Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft
File: 2VSrlORZUZTSw5sdP-aokfHrkrw.mft (raw, json)
Hash identifier: 2458UOLAeclrZTbQO8zroBaSQFtQjl8atGXkwHWW2KI=
Subject key identifier: B6:E8:10:86:4E:AB:43:59:96:40:A3:9F:C2:EA:41:BB:C0:E7:33:F7
Authority key identifier: D9:54:AB:94:E4:59:51:94:D2:C3:9B:1D:3F:E6:A8:91:F1:EB:92:BC
Certificate issuer: /CN=d954ab94e4595194d2c39b1d3fe6a891f1eb92bc
Certificate serial: 019784D841E742DF3D35CB1B91497295A32B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft
Manifest number: 06FA
Signing time: Wed 18 Jun 2025 21:00:54 +0000
Manifest this update: Wed 18 Jun 2025 21:00:54 +0000
Manifest next update: Thu 19 Jun 2025 21:00:54 +0000
Files and hashes: 1: 2VSrlORZUZTSw5sdP-aokfHrkrw.crl (hash: 2Iw7j8XhzuIS594nApfRl4ZSB9EqiVBpEt4jcP5MSMc=)
2: ExuO0wU2-ClJDZRwWSRuAs7W0gk.roa (hash: 2j3+sZIfGB/S0w3o+OLoSghT+pM132gfjkW2EjpJ9JQ=)
3: aedVSgDzPN8NSNc0AWT5LWxB0ME.roa (hash: dpDe6aIbJvexkIC5o0dZBz+eF8xcPh7l66sRiS3ImZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:84:d8:41:e7:42:df:3d:35:cb:1b:91:49:72:95:a3:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d954ab94e4595194d2c39b1d3fe6a891f1eb92bc
Validity
Not Before: Jun 18 21:00:54 2025 GMT
Not After : Jun 19 21:00:54 2025 GMT
Subject: CN=b6e810864eab43599640a39fc2ea41bbc0e733f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2e:0d:d9:8c:dc:43:a1:48:10:94:30:6c:01:
5e:ca:28:e3:16:38:25:b9:6d:bd:69:74:5b:bf:13:
55:f0:9d:0c:00:5a:c8:be:f9:e2:7e:4d:a9:9f:ab:
73:af:3b:37:50:ba:f3:81:2e:8d:65:94:6a:37:e2:
ed:de:bf:d4:c2:a5:22:cd:b3:84:49:e4:11:a6:42:
23:c5:77:89:e3:a7:7a:c6:df:9a:5c:3e:39:0c:8b:
1b:80:97:ae:52:08:58:7a:31:13:f5:b2:56:69:65:
9c:75:ee:64:b5:9b:af:ea:53:d3:32:31:81:ed:3c:
95:01:e1:4e:ae:63:e0:20:d5:03:a2:4f:08:82:ea:
a6:5d:b6:b5:15:77:ad:df:82:31:68:18:81:0f:fa:
51:0b:bd:b9:ce:eb:35:65:72:b9:2b:d2:b8:ae:0a:
59:8d:f5:36:f0:e4:59:3c:6b:67:8c:05:8b:08:41:
5b:c5:86:7b:01:4c:eb:ea:64:73:2b:a8:d9:7e:35:
cb:0c:c0:a9:a4:39:c7:7d:6f:be:3f:4b:51:6c:42:
5c:71:a5:78:d6:62:16:39:25:1e:b1:47:be:e6:35:
aa:ac:7d:58:d6:2e:67:73:cf:29:10:05:a3:4d:b2:
38:de:ec:18:d7:aa:69:43:70:ad:cb:32:0e:9c:d6:
3a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:E8:10:86:4E:AB:43:59:96:40:A3:9F:C2:EA:41:BB:C0:E7:33:F7
X509v3 Authority Key Identifier:
keyid:D9:54:AB:94:E4:59:51:94:D2:C3:9B:1D:3F:E6:A8:91:F1:EB:92:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:d3:43:82:29:d4:14:7e:4c:d7:c0:e8:2a:ed:a9:e5:c5:d4:
22:6b:59:b0:0e:20:37:f1:8b:dc:61:31:9f:7f:af:37:26:da:
7f:f2:ba:2a:5e:af:7d:11:f9:12:6f:8f:0c:5c:65:8a:b7:35:
b9:95:82:f7:a9:19:55:d8:71:6c:60:df:46:25:c7:e1:12:06:
a0:79:df:de:8b:29:a6:60:79:2c:74:52:50:76:21:44:56:15:
bb:ab:d2:36:01:fa:e9:ae:9e:4a:e5:5f:36:82:ee:af:b0:6b:
3b:5b:b4:77:93:63:c4:00:1b:7a:b4:4f:58:8d:30:7a:45:f2:
11:d9:6a:75:b6:37:48:84:51:74:78:f0:2d:3d:04:51:05:3c:
c7:d0:18:56:9b:61:92:91:97:ff:07:ac:60:12:b4:cd:16:b9:
96:de:b8:87:a9:00:c5:de:31:38:93:0c:75:df:7c:dd:b5:db:
3c:d6:7b:70:e8:30:86:77:92:78:d0:7d:c7:a1:5f:46:fa:69:
09:df:ab:15:95:bc:c6:88:50:9e:00:db:b3:f9:d7:e4:36:6d:
e1:12:d2:d9:fb:e1:e4:44:1d:bc:46:c1:62:b6:7b:8d:63:6d:
0a:3f:db:19:58:0c:8b:a4:b9:89:38:80:bd:24:b7:ac:1d:c1:
23:ee:cc:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 23:20:31 2025 by rpki-client