Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
File: 2DLajUWISdX0C6bwuSCPhYXZ4j4.mft (raw, json)
Hash identifier: V6O80Mf7H5REikhMPzl+DZSkHN673okqbxXz8EsNQ0s=
Subject key identifier: 09:70:A5:D1:19:EC:0E:45:1B:74:BD:9D:F1:8C:BC:9A:04:68:1E:F5
Authority key identifier: D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
Certificate issuer: /CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Certificate serial: 01976E8794D09B50D0221CE2B5145D29E94B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 13:01:08 +0000
Manifest this update: Sat 14 Jun 2025 13:01:08 +0000
Manifest next update: Sun 15 Jun 2025 13:01:08 +0000
Files and hashes: 1: 0LdCYiyoo_rQZDLAQK9EXmWdrLs.roa (hash: ii+DUPaWPj2PKPLgx9rgU4vJhM6MjQajOc4FBEHl1O8=)
2: 2DLajUWISdX0C6bwuSCPhYXZ4j4.crl (hash: fL6ZlnoYp45ebFvKhnRFWbU8ZqKZWtIe4Y7I7fh3eLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:87:94:d0:9b:50:d0:22:1c:e2:b5:14:5d:29:e9:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Validity
Not Before: Jun 14 13:01:08 2025 GMT
Not After : Jun 15 13:01:08 2025 GMT
Subject: CN=0970a5d119ec0e451b74bd9df18cbc9a04681ef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f6:0c:4a:dd:24:80:c8:9a:93:85:20:e4:13:
ea:ad:f9:84:54:5c:d2:2b:34:d8:32:50:b7:66:72:
15:31:49:41:f4:be:f2:aa:00:e1:29:9e:ea:75:40:
c3:93:06:08:e9:f6:47:09:97:1c:56:31:11:2d:3e:
c5:2c:d8:37:55:ba:36:5c:21:bb:3d:29:49:75:98:
b2:da:75:46:d0:7f:9b:84:a4:d4:8b:b7:3f:58:6b:
56:a8:cc:12:36:02:17:22:14:0e:c5:ab:78:8a:c2:
4c:fc:eb:4f:3e:24:9b:f7:b8:e1:4f:4a:da:ad:1c:
d6:2c:46:f9:8b:1a:f9:a2:b9:d3:07:18:90:57:fa:
ba:f9:e9:ad:27:c8:bc:19:60:41:50:5c:31:9c:79:
e0:14:1f:8f:bd:6e:f3:61:25:52:f5:2d:06:08:8c:
64:c3:d1:82:63:05:7d:c1:bd:34:fa:86:6d:a8:7f:
5a:23:20:6b:28:25:31:fd:c4:71:99:f5:d4:e0:a6:
65:76:de:e4:df:b1:48:59:ff:e3:7b:17:cf:a4:ca:
14:c1:c2:ba:98:aa:84:2b:d4:60:c9:aa:18:f8:20:
10:f8:bc:c9:48:c7:7b:54:77:ac:eb:09:9c:11:2c:
58:73:a9:46:67:41:93:55:fc:90:04:9f:f1:3d:b7:
39:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:70:A5:D1:19:EC:0E:45:1B:74:BD:9D:F1:8C:BC:9A:04:68:1E:F5
X509v3 Authority Key Identifier:
keyid:D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:83:92:f4:da:00:e7:66:f3:7e:43:d5:38:c8:b4:32:d5:61:
f7:88:0b:0a:ca:60:f5:9a:ff:f1:46:e6:8d:c2:5d:f1:d8:0c:
ef:dd:f2:7a:3b:33:b1:f4:12:0d:87:56:9d:68:31:79:21:e7:
2d:5c:fc:5a:f7:ba:26:7d:24:aa:34:6c:fe:1e:82:44:74:f6:
72:26:f3:73:3e:74:fd:b0:44:f5:3e:c6:7a:11:46:e8:fe:9a:
b4:ff:1a:07:17:32:fb:73:ca:57:14:1b:91:7c:cf:0f:73:c0:
77:bd:68:23:54:4a:4f:ee:fc:f3:a5:96:c4:be:cb:10:5c:35:
dc:05:82:93:c1:0d:3e:8b:e4:5f:0f:05:b1:c8:a8:45:10:62:
53:02:b1:16:59:13:2d:1c:45:1e:c9:4d:9d:6e:4a:db:66:b9:
a1:84:ad:7d:bd:d2:35:8e:03:24:10:67:31:57:87:d6:0e:b8:
21:b9:78:b1:ca:04:ad:f9:96:2a:ba:7b:31:97:6e:fa:f8:d4:
44:5c:f6:a6:2a:61:cf:9d:cf:65:49:74:c9:49:85:93:6f:a2:
2c:a1:a7:21:14:ca:0e:b3:4e:b9:42:37:15:ea:31:ff:7a:ce:
bb:0b:a4:cd:19:8f:de:f2:77:1d:cc:8f:e8:ec:91:32:15:49:
0a:62:9f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:52:23 2025 by rpki-client