Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
File: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft (raw, json)
Hash identifier: 7RVXBgaYU35SlyngP3nRgfYmyfawEu9apccPnqEg6BQ=
Subject key identifier: 5B:AC:5B:2F:BD:C9:99:4E:67:89:AB:1F:C9:11:49:17:E5:1B:F5:C2
Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Certificate serial: 01976E8729756C890458B51A5FF90BF09B09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
Manifest number: 0D1F
Signing time: Sat 14 Jun 2025 13:00:41 +0000
Manifest this update: Sat 14 Jun 2025 13:00:41 +0000
Manifest next update: Sun 15 Jun 2025 13:00:41 +0000
Files and hashes: 1: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl (hash: InDmxuC7xx3CzAYPe4rKAtBsLoP+7ck3jNwLO+nu/wo=)
2: nEst59VNXuZ4VJfEimqfkDoIWMw.roa (hash: MVYyTOwc+4oCrDyXY6sI17JYzQycO6fjKklmhjG1KnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:87:29:75:6c:89:04:58:b5:1a:5f:f9:0b:f0:9b:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Validity
Not Before: Jun 14 13:00:41 2025 GMT
Not After : Jun 15 13:00:41 2025 GMT
Subject: CN=5bac5b2fbdc9994e6789ab1fc9114917e51bf5c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:af:96:25:cb:54:cd:8d:45:d5:d7:8e:e8:ea:
cd:41:3f:6a:33:c1:1c:c2:ae:b9:66:e9:d6:af:59:
fc:cd:bf:0c:74:2b:87:a9:77:da:a0:cc:40:95:67:
ec:f7:0a:f1:a0:ee:2c:98:41:26:ad:b4:45:cb:c8:
81:82:5a:48:6f:5e:9d:b4:19:13:12:02:66:6a:4a:
3e:b4:59:b0:82:f4:48:84:0e:bd:d4:fb:60:6c:60:
4f:5e:30:ce:25:f0:e6:ad:0a:64:6c:60:b1:d1:ae:
c8:43:56:6b:0d:70:de:9a:72:ff:eb:27:39:4c:63:
9d:11:3f:e4:9c:4f:d4:3e:29:f9:b6:df:58:e5:65:
19:7d:32:f8:75:5b:dd:45:1e:2a:27:ff:ab:85:64:
fc:3f:25:ac:99:b6:f6:1c:d3:3d:60:dc:4d:ee:82:
17:b8:9d:8a:09:2f:ae:b5:22:97:4b:e5:3b:bf:a4:
69:62:11:6b:a7:02:fb:3d:ed:a1:ff:73:30:ea:da:
41:98:47:b6:07:b9:87:21:fc:a9:d8:21:1e:db:30:
22:97:1d:4c:88:61:e3:39:80:0f:9f:26:b6:4a:c9:
9e:f2:70:ff:35:93:ac:71:7a:a8:c1:aa:7f:94:43:
75:6b:30:f6:a0:c4:d6:0b:19:dc:fe:4b:46:f1:3a:
b8:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:AC:5B:2F:BD:C9:99:4E:67:89:AB:1F:C9:11:49:17:E5:1B:F5:C2
X509v3 Authority Key Identifier:
keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:32:df:15:cf:8c:79:79:45:e3:6a:1d:0f:ad:06:c5:f7:4c:
4b:49:69:da:21:14:ca:ac:f6:da:20:13:0a:ca:6b:a2:6b:a1:
51:8c:0f:f3:3d:4b:9e:d8:2d:1b:ec:c0:b2:c3:13:56:1d:75:
db:5c:bb:eb:24:f5:3a:19:b5:10:2f:4a:1e:30:65:45:fe:62:
d5:40:b7:02:bc:eb:c1:b4:38:13:2d:59:37:2f:76:1d:1f:4e:
c6:ce:c5:9f:a3:99:6a:86:80:4d:1b:4c:fb:5d:12:ca:81:6a:
2b:dc:f2:28:3c:86:d5:8a:77:99:50:65:b7:30:b7:96:be:59:
97:5d:5f:94:3f:7d:cb:f1:38:15:cc:f3:2e:a9:ab:18:08:93:
34:e6:be:ee:60:a3:01:f3:59:50:80:16:9b:38:f9:8f:5b:03:
c7:54:98:26:b8:38:c1:2e:20:1f:19:90:99:3f:c6:a0:5e:79:
fe:13:bb:87:53:c5:1a:09:8c:48:0b:b5:81:68:2d:4e:a1:4f:
73:6a:a8:6b:13:5d:91:68:2d:d0:88:b4:4b:30:96:80:52:e1:
d3:51:69:4e:56:3f:c5:12:5f:1a:74:e8:a0:d2:f7:f7:ba:f0:
ff:d2:0b:4e:ef:c6:15:a4:6e:f4:49:a9:c0:37:e8:7f:18:2c:
bc:9c:d2:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:19:29 2025 by rpki-client