Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/01e232-4551-4ce8-8cd8-7d8b1c91ec7b/1/2JkZ-1GnBREdaZbuww_8RC3pei8.mft
File: 2JkZ-1GnBREdaZbuww_8RC3pei8.mft (raw, json)
Hash identifier: nVw/SviH/L2yaUNDfyUEnSxWYhE9s7x4UEJ2cLLpCrI=
Subject key identifier: C3:4D:0A:7D:46:84:A1:20:C6:1D:ED:5B:B2:1B:D8:A4:55:21:CE:78
Authority key identifier: D8:99:19:FB:51:A7:05:11:1D:69:96:EE:C3:0F:FC:44:2D:E9:7A:2F
Certificate issuer: /CN=d89919fb51a705111d6996eec30ffc442de97a2f
Certificate serial: 019768BC0C96FD3CF2B47E5BE65AFFDD9D8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JkZ-1GnBREdaZbuww_8RC3pei8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/01e232-4551-4ce8-8cd8-7d8b1c91ec7b/1/2JkZ-1GnBREdaZbuww_8RC3pei8.mft
Manifest number: 1589
Signing time: Fri 13 Jun 2025 10:00:43 +0000
Manifest this update: Fri 13 Jun 2025 10:00:43 +0000
Manifest next update: Sat 14 Jun 2025 10:00:43 +0000
Files and hashes: 1: 2JkZ-1GnBREdaZbuww_8RC3pei8.crl (hash: np+/KmCykQSt5mqRybHhIzwPoBsn9KHv+i2j6zzSJwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/01e232-4551-4ce8-8cd8-7d8b1c91ec7b/1/2JkZ-1GnBREdaZbuww_8RC3pei8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/01e232-4551-4ce8-8cd8-7d8b1c91ec7b/1/2JkZ-1GnBREdaZbuww_8RC3pei8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2JkZ-1GnBREdaZbuww_8RC3pei8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 10:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:bc:0c:96:fd:3c:f2:b4:7e:5b:e6:5a:ff:dd:9d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89919fb51a705111d6996eec30ffc442de97a2f
Validity
Not Before: Jun 13 10:00:43 2025 GMT
Not After : Jun 14 10:00:43 2025 GMT
Subject: CN=c34d0a7d4684a120c61ded5bb21bd8a45521ce78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7d:cd:2c:1f:ad:2e:05:6a:f8:b8:75:e4:25:
84:c9:cc:19:45:3b:79:f8:35:38:12:f7:9c:ee:34:
d4:f8:bd:4c:4d:14:c5:a6:38:e7:60:47:63:e7:b9:
fd:4d:18:a3:b6:92:2a:3f:03:d1:a6:25:96:05:4a:
7e:46:ed:5b:1f:cf:9f:83:ac:de:55:78:e0:86:7c:
e7:9f:68:a5:bf:6e:d9:78:3f:6d:ed:18:1a:05:6e:
d1:18:67:ee:78:1b:c8:10:33:b4:dc:13:b0:03:bf:
2e:2f:93:71:53:64:16:05:7a:44:d6:81:78:47:a8:
f0:1f:60:6e:41:b9:b6:a2:88:01:4f:b9:e7:51:26:
c2:6c:d1:43:14:97:9a:86:ee:e4:9c:03:e9:9c:b4:
88:d3:f2:dd:2a:67:00:f3:1a:4e:50:dc:01:0f:a3:
4d:d8:88:57:14:ad:ea:08:74:c1:5a:fb:2a:e2:5b:
de:29:cf:cc:1d:1c:7f:e6:b3:5c:20:b6:90:06:4a:
14:bd:ee:71:74:76:01:73:89:96:1e:30:9d:91:4d:
4e:e2:60:20:b7:c8:f3:ae:61:a3:21:1f:e2:04:50:
05:a8:14:24:1f:50:99:1b:7b:1d:94:2c:4b:d0:a7:
90:60:cd:04:69:95:6a:3f:07:0e:a1:31:3d:da:5b:
1a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:4D:0A:7D:46:84:A1:20:C6:1D:ED:5B:B2:1B:D8:A4:55:21:CE:78
X509v3 Authority Key Identifier:
keyid:D8:99:19:FB:51:A7:05:11:1D:69:96:EE:C3:0F:FC:44:2D:E9:7A:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JkZ-1GnBREdaZbuww_8RC3pei8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/01e232-4551-4ce8-8cd8-7d8b1c91ec7b/1/2JkZ-1GnBREdaZbuww_8RC3pei8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/01e232-4551-4ce8-8cd8-7d8b1c91ec7b/1/2JkZ-1GnBREdaZbuww_8RC3pei8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:29:6d:68:f1:94:15:e9:87:52:cf:6f:92:20:14:7f:9b:8a:
8b:ae:a9:56:bb:1f:b9:20:b5:a6:f6:55:b4:d0:3f:e4:3c:6a:
96:33:ee:b1:56:b9:a9:39:e4:ee:d5:b2:c0:08:40:a1:9f:3e:
6e:50:29:8b:89:eb:82:06:6e:87:06:7f:30:93:22:25:bb:41:
e3:ab:0d:a3:9f:22:44:c6:d7:73:ae:67:f1:a9:40:35:6e:9d:
78:78:63:a2:f3:02:fa:67:48:80:28:f8:01:0b:e4:7f:97:b3:
7f:af:7b:02:0b:c6:1b:39:71:23:ea:51:9a:00:18:24:5a:57:
30:45:2f:c2:94:b7:17:75:d5:d7:53:ce:a2:09:0e:0e:bc:03:
cb:55:6e:39:99:36:52:f4:b1:cd:c3:67:d0:0b:af:94:57:14:
e4:d0:68:ec:10:07:8d:9b:aa:a8:14:e1:2e:13:ea:29:73:da:
4b:30:f9:7b:3b:85:87:2e:56:31:bf:77:f1:8c:20:44:14:82:
0f:43:37:4b:c2:16:1f:28:a6:c3:ff:2c:be:c5:e2:ea:85:dd:
29:e1:88:8b:2f:37:eb:fd:59:73:97:96:d3:a4:3f:f0:5a:8c:
6e:75:e3:50:5a:37:27:d5:10:f8:51:d3:1f:c6:e0:b4:0f:00:
52:6b:bc:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:19:24 2025 by rpki-client