Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
File: 2KzzS-KwTHzO8iIejR_LbKu0FZE.mft (raw, json)
Hash identifier: 7K1evK/TDSZwUcK7KlitwZYs70QXLp6C2g1GFq0gZY0=
Subject key identifier: C5:4A:EC:0F:ED:B3:3D:4E:85:F9:09:21:62:90:24:63:F5:A6:79:DE
Authority key identifier: D8:AC:F3:4B:E2:B0:4C:7C:CE:F2:22:1E:8D:1F:CB:6C:AB:B4:15:91
Certificate issuer: /CN=d8acf34be2b04c7ccef2221e8d1fcb6cabb41591
Certificate serial: 01976C98C1DA32E793C6FEAD7A76EADBA559
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KzzS-KwTHzO8iIejR_LbKu0FZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
Manifest number: 158F
Signing time: Sat 14 Jun 2025 04:00:39 +0000
Manifest this update: Sat 14 Jun 2025 04:00:39 +0000
Manifest next update: Sun 15 Jun 2025 04:00:39 +0000
Files and hashes: 1: 2KzzS-KwTHzO8iIejR_LbKu0FZE.crl (hash: AGMibGkC9RL4zSIAuaj6eqGPgCyRCq9PXK2Eh+UByDo=)
2: tFYWfziNY6T1pgWT96la8X957p4.roa (hash: 08hpQSe8BwmYvsZjvFViF9kdWzrXeHJU+sA3OilF/oE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KzzS-KwTHzO8iIejR_LbKu0FZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:98:c1:da:32:e7:93:c6:fe:ad:7a:76:ea:db:a5:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8acf34be2b04c7ccef2221e8d1fcb6cabb41591
Validity
Not Before: Jun 14 04:00:39 2025 GMT
Not After : Jun 15 04:00:39 2025 GMT
Subject: CN=c54aec0fedb33d4e85f9092162902463f5a679de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a7:dc:ae:85:bc:d8:9e:4c:0c:97:11:5d:c5:
49:34:df:bd:60:bc:98:8a:0f:f0:b4:9f:57:07:01:
90:e6:ee:26:5c:a8:ff:65:ab:ae:03:69:37:dd:ec:
62:41:ae:79:fb:db:f3:95:22:e7:dc:37:dc:af:57:
88:b7:c4:6e:d5:09:d1:ff:87:10:99:66:f9:93:5c:
8c:be:4d:44:bb:9a:dd:63:29:76:a0:42:83:fc:0e:
ce:10:d7:27:76:00:c7:0a:24:d8:ab:8d:da:c5:5a:
7d:77:c8:09:0f:6c:c5:51:b4:d7:eb:83:7c:49:12:
f2:05:e8:c7:cd:d0:6c:a4:82:1d:99:c4:e9:55:91:
ea:51:47:89:9d:f1:1e:0e:ed:47:1d:77:81:b8:93:
d3:ec:e4:67:be:ea:76:95:7f:c1:aa:67:48:f9:4d:
e0:ed:07:0c:3e:2e:ea:49:e7:bb:51:fc:07:65:e4:
d4:79:d6:d0:c7:53:fe:0c:a0:53:27:16:28:b6:16:
e2:72:21:fe:79:d0:8a:50:5b:84:a7:9b:d1:2d:6a:
49:c1:27:2e:1e:09:7e:38:4a:fa:5c:5f:3d:42:e3:
b5:9c:5e:20:e1:ac:56:4a:7d:73:1d:6b:ad:b4:7b:
5e:ef:74:de:d3:d6:0f:13:8d:c4:1d:6d:cd:8c:7f:
b0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:4A:EC:0F:ED:B3:3D:4E:85:F9:09:21:62:90:24:63:F5:A6:79:DE
X509v3 Authority Key Identifier:
keyid:D8:AC:F3:4B:E2:B0:4C:7C:CE:F2:22:1E:8D:1F:CB:6C:AB:B4:15:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KzzS-KwTHzO8iIejR_LbKu0FZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:27:c0:33:76:5a:52:0b:08:11:a2:26:9e:ef:e6:36:e8:2a:
e7:3c:e1:10:63:28:c9:2d:03:af:f3:49:21:e8:a6:8f:a0:ea:
cc:1b:11:f8:45:f2:98:6d:2f:22:bf:f5:fd:82:c3:33:7f:d8:
84:8f:1c:8e:d4:48:28:d3:15:fd:2c:4a:18:e0:fb:f4:93:87:
25:ef:d2:28:41:d6:ee:44:99:d1:1f:b0:5e:09:dc:2b:87:bd:
86:ef:af:44:4b:91:1e:10:17:50:4c:25:bc:98:96:72:c7:89:
66:3f:4c:b5:05:47:a5:a4:65:d8:5b:42:d1:fa:24:81:13:74:
fe:6b:83:57:5a:09:c0:9a:26:a8:1d:df:2e:bb:06:5e:9a:79:
88:b1:5e:3d:89:52:2d:c2:e2:f8:c2:b8:62:5e:e5:72:80:63:
4e:c2:0f:0f:c9:58:b7:7d:60:95:29:62:3a:61:b7:a1:92:17:
8f:93:2f:ea:b2:12:bc:fa:9e:f0:60:50:03:ec:55:48:fe:e9:
d5:c8:d4:7f:a1:d5:2c:23:79:d5:a2:74:f9:27:02:12:dc:0f:
31:f8:91:47:31:98:0c:0f:31:c5:1f:15:c9:0c:08:53:3b:4a:
d3:8c:f9:ee:e9:49:98:76:ca:b4:31:ce:ab:41:ce:bb:67:6a:
20:59:76:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 13:20:53 2025 by rpki-client