d2:9c:ea:fb:f3:09:d3:ac:c3:07:44:96:54:a9:9c:
ba:02:4b:ec:64:4c:03:64:40:26:84:38:c5:05:28:
81:41:17:6e:c3:62:d0:f1:5a:e8:7b:03:42:97:b0:
01:41:4c:f6:91:6c:b1:6c:69:d9:7b:b7:0f:57:e8:
28:a2:c7:4f:fd:b4:00:7f:d8:4a:6d:c5:d6:de:47:
89:9a:2a:91:ae:3b:68:ab:04:c2:1b:ea:5b:96:b1:
00:e8:f1:b4:7a:41:58:52:0c:87:64:97:fc:00:09:
22:35:d9:61:2d:aa:de:33:4b:d2:aa:26:86:01:b6:
a2:67:71:4c:0e:6f:33:92:dc:bf:67:d5:cc:bd:ff:
49:9d:07:9c:cd:04:fa:ce:73:50:8d:25:f8:30:67:
b3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:B2:36:53:5E:2D:90:9F:A4:0F:90:06:C4:3F:9C:64:5D:7F:DD:48
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:01:5e:d9:54:d1:b0:01:2c:c0:a0:7b:0a:98:b1:f9:cf:e3:
bf:d9:ae:27:c3:b6:0a:bb:34:9c:5f:29:c2:b8:41:c9:2d:e6:
c9:29:55:40:25:a4:f3:b6:94:11:54:17:21:2a:41:f5:8b:23:
dd:e1:72:12:03:b4:d2:f3:68:a0:31:2e:8c:bc:b1:27:4d:fe:
98:10:52:45:9a:74:17:66:ae:a0:be:57:c4:42:57:a3:aa:a6:
be:dc:39:c1:dd:9d:b3:ed:61:ff:5e:fe:e9:0f:3f:a0:2b:b5:
ec:c0:2c:31:c2:b7:25:16:ec:e3:35:00:cd:67:28:87:4e:bf:
cf:4e:c5:3b:2f:7b:30:75:f6:b2:e4:75:21:e8:76:86:5e:76:
c7:3b:34:47:fc:92:ac:35:33:d2:82:b0:6f:af:d2:3e:34:9c:
2c:89:d1:49:d4:0d:6e:b9:91:46:13:ac:be:82:92:d0:17:a0:
6a:84:b1:7b:25:b6:e8:01:1d:d7:cf:f4:b5:88:80:97:d4:49:
bc:d5:cf:75:a8:0a:bd:27:04:93:98:08:a8:68:38:63:a2:b8:
d3:90:aa:62:be:9c:bd:34:f8:55:25:25:9d:2a:ba:4a:6d:bd:
b5:10:2e:92:80:c6:94:ee:db:ac:b2:07:11:c9:95:11:1c:54:
3d:4e:10:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:58:51 2025 by rpki-client