Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
File: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft (raw, json)
Hash identifier: +TVyAAjs30umXCr97UkVI5EaRCcvdFtZKpMIAE8mnq4=
Subject key identifier: CA:9F:A9:37:C1:FD:8E:AD:8B:FF:7E:65:84:85:70:00:B5:58:C0:61
Authority key identifier: DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
Certificate issuer: /CN=daddd1b636fe3df1df3d811f644583312a651337
Certificate serial: 019873E3DBD8B6E22896945FB81B1B9AF7BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
Manifest number: 127E
Signing time: Mon 04 Aug 2025 07:02:49 +0000
Manifest this update: Mon 04 Aug 2025 07:02:49 +0000
Manifest next update: Tue 05 Aug 2025 07:02:49 +0000
Files and hashes: 1: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl (hash: UZZz1O58S6depu5MYLd2QQsou4lzisYogNd1tMt4oyY=)
2: Ayr05U3NKAd6mblS63pAVZbHnEI.roa (hash: PYCcEhQQfZIx55w6ukJcbUlLU5BAsDen0FIJwdgcRtk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:db:d8:b6:e2:28:96:94:5f:b8:1b:1b:9a:f7:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daddd1b636fe3df1df3d811f644583312a651337
Validity
Not Before: Aug 4 07:02:49 2025 GMT
Not After : Aug 5 07:02:49 2025 GMT
Subject: CN=ca9fa937c1fd8ead8bff7e6584857000b558c061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:75:99:cf:69:d2:e5:d6:46:4d:55:59:c4:2f:
03:87:94:65:8c:e2:a9:6c:f0:59:9e:ff:ba:74:74:
19:9a:a3:92:26:aa:85:b4:5e:ba:38:29:8c:8b:48:
5b:ff:a8:6c:1f:2b:a0:4f:3d:eb:1a:63:3b:2a:11:
4a:db:33:bc:2a:97:83:da:62:0d:17:61:f2:d7:35:
12:77:a9:a0:76:60:a2:13:ce:41:97:b3:63:5d:66:
a2:53:09:fd:9d:36:60:f6:a2:56:de:17:60:80:3a:
b6:aa:34:1f:60:84:2c:ab:a2:e3:59:71:cd:54:6a:
a1:fb:83:68:1e:ed:8f:4b:85:98:79:df:ed:9c:26:
d7:6a:b8:a8:cc:6c:51:83:08:dc:8a:4d:f5:2a:c5:
28:35:22:c3:bc:ed:13:b2:5e:60:a9:30:e2:00:00:
0e:46:70:db:98:55:eb:fe:a9:d4:96:e3:ab:92:e8:
61:af:c8:19:cc:86:0c:72:f8:44:0d:1a:65:8a:5f:
52:ef:70:52:e9:a2:3f:54:94:7b:23:19:3d:41:77:
7a:83:24:33:fc:d3:11:b5:a2:92:82:44:30:41:54:
52:b8:cc:f3:8a:0d:db:43:a2:e4:5c:60:dc:17:6b:
e6:84:05:7f:74:3f:25:23:04:b5:de:a3:59:ff:8e:
4a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:9F:A9:37:C1:FD:8E:AD:8B:FF:7E:65:84:85:70:00:B5:58:C0:61
X509v3 Authority Key Identifier:
keyid:DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:86:79:f2:a2:44:29:65:be:24:66:58:cf:0b:31:d5:6a:28:
e3:f6:22:c5:c8:db:17:53:80:89:3b:01:27:be:df:f2:23:57:
29:4a:85:73:38:9a:a8:66:78:67:b2:dd:60:c0:60:92:e8:27:
a2:85:f6:3e:d7:c8:63:b0:0f:ef:48:5d:ee:65:b6:c4:30:38:
03:a7:90:95:28:81:c4:b6:2a:06:9f:66:3e:21:3c:e6:2b:99:
ba:5f:4c:63:3c:74:5d:a5:3d:2f:10:6c:0e:a5:99:01:73:55:
c6:78:e2:04:67:53:00:a8:cb:7f:51:bb:9f:e7:f1:c2:b9:03:
f0:b8:7f:9f:d7:58:4b:5b:8d:3c:84:1f:eb:ea:86:9b:64:6e:
09:d5:7c:1e:25:bb:ac:82:31:97:b1:93:16:3f:30:b7:85:d7:
a7:f8:0b:74:97:3a:18:9e:91:1f:32:d1:76:e7:4d:53:5c:57:
7b:47:47:a3:4c:1c:d0:04:1a:55:43:7a:09:83:40:dc:28:79:
7b:6f:f7:be:65:6b:59:6c:aa:cb:3c:3e:49:36:92:82:7c:21:
2d:a9:37:e1:6d:a7:a3:81:a2:8d:72:85:14:c7:f7:cc:6a:bc:
c7:a7:24:df:37:1a:5d:fd:2e:9b:22:18:35:46:26:d8:94:63:
51:64:cd:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:01:49 2025 by rpki-client