Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
File: 2hvwCCS2KL9iY7t03ndK3fmZD8k.mft (raw, json)
Hash identifier: sCIoWydMLo5VZ+CXjRGIQf1l3gOWHd2jTIsm/ixox7U=
Subject key identifier: E3:56:1C:92:C4:32:F8:2B:BD:6B:FB:44:24:03:23:C1:41:17:51:C5
Authority key identifier: DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
Certificate issuer: /CN=da1bf00824b628bf6263bb74de774addf9990fc9
Certificate serial: 01976C98A0A2315FFFAF3623274FB8C14CAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
Manifest number: 1312
Signing time: Sat 14 Jun 2025 04:00:31 +0000
Manifest this update: Sat 14 Jun 2025 04:00:31 +0000
Manifest next update: Sun 15 Jun 2025 04:00:31 +0000
Files and hashes: 1: 2hvwCCS2KL9iY7t03ndK3fmZD8k.crl (hash: jBEN0HyeBZ4YwlAndWAUqZY3+xO4dGKX/uepVrQyS74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:98:a0:a2:31:5f:ff:af:36:23:27:4f:b8:c1:4c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1bf00824b628bf6263bb74de774addf9990fc9
Validity
Not Before: Jun 14 04:00:31 2025 GMT
Not After : Jun 15 04:00:31 2025 GMT
Subject: CN=e3561c92c432f82bbd6bfb44240323c1411751c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:eb:a2:2b:38:2d:bc:f1:9e:c7:58:32:3b:da:
97:37:ab:a0:27:f4:0d:6e:c4:3c:a3:ec:bd:e7:5a:
ba:a2:87:89:8e:7f:5e:05:30:4f:89:07:e0:10:3b:
10:57:f6:7e:44:f6:ac:4e:57:b5:33:f0:2e:5a:8d:
fb:94:a2:a7:5a:7f:7a:e3:75:c5:0e:05:2a:9d:c8:
d8:d5:be:51:3f:d7:f0:b8:2f:26:b1:86:d6:0b:d9:
99:a9:91:0f:f5:b8:bc:d9:49:ed:85:53:31:49:97:
5b:79:33:f5:16:2b:03:f9:cb:b1:d8:f7:7c:3b:bd:
91:ed:29:db:8d:cc:5d:3b:fe:f9:80:7d:a6:5d:f8:
39:d9:2c:98:03:66:c9:9f:e8:1c:b5:37:4e:e2:6c:
3c:d7:6b:65:3e:37:03:4b:bf:a4:83:7e:02:9a:94:
fc:2c:34:89:71:4c:6b:76:7b:88:ca:39:a9:4e:ea:
b3:e4:88:4d:66:39:49:a0:43:0b:76:fb:cc:e5:f9:
b3:42:7c:07:27:3e:bd:58:4d:48:6c:89:1f:1d:a6:
f0:d0:86:be:21:16:ab:69:27:2a:9f:dc:80:03:a1:
93:c4:e7:f4:af:b1:35:0e:f5:11:5b:6a:97:42:d8:
1f:2a:9a:46:8f:8c:00:50:ed:bd:c7:8a:fd:5c:68:
33:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:56:1C:92:C4:32:F8:2B:BD:6B:FB:44:24:03:23:C1:41:17:51:C5
X509v3 Authority Key Identifier:
keyid:DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:7d:91:df:44:df:46:e0:2d:9f:0c:70:65:ee:16:a1:7a:a7:
93:60:b1:48:ea:2a:cb:b4:87:f4:b4:0e:1e:dd:1d:4d:31:34:
af:45:ca:8d:df:ec:2f:3e:6f:d9:3f:21:e2:51:2e:d0:17:56:
3b:e1:4a:64:5b:4c:f2:77:9e:20:89:5e:de:26:6e:4c:98:8f:
5a:b7:8d:91:1f:ba:da:fa:d3:ba:86:fa:9f:b8:a5:bb:34:eb:
5b:f2:32:34:2c:cb:6e:b6:34:f8:c8:85:5b:42:80:25:3c:f0:
d9:93:b6:6b:4c:c4:52:bc:2e:e0:23:2b:90:df:1e:dc:64:50:
51:0f:85:b5:2a:72:fd:75:4f:b5:ef:99:d2:0c:30:25:39:21:
6b:76:8e:59:80:c0:bf:78:a0:78:08:a7:56:af:0a:36:d9:e8:
88:68:08:70:6e:64:ca:ed:02:b8:4b:35:ab:16:93:a4:ba:33:
69:b3:cc:fb:c1:ef:7d:d3:dd:a0:42:0b:0b:7d:d8:2a:91:31:
c8:b5:dc:cc:d5:af:58:2c:d8:56:fd:46:45:02:9c:07:1c:9b:
4f:7e:7b:3e:0a:2a:07:de:c5:0c:18:ea:18:17:23:8c:43:de:
9a:e1:88:9c:f3:80:f2:af:5c:af:87:b4:c5:dc:6c:7e:0f:05:
3f:d7:0b:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:28:57 2025 by rpki-client