Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
File: 2gKPaUMDSrdg84rkIJFU4iVciek.mft (raw, json)
Hash identifier: dD0P4qGHEKA6YHJ6orD3kNBijLZYrjX6wKfnYNHL+aY=
Subject key identifier: 48:3A:56:7F:FC:A9:A8:16:A8:78:37:EE:11:3F:42:59:BC:F4:2E:A0
Authority key identifier: DA:02:8F:69:43:03:4A:B7:60:F3:8A:E4:20:91:54:E2:25:5C:89:E9
Certificate issuer: /CN=da028f6943034ab760f38ae4209154e2255c89e9
Certificate serial: 01988A699ED6DFEF7E5129BBF248156EAEBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
Manifest number: 0583
Signing time: Fri 08 Aug 2025 16:00:34 +0000
Manifest this update: Fri 08 Aug 2025 16:00:34 +0000
Manifest next update: Sat 09 Aug 2025 16:00:34 +0000
Files and hashes: 1: 2gKPaUMDSrdg84rkIJFU4iVciek.crl (hash: cVbeKRx+fvWhnYNRLYEySc3X4VdSP0LPzfXLnqW5w2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 16:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:69:9e:d6:df:ef:7e:51:29:bb:f2:48:15:6e:ae:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da028f6943034ab760f38ae4209154e2255c89e9
Validity
Not Before: Aug 8 16:00:34 2025 GMT
Not After : Aug 9 16:00:34 2025 GMT
Subject: CN=483a567ffca9a816a87837ee113f4259bcf42ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:75:03:73:d3:03:83:a0:78:8a:80:52:1d:94:
45:dc:a5:1c:6b:11:6c:76:1d:02:44:3e:29:ef:9c:
e6:f9:23:b3:bf:56:a8:73:56:39:3a:8b:f0:2c:80:
a1:38:1a:b9:ed:c0:be:89:ab:fe:c2:7a:e2:66:9b:
aa:cb:24:cf:90:38:67:1f:29:e4:b4:a2:25:d4:14:
1a:9c:c8:a6:ef:85:67:ac:a0:41:5a:5b:24:db:76:
4d:83:de:70:4b:64:6f:5d:ba:b9:b1:70:94:c8:88:
5c:a9:38:24:51:7b:81:f4:e8:2e:4b:8f:7a:04:d4:
00:ae:b7:fb:3a:63:99:a7:2b:d9:ab:83:d6:f6:e5:
81:c3:4f:d1:07:f7:19:fd:66:3b:2c:77:17:63:f3:
c4:e4:0b:03:f8:6b:ff:1b:23:50:a2:69:2b:f7:32:
ac:bc:3f:31:75:b6:d3:83:a6:e6:ef:db:55:14:38:
61:25:62:7d:ea:8c:f6:7c:e3:0c:57:d0:37:9e:e8:
31:02:9a:50:44:fd:7e:17:a3:54:a2:84:e5:fb:43:
cc:34:e9:bd:47:e3:31:39:38:c0:12:cd:53:e3:ed:
bf:56:31:70:60:85:f1:cb:97:7f:60:2f:eb:c1:16:
79:9d:02:88:d2:1a:7e:97:7e:99:7f:62:b8:91:c0:
d0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:3A:56:7F:FC:A9:A8:16:A8:78:37:EE:11:3F:42:59:BC:F4:2E:A0
X509v3 Authority Key Identifier:
keyid:DA:02:8F:69:43:03:4A:B7:60:F3:8A:E4:20:91:54:E2:25:5C:89:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gKPaUMDSrdg84rkIJFU4iVciek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/eafa61-7fe9-4b16-bc9b-f6f3c2579c60/1/2gKPaUMDSrdg84rkIJFU4iVciek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:bc:0d:a6:dc:87:15:85:ee:f1:63:4e:74:ed:b3:f0:b8:8d:
49:9f:15:03:b6:87:cf:23:37:40:7c:87:9d:fc:03:39:0a:01:
cd:65:90:40:9c:5f:0c:4c:47:58:36:83:83:53:b9:4a:f3:78:
9d:91:f1:76:08:ed:fd:89:95:ba:d9:ee:3f:63:77:9b:c7:b0:
96:e8:29:99:50:f4:23:69:a3:f3:bb:11:04:9f:9a:c5:b9:a1:
ff:19:04:03:22:b7:b7:f4:92:20:28:5d:dd:6d:d4:bc:0c:80:
00:0d:ee:dd:5d:a1:61:2e:19:19:d4:20:61:c4:2f:b6:3f:f8:
e1:21:8e:68:1f:f4:12:0c:7f:cb:c3:96:b4:d9:eb:33:31:9e:
0a:fa:48:b0:0d:4e:09:ef:e5:9a:27:ca:19:b1:f8:55:c2:ba:
39:1b:73:c2:f6:02:b1:20:25:bc:cc:6f:70:7c:cd:69:3b:3e:
a4:f0:12:e0:28:b1:eb:ab:92:04:7c:74:0c:e8:17:29:b6:d0:
3a:10:a6:d5:45:d1:0c:d4:38:a1:e6:60:ee:d7:e4:ea:70:0c:
29:91:fe:72:af:c5:5c:0e:a4:22:bd:c8:44:34:2a:9c:1c:53:
83:81:80:a8:31:ab:0b:b9:29:2f:54:15:32:99:47:7a:23:5d:
9c:70:64:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:24 2025 by rpki-client