Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
File: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft (raw, json)
Hash identifier: X/FSC7Zcmh5VeBpn4k7iLvcAu/DoEr0EgITf615w+q4=
Subject key identifier: 75:CD:28:10:3E:3B:AE:32:5C:F0:7D:16:23:78:66:DB:44:85:F8:12
Authority key identifier: D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
Certificate issuer: /CN=d97a77930122879a766470df8d660c98442a9932
Certificate serial: 01977075DCF9669A37D00AB6178F348E2BB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
Manifest number: 69
Signing time: Sat 14 Jun 2025 22:01:01 +0000
Manifest this update: Sat 14 Jun 2025 22:01:01 +0000
Manifest next update: Sun 15 Jun 2025 22:01:01 +0000
Files and hashes: 1: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl (hash: /7h7F6N3srMnlXcVzpawqb4fonQ7Uo91KM60urcyDOg=)
2: HVaoDMotksZf76Ju74TL_0gQqQw.roa (hash: 6Wt6s6Ldu4cKxpBhxwlW4dbeWtmB6JUQE70sEXR7L0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:75:dc:f9:66:9a:37:d0:0a:b6:17:8f:34:8e:2b:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d97a77930122879a766470df8d660c98442a9932
Validity
Not Before: Jun 14 22:01:01 2025 GMT
Not After : Jun 15 22:01:01 2025 GMT
Subject: CN=75cd28103e3bae325cf07d16237866db4485f812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3c:61:ed:9f:f6:01:86:5b:2c:50:5e:f1:72:
9b:fa:a6:24:64:b4:55:cf:47:92:5e:3b:2e:9a:42:
55:ab:52:4b:17:ea:50:9e:3b:2a:e5:5e:ca:c9:72:
57:a0:7e:02:46:1b:68:96:60:5e:0e:88:15:be:64:
49:d1:3a:89:12:46:31:33:07:9b:73:2c:78:56:76:
c2:66:5e:03:dd:8b:85:b1:b8:21:ae:f2:14:c4:fe:
44:fc:91:f8:23:31:10:b0:b3:01:f4:40:c1:e7:9f:
29:9b:f9:c7:10:fd:5b:4a:71:2f:09:13:06:ad:cd:
5c:87:e4:09:e6:a3:bf:55:ca:ae:7f:d9:59:b2:0f:
4a:64:9e:ab:96:2a:14:52:e3:b8:69:c7:99:35:93:
2a:84:3d:fd:0e:b8:9c:94:6b:8d:f8:63:c8:11:5f:
ac:1b:f8:05:03:e4:60:e2:ed:72:9f:e9:68:f2:8a:
c6:2c:bb:d9:ca:02:fd:74:68:11:1e:ae:8f:b0:3c:
56:68:c4:c5:af:44:de:2e:7a:30:b2:e3:1e:0c:db:
76:b6:03:20:17:36:f9:c9:a1:9a:05:8e:33:46:26:
f4:0c:00:01:cf:d2:1d:46:ac:83:29:92:98:aa:b1:
2b:70:29:3a:5a:c0:8b:26:42:2e:3c:ad:30:1b:45:
10:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:CD:28:10:3E:3B:AE:32:5C:F0:7D:16:23:78:66:DB:44:85:F8:12
X509v3 Authority Key Identifier:
keyid:D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:19:ed:ba:b3:2e:4d:a8:74:3d:d0:fc:df:44:57:91:2a:26:
3b:9a:12:ac:14:3a:64:b8:5c:31:2c:c6:7f:73:c9:d0:15:65:
57:cc:7a:53:07:29:75:23:f0:f2:6c:a3:c3:f7:1a:a1:34:4a:
76:9d:cf:06:1e:04:a0:6c:c0:86:f5:05:a4:46:d1:e5:50:a5:
c6:73:34:9a:04:e7:c3:7b:81:af:ba:da:92:4f:bf:1e:05:62:
a2:69:47:dc:73:b0:15:0f:fa:71:fc:7c:0a:3c:7d:42:f6:98:
d3:d4:83:a5:b0:c6:28:5d:d9:98:38:eb:cd:5a:5b:c4:a5:b9:
07:bb:8e:06:30:7f:b1:81:0b:9a:22:85:47:95:f1:c1:03:63:
53:3c:d5:48:43:d8:5a:fc:b5:69:11:fb:76:98:ac:02:f3:5e:
34:f3:b7:83:06:54:5d:a5:0e:15:1c:77:47:3a:12:41:92:75:
22:cc:7a:96:34:ed:b8:c1:a5:08:39:d8:70:6e:be:f0:39:59:
c2:e1:19:55:18:38:ae:59:3b:c5:60:75:f8:af:a9:ea:1b:4b:
2e:a1:71:dc:bb:d7:5a:b2:e2:71:6a:b4:98:b3:fe:8b:69:b9:
9c:1a:a8:0f:c0:ae:58:ca:95:ba:89:c1:e0:c4:35:48:a4:e4:
f4:ff:c8:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:16:43 2025 by rpki-client