Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
File: 2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft (raw, json)
Hash identifier: 38Pj4ouVHFVh6/uo5wZffwQsHKQNVJnWgzhImpZk5Xw=
Subject key identifier: 06:92:87:11:16:5A:47:E1:BF:8A:57:5B:D8:7D:38:47:32:AC:CE:2A
Authority key identifier: D8:81:E5:77:7C:CE:99:0C:0B:2B:0F:4C:29:CC:8D:2C:F9:AF:E8:3B
Certificate issuer: /CN=d881e5777cce990c0b2b0f4c29cc8d2cf9afe83b
Certificate serial: 01976EF4D138E7C4DD77C5D154CC8513AB28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
Manifest number: 1521
Signing time: Sat 14 Jun 2025 15:00:27 +0000
Manifest this update: Sat 14 Jun 2025 15:00:27 +0000
Manifest next update: Sun 15 Jun 2025 15:00:27 +0000
Files and hashes: 1: 2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl (hash: UgJeQC49jL8QLnseYxk/FcqHaVP3+up1TeiauMF84fo=)
2: gd86nab0qf28eq3d5pPFq5e9rZo.roa (hash: OleM9BzJjHgCcSMlxVVC1tH0LyJmqbhh/CO/g3APccs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f4:d1:38:e7:c4:dd:77:c5:d1:54:cc:85:13:ab:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d881e5777cce990c0b2b0f4c29cc8d2cf9afe83b
Validity
Not Before: Jun 14 15:00:27 2025 GMT
Not After : Jun 15 15:00:27 2025 GMT
Subject: CN=06928711165a47e1bf8a575bd87d384732acce2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:12:ae:eb:0e:0a:0a:5a:d1:67:95:90:89:ed:
3b:e9:6d:98:0c:c3:2e:ca:86:30:e5:06:0d:5c:f5:
a3:6b:c8:5d:82:2d:8a:68:a9:b0:5f:55:c8:7e:28:
41:0f:da:dc:25:40:56:24:cf:26:b9:36:17:d9:40:
6d:54:11:d2:e7:55:af:aa:f3:a9:35:b3:56:bb:63:
34:e7:2e:2d:c5:aa:bf:5a:17:b5:09:5e:ba:61:a8:
66:d5:54:a9:f6:1a:86:b2:a0:eb:05:62:a0:c2:8e:
63:de:d2:30:21:8f:20:22:a6:2b:2e:fe:78:63:4a:
eb:e3:b4:7c:5d:0d:c2:22:ff:49:60:9a:d8:2d:6d:
03:e5:a4:e0:38:a5:e9:e1:b5:de:95:3a:0f:29:65:
3d:72:cb:3b:84:c4:67:dd:5a:7b:fc:cb:0c:95:6f:
e7:06:93:64:83:59:55:8a:b7:c0:dc:12:52:0f:f8:
c4:dd:bc:55:d8:45:cd:5a:2c:79:37:87:ca:e2:19:
58:a1:f2:3c:68:c9:35:d6:40:28:aa:a5:47:1d:d9:
d9:34:b4:d2:79:a0:a9:3e:14:0e:a9:dd:16:ab:bc:
8a:fc:dd:b7:5a:c7:eb:55:e1:09:d5:20:5f:f7:94:
ba:10:1f:5f:a6:b7:de:22:7c:c1:2a:04:13:b8:d9:
1d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:92:87:11:16:5A:47:E1:BF:8A:57:5B:D8:7D:38:47:32:AC:CE:2A
X509v3 Authority Key Identifier:
keyid:D8:81:E5:77:7C:CE:99:0C:0B:2B:0F:4C:29:CC:8D:2C:F9:AF:E8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:71:cb:25:75:23:e6:6e:fb:b8:bd:34:b3:6f:07:b5:d0:ff:
3f:a1:dd:37:49:a4:56:2b:0b:cd:aa:98:63:c1:ba:8e:29:6c:
55:98:af:7f:59:cc:da:94:a6:12:2b:ee:a1:ce:4a:40:b0:3d:
b0:fb:ca:d0:3b:6c:bd:86:93:19:13:20:0e:d9:00:32:ce:3d:
66:15:ce:48:0f:6b:c3:7d:8c:54:c7:66:e0:44:a0:95:8f:7e:
2d:e2:9d:c3:7c:54:1f:00:d9:38:a9:9d:4e:52:c6:ac:c1:71:
f3:e7:ec:7a:ae:e3:6a:f0:95:a4:d3:0b:17:ac:5e:a2:65:b3:
27:bf:21:49:e3:74:67:2c:e3:77:98:4d:92:53:52:1c:a5:09:
df:26:7d:d1:83:1a:98:fd:33:e4:b6:32:50:ab:ef:a1:73:3f:
78:4c:c4:6c:75:10:f7:96:39:65:1b:c2:c4:72:c8:50:29:3a:
8b:11:1d:ac:77:d2:f2:c4:56:7d:b8:42:1d:a5:f6:8a:de:84:
d3:27:9f:a9:85:ce:cb:55:d1:93:3b:08:35:f1:18:9d:aa:4b:
36:28:b1:b6:9c:b7:e7:e8:76:c1:5f:81:37:bd:3a:a8:ac:20:
0d:1d:11:4c:03:40:4f:de:87:e4:cb:84:d2:78:e4:f3:7e:70:
59:82:cd:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:55:23 2025 by rpki-client