Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
File: 2KmU2EbLZpboicHMMiheCyOvx3c.mft (raw, json)
Hash identifier: VEXUwoQr/NhtpP5WIAziDpBlJV4neGtB1AEIdw6lOFk=
Subject key identifier: 43:70:57:D3:57:EA:3F:5D:71:46:67:CE:A6:90:1B:BB:15:92:C6:79
Authority key identifier: D8:A9:94:D8:46:CB:66:96:E8:89:C1:CC:32:28:5E:0B:23:AF:C7:77
Certificate issuer: /CN=d8a994d846cb6696e889c1cc32285e0b23afc777
Certificate serial: 01976E19C174947E5C9501DD90253F478942
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KmU2EbLZpboicHMMiheCyOvx3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
Manifest number: 1479
Signing time: Sat 14 Jun 2025 11:01:10 +0000
Manifest this update: Sat 14 Jun 2025 11:01:10 +0000
Manifest next update: Sun 15 Jun 2025 11:01:10 +0000
Files and hashes: 1: 2KmU2EbLZpboicHMMiheCyOvx3c.crl (hash: 4Cq90JV+e16hbt8gRFTNlmWLuP0oZqEwGj8s7trbzP0=)
2: UHp7t70IbcWp2bwKOGl-4b8ScF4.roa (hash: UvX//cn/2erRwYZHy/h/xPpeIQdcBl4GUvhBbyEANqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KmU2EbLZpboicHMMiheCyOvx3c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:19:c1:74:94:7e:5c:95:01:dd:90:25:3f:47:89:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a994d846cb6696e889c1cc32285e0b23afc777
Validity
Not Before: Jun 14 11:01:10 2025 GMT
Not After : Jun 15 11:01:10 2025 GMT
Subject: CN=437057d357ea3f5d714667cea6901bbb1592c679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fa:c3:5b:c4:ca:4c:a8:40:7e:09:74:6c:8b:
67:af:42:c8:0a:d9:4b:97:3b:8e:6b:83:66:5c:5b:
74:18:15:6f:2d:b2:50:9f:3f:54:d0:25:5d:b3:57:
94:b3:a0:25:fb:25:a8:72:89:bd:64:f7:16:6e:9a:
9b:b3:71:20:c4:ae:69:db:a6:44:96:fb:f9:df:7b:
75:fc:e9:f5:ab:0d:38:c1:0d:0a:c7:76:d4:c8:89:
06:25:e8:05:59:31:1c:3e:f2:4e:b8:25:c9:7b:84:
49:e1:27:53:ef:24:d8:a0:a0:40:8d:ef:ca:f6:0f:
44:3f:67:a1:87:75:26:84:b5:7b:7e:a6:2f:36:b0:
ad:79:24:6c:e9:d3:a5:cb:ef:8a:34:91:9f:ca:b1:
26:a3:60:e1:60:97:6a:d2:88:77:50:14:9e:f4:9f:
13:9c:3f:ba:2a:37:61:0b:ef:bb:4d:51:ac:5d:67:
51:7f:93:f5:24:0c:45:81:ab:20:5a:a7:7d:b6:52:
bf:ab:1d:86:b6:a5:84:29:17:e4:22:5b:8b:95:d2:
7d:0d:fe:ad:7a:91:b8:39:10:8e:da:cf:73:b7:1a:
41:ad:64:21:13:d5:21:2c:4a:4a:b2:6b:d7:5e:59:
f2:0e:81:4c:ad:3a:59:02:21:28:87:d9:bd:05:b8:
fc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:70:57:D3:57:EA:3F:5D:71:46:67:CE:A6:90:1B:BB:15:92:C6:79
X509v3 Authority Key Identifier:
keyid:D8:A9:94:D8:46:CB:66:96:E8:89:C1:CC:32:28:5E:0B:23:AF:C7:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KmU2EbLZpboicHMMiheCyOvx3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:4c:bf:e6:fe:9c:b8:17:e9:11:7e:87:1e:4c:87:61:f3:47:
85:10:0c:98:e0:25:2c:e1:4b:9d:c1:71:0e:34:c1:0a:db:90:
9e:e0:86:de:f6:aa:57:e6:17:76:b9:50:d9:24:83:70:f9:bd:
d6:b1:29:fa:a6:d9:2b:a3:0f:f2:6c:c7:f8:21:7b:fa:07:3b:
1a:cf:b2:77:7a:f9:0a:36:d5:60:68:1b:b6:2a:72:2f:7a:8e:
5f:dc:44:78:f3:27:d6:97:ea:f4:b5:d3:70:45:a4:c6:fb:9a:
d7:80:9d:61:7c:b9:30:3a:6f:ce:96:96:aa:6a:ec:0c:c4:81:
ba:e2:3e:50:20:fe:bc:32:8d:14:d0:bd:7b:97:f8:32:74:9e:
b0:3c:1a:53:4a:e4:4b:2b:13:1f:74:bd:e8:2c:db:3c:e6:ca:
38:d4:62:6e:c4:3b:8a:46:1c:82:ca:13:65:06:7b:ae:a4:a7:
9e:51:6e:20:2e:61:ae:ca:56:c7:48:78:72:86:d0:5d:e1:97:
ae:0d:a2:77:4b:96:6a:9b:c1:9b:e8:4f:ed:f1:cd:21:c6:b2:
b9:06:0f:0a:35:9b:9d:0b:68:49:7f:df:68:46:12:92:7d:e6:
c9:b1:55:bc:9e:fc:95:08:68:af:19:4f:dc:90:e0:3c:c8:fd:
5c:d0:48:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:03:53 2025 by rpki-client