Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
File: 2YhPkq_rWP-rJkh7IyBf4NXaip8.mft (raw, json)
Hash identifier: 9Jf4cLRWHNG5RwV2DcjElRaUemIhonsKn8E8nfKEf7Q=
Subject key identifier: 30:EC:80:DA:77:D3:D8:E5:FA:18:08:93:3E:B0:09:CC:5F:A8:71:A5
Authority key identifier: D9:88:4F:92:AF:EB:58:FF:AB:26:48:7B:23:20:5F:E0:D5:DA:8A:9F
Certificate issuer: /CN=d9884f92afeb58ffab26487b23205fe0d5da8a9f
Certificate serial: 01976CCF66E3888F20B4C74815C405CA7F6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
Manifest number: 0E72
Signing time: Sat 14 Jun 2025 05:00:20 +0000
Manifest this update: Sat 14 Jun 2025 05:00:20 +0000
Manifest next update: Sun 15 Jun 2025 05:00:20 +0000
Files and hashes: 1: 2YhPkq_rWP-rJkh7IyBf4NXaip8.crl (hash: uo94N4O+DwFSiXgX4R/uOFEuASHFF30RC/eurOki8tw=)
2: CYLgyzMsYi7lgn_Q5Gp7OFp3YLo.roa (hash: KpU4uZLnHzH71nuh4tR8vuJUqVXwmRrydoVr8tnF92Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:66:e3:88:8f:20:b4:c7:48:15:c4:05:ca:7f:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9884f92afeb58ffab26487b23205fe0d5da8a9f
Validity
Not Before: Jun 14 05:00:20 2025 GMT
Not After : Jun 15 05:00:20 2025 GMT
Subject: CN=30ec80da77d3d8e5fa1808933eb009cc5fa871a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9f:35:54:25:df:82:a2:c1:3e:c0:21:7e:d9:
7c:d0:b4:e7:ad:d8:51:4b:54:53:e9:c8:02:23:21:
10:bf:7a:3d:d5:e6:00:5e:42:82:dd:96:ed:38:e3:
0c:33:df:f5:56:69:69:b3:8f:76:11:dd:32:8f:69:
de:0c:e2:1a:cc:f6:3b:5f:9b:22:43:9b:90:5f:98:
a4:3d:ee:b5:eb:a2:54:ed:41:ed:a7:18:cd:d8:42:
e7:52:50:8b:91:8a:57:e8:ac:c0:19:f0:1a:a1:e2:
a2:07:b1:d7:5d:2c:55:fb:5e:95:ce:5d:aa:54:fb:
3b:73:1b:1b:db:c7:45:d4:ae:32:58:38:ea:36:b5:
28:8a:c3:91:64:0b:30:c5:32:d5:e9:ba:29:9d:7c:
d3:eb:12:6d:85:ee:d0:b2:33:14:43:cd:3d:28:ab:
28:46:34:0e:c6:f5:b6:9d:e8:bc:91:23:de:9e:81:
f7:84:e2:48:3a:c3:4a:15:c7:e6:a7:17:63:d2:de:
bc:bb:a3:2c:67:2c:d5:55:03:cd:62:9e:7d:6a:59:
4d:0a:43:ce:b1:dd:be:18:b5:4a:26:c0:42:21:17:
86:9e:66:bf:dd:e9:e8:5e:7d:2a:9c:02:98:d5:e3:
47:42:92:ce:22:b6:82:de:86:fb:72:33:0b:ce:b5:
67:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EC:80:DA:77:D3:D8:E5:FA:18:08:93:3E:B0:09:CC:5F:A8:71:A5
X509v3 Authority Key Identifier:
keyid:D9:88:4F:92:AF:EB:58:FF:AB:26:48:7B:23:20:5F:E0:D5:DA:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:5b:dd:19:55:d6:44:53:c8:81:a6:d6:a7:95:a6:55:fe:57:
8b:43:38:c6:33:b8:82:25:88:2d:50:a6:48:2d:d5:a2:f3:a3:
52:df:b4:83:77:13:53:1c:e1:ce:2a:6b:a9:a9:53:7b:25:d0:
3c:64:a9:1a:9e:d5:7c:18:5b:91:b0:2a:ff:aa:e2:11:f0:c0:
59:df:d6:42:29:dd:28:f2:6c:9d:60:12:30:d9:bb:20:b6:10:
6c:ce:2a:55:32:68:be:79:25:61:90:19:ae:a7:07:6a:61:20:
16:64:27:11:da:74:9a:97:2a:eb:8f:1c:ec:7f:d0:fe:01:e5:
d5:6d:79:a5:e6:cc:a9:59:f3:f4:2e:0e:c7:df:df:31:83:f9:
89:33:79:ce:f5:ad:28:21:89:da:52:8e:ef:e1:87:2f:2a:75:
e8:92:e3:07:7e:41:6a:c8:f6:1c:e0:71:17:a9:f9:5b:8c:29:
f8:df:8f:70:b6:34:eb:b1:58:9e:1a:fb:be:cd:27:9b:c4:3f:
eb:b7:4c:e5:db:0e:02:38:09:32:d6:a4:c5:aa:50:84:c2:36:
93:fe:55:3b:1b:00:39:e3:67:c8:72:b4:7b:a5:f6:f0:3f:11:
15:42:63:89:9f:04:d7:0f:c1:dc:65:6c:3d:21:55:49:37:fd:
80:08:47:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:09:09 2025 by rpki-client