Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: Ei5XjzU9lMHMeV4ZDeuUakl3p7ECdMwU4ZwAyNWW1Fs=
Subject key identifier: 17:86:80:E3:EB:F8:6A:1F:10:BB:13:5A:D9:3C:B5:CA:37:9A:67:30
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 01976C987D02EAB492F044DE0A7F5BFECA00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 14BD
Signing time: Sat 14 Jun 2025 04:00:22 +0000
Manifest this update: Sat 14 Jun 2025 04:00:22 +0000
Manifest next update: Sun 15 Jun 2025 04:00:22 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: MLd/WtmRqrqtUEg9Q0cSI+nkxd7A6ldTbSqfGkQ8W68=)
2: 6R0wvkFPscZQ2uww-ZvwnaXh--0.roa (hash: wyiJ7rZP6x6kzeIfld1VjsLp4nIqzGhNhuxTGdTq1Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:98:7d:02:ea:b4:92:f0:44:de:0a:7f:5b:fe:ca:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: Jun 14 04:00:22 2025 GMT
Not After : Jun 15 04:00:22 2025 GMT
Subject: CN=178680e3ebf86a1f10bb135ad93cb5ca379a6730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2c:30:2d:a2:b7:5b:2e:5e:d7:20:83:e7:96:
38:b2:73:e9:c5:7f:ed:c4:7c:30:e7:fd:1e:06:b3:
90:f1:75:a2:b7:f7:d2:ae:37:2c:63:ce:02:87:2c:
f1:01:c2:01:b8:27:3d:8b:63:94:45:a5:72:72:ca:
1d:b6:df:77:4a:93:60:bf:87:54:98:35:03:61:df:
42:52:b8:76:f7:b1:3e:42:49:02:69:45:69:e6:28:
42:5b:4e:56:e4:6d:c2:98:1e:30:04:88:7e:08:22:
06:de:4a:e0:e6:93:fe:a1:2b:ca:b2:8d:3f:89:37:
64:a5:c8:65:9e:2d:c5:d2:a0:e1:6f:7a:05:f1:5c:
c7:6d:d3:3d:68:f0:6a:2b:c1:c3:73:59:23:1b:0b:
d0:05:82:67:db:69:a0:cc:d9:55:2d:99:09:f6:2b:
b1:0c:8d:25:28:97:24:47:41:bb:12:85:a8:29:c3:
0d:86:e7:ad:5a:b1:be:15:0a:c6:7d:24:cd:87:b6:
3c:24:10:ae:0a:d7:e5:d6:99:f8:0d:5e:c5:dd:e2:
00:25:6a:10:54:54:7d:d8:ee:13:39:15:ac:05:c6:
21:f0:cc:32:4f:59:a5:34:6c:43:c0:e9:d7:90:f1:
9d:ae:1b:5c:3b:01:60:b0:0f:07:46:c8:f0:3c:d7:
5a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:86:80:E3:EB:F8:6A:1F:10:BB:13:5A:D9:3C:B5:CA:37:9A:67:30
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:3d:83:94:f7:f7:df:cd:d4:73:a0:c0:84:1b:46:75:27:57:
57:5c:13:ed:34:bc:3b:a7:e8:a1:24:36:96:18:fa:cd:e7:ba:
1b:0a:9e:a8:2b:2b:2d:05:10:f4:79:4c:98:fb:f8:5b:5e:45:
ba:23:9e:65:e4:e3:5a:af:1d:f3:1a:7f:58:92:5d:de:93:1c:
79:b1:9c:9a:09:a9:bc:90:c9:3a:d3:43:b0:50:3d:d6:e1:14:
fd:42:ed:c7:39:19:67:b6:72:b4:a1:b4:73:17:82:56:fc:ad:
c8:22:cc:89:87:69:e6:1d:e0:fd:ff:6d:37:30:2a:f4:29:0e:
60:b0:db:06:e0:0d:c9:b0:1e:1c:8b:b7:90:71:7f:f2:a8:59:
f1:a8:49:55:a2:f4:2b:9c:db:67:e8:a5:bf:02:9f:b1:19:5a:
d4:f6:d8:04:60:d6:a8:02:dc:ca:87:5f:15:86:1a:5f:7f:f2:
47:97:9b:c0:91:1a:84:cd:28:f5:4d:c6:c1:88:53:ee:da:8b:
5f:c7:cb:89:59:f5:1d:8a:56:53:cf:60:30:53:77:ee:15:9a:
e4:1a:d1:1b:d5:12:af:7f:48:1f:bd:9e:00:e3:55:a9:29:4c:
fd:57:25:28:54:a0:fe:62:2f:8b:72:07:b4:3e:b1:07:b3:87:
b3:bd:52:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:01:22 2025 by rpki-client