Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft
File: 2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft (raw, json)
Hash identifier: uN2jfoQo2oRmRNdIjdoPE1ggYtdrzfQqY/0wqkEpzo0=
Subject key identifier: 5C:B1:3D:56:79:31:A5:C4:8A:15:14:ED:9A:5A:1E:17:51:E6:30:F6
Authority key identifier: DA:35:B2:7E:B5:23:B6:7F:8D:69:1C:80:62:F3:37:0E:14:93:02:FD
Certificate issuer: /CN=da35b27eb523b67f8d691c8062f3370e149302fd
Certificate serial: 01987DF852712880EC002D1B6DFFE020F20E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2jWyfrUjtn-NaRyAYvM3DhSTAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft
Manifest number: 1576
Signing time: Wed 06 Aug 2025 06:01:22 +0000
Manifest this update: Wed 06 Aug 2025 06:01:22 +0000
Manifest next update: Thu 07 Aug 2025 06:01:22 +0000
Files and hashes: 1: 2jWyfrUjtn-NaRyAYvM3DhSTAv0.crl (hash: iYMs3rzjtZt/e7u2jX/FdkR7jmswCX4hXZpUHjWHAgo=)
2: ryWVvW7NydfH0Lg55_MWvg1kBGg.roa (hash: PtmvLKXYoeUQyGlzTXT4GMeJ6VdsraUUI7+TJbIbgOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2jWyfrUjtn-NaRyAYvM3DhSTAv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 06:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f8:52:71:28:80:ec:00:2d:1b:6d:ff:e0:20:f2:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da35b27eb523b67f8d691c8062f3370e149302fd
Validity
Not Before: Aug 6 06:01:22 2025 GMT
Not After : Aug 7 06:01:22 2025 GMT
Subject: CN=5cb13d567931a5c48a1514ed9a5a1e1751e630f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:75:5e:9e:12:7d:f8:c5:d1:3e:52:78:bf:be:
32:99:62:c3:86:d3:9c:25:33:8b:f4:27:b7:01:9e:
42:fb:6c:ca:23:55:c2:a1:6f:b0:ce:20:c9:e6:86:
54:39:6d:d2:44:e5:d3:f1:52:df:e2:d9:d5:7e:48:
be:ca:a8:cf:63:f7:9c:3f:ce:69:81:a8:f6:0c:b9:
1c:21:f0:cc:51:80:2b:dc:2d:33:3f:63:57:36:bf:
db:08:2e:93:e8:61:6a:07:c5:80:63:1e:bb:e1:69:
64:68:26:d6:ce:0c:22:97:de:8f:dd:66:33:ef:56:
9b:81:ee:8e:3b:28:f3:8c:1b:5e:da:a3:da:08:88:
72:fb:e7:fa:ed:c2:24:80:b8:7f:4b:72:41:92:e7:
76:4b:a7:db:30:c4:3d:a3:43:c2:bb:d7:ec:fc:2b:
ad:84:af:75:91:85:9d:67:20:56:ce:89:b4:c3:96:
26:8c:0c:24:d4:25:83:4e:30:f0:72:37:3a:ae:78:
12:78:e9:fc:19:be:0f:25:5f:3e:63:65:f8:69:8d:
28:33:2b:1c:0d:04:34:e1:2b:71:9b:e6:2e:0c:96:
61:a2:60:5f:57:77:08:b2:55:8d:0b:cd:ea:f7:d8:
14:27:9d:54:bd:62:c8:65:1c:15:32:0b:d5:de:89:
f5:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:B1:3D:56:79:31:A5:C4:8A:15:14:ED:9A:5A:1E:17:51:E6:30:F6
X509v3 Authority Key Identifier:
keyid:DA:35:B2:7E:B5:23:B6:7F:8D:69:1C:80:62:F3:37:0E:14:93:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2jWyfrUjtn-NaRyAYvM3DhSTAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:94:20:44:c3:33:43:80:26:ad:70:30:09:58:cb:cd:6c:be:
6c:21:2a:56:6a:a9:55:90:cc:72:d8:14:93:cd:60:3c:f3:d6:
24:1f:1f:c2:4b:73:a7:b6:51:8f:ac:72:4a:90:15:98:14:03:
f4:c6:22:73:c7:7b:c2:16:69:b5:72:88:fd:d5:48:e0:67:c4:
46:d1:62:7f:62:15:fa:09:5a:99:c0:e1:23:ae:37:4a:79:b2:
02:06:7c:af:70:36:57:81:b6:a4:b0:90:1a:ff:5d:33:25:d7:
10:3c:cd:93:5c:47:e9:cd:a4:63:a2:20:84:a3:73:c3:0a:22:
d8:b0:fe:5e:1b:bf:59:e1:f2:99:8f:84:1d:31:92:60:f1:c2:
fd:fb:f5:fc:1f:73:f8:16:87:7d:13:2a:db:f8:a7:fd:ed:42:
fa:9b:5f:31:0d:77:54:00:7a:84:eb:18:75:22:49:03:a8:a2:
d0:d4:6c:69:4b:cc:f0:e6:58:45:46:ea:12:c3:c1:20:5a:e2:
52:68:3d:81:58:37:87:59:bf:58:e9:ac:64:e2:63:5b:90:57:
98:a7:c7:f1:ee:f7:b1:39:46:65:f7:4e:ca:d3:23:2b:fb:f1:
09:c9:3a:4e:98:e6:4b:b6:3b:bd:5e:1c:32:f1:57:0a:52:ea:
e0:27:e2:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 16:02:20 2025 by rpki-client