Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
File: 2l7eZe_t7t-MigSyRaOl32OmnoQ.mft (raw, json)
Hash identifier: KXVwaAaKXGyHf7x2WkPwbeMhNnq2wtckvl1kn73bvpc=
Subject key identifier: 5C:39:35:E4:0B:24:AC:77:17:B3:94:FA:52:9E:CE:EB:9F:C8:19:3C
Authority key identifier: DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
Certificate issuer: /CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Certificate serial: 01988B0EF1535152500777A2CA852CDCE100
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
Manifest number: 1621
Signing time: Fri 08 Aug 2025 19:01:08 +0000
Manifest this update: Fri 08 Aug 2025 19:01:08 +0000
Manifest next update: Sat 09 Aug 2025 19:01:08 +0000
Files and hashes: 1: 2l7eZe_t7t-MigSyRaOl32OmnoQ.crl (hash: 7wTuCIHqk2ntEbiwR0QVo55+YiSWdFrGE+Ir7QSsiHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0e:f1:53:51:52:50:07:77:a2:ca:85:2c:dc:e1:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Validity
Not Before: Aug 8 19:01:08 2025 GMT
Not After : Aug 9 19:01:08 2025 GMT
Subject: CN=5c3935e40b24ac7717b394fa529eceeb9fc8193c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b9:8b:10:b8:31:57:ef:9b:23:16:37:54:53:
28:f8:71:b4:db:14:c5:5b:75:35:22:ca:03:e8:91:
3e:4b:d9:25:cf:6a:b0:4c:c7:2a:39:b7:d1:f7:5e:
04:92:07:ae:40:6d:a4:6c:42:a8:38:cd:e3:70:92:
ff:15:36:4a:c2:dd:8d:61:8d:63:a9:c5:6e:6c:7b:
60:92:60:e5:6a:cd:8f:ee:af:d8:02:a7:38:b8:d9:
01:60:90:15:22:13:56:7e:b1:6c:46:97:0c:64:9a:
b9:4e:24:0b:12:f3:81:d9:2e:db:ac:12:84:01:cd:
ed:c1:44:89:f7:1b:bb:15:ff:46:56:e0:e2:d5:40:
e1:8a:63:05:d4:68:6a:ca:b0:7d:c6:dd:4b:89:4d:
02:f8:09:9d:98:f4:ee:85:8f:ca:24:15:06:df:dc:
cf:92:a5:54:1c:f7:7d:1c:d3:8b:f8:54:90:66:8e:
fe:43:7e:7a:35:10:c1:15:16:26:41:5e:8b:62:05:
34:b0:71:88:dd:ed:ad:6c:d8:57:78:7d:be:33:00:
a9:e1:73:b7:1d:1f:ab:47:3d:b6:5d:a9:dc:f1:f9:
05:5e:5c:95:65:a8:6a:d9:98:cd:91:2b:6e:88:d7:
9a:f8:b5:ba:d4:ac:c2:61:34:1f:ae:5e:b6:d3:82:
02:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:39:35:E4:0B:24:AC:77:17:B3:94:FA:52:9E:CE:EB:9F:C8:19:3C
X509v3 Authority Key Identifier:
keyid:DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:f1:67:0e:e6:04:33:f8:ac:03:ad:0d:00:5e:77:9c:26:79:
d0:52:c1:c8:1a:1f:5d:13:5a:2b:a5:a9:65:81:84:d7:96:69:
73:4b:f3:0a:73:8c:30:48:8e:03:ba:b8:dd:dc:7d:98:79:cc:
95:c1:ce:b1:22:b3:da:08:35:a0:28:94:3d:64:3c:9d:ae:9f:
91:46:57:e7:61:ab:ac:0a:b4:8f:64:66:85:da:d7:4a:d5:23:
4f:a5:c0:3e:c4:f9:39:21:4e:92:d0:98:fa:85:e5:1f:53:de:
70:df:aa:59:69:2e:28:dc:71:49:d9:b0:9c:3e:a6:58:30:44:
d6:af:ed:8f:85:4d:dd:4c:07:cd:55:30:48:62:08:6a:ff:24:
e8:6a:6f:40:62:db:0a:03:e5:ad:52:b8:51:4d:27:b9:fe:37:
99:92:11:44:8e:23:2c:6a:f4:25:3e:1a:8b:57:d5:97:89:e0:
8d:3e:e3:26:f4:7b:88:82:a0:15:8d:da:45:69:a2:ee:65:6a:
9f:27:71:55:0f:ff:5e:72:9b:84:bb:19:c1:71:4d:15:ac:75:
bd:69:5a:88:4d:22:4f:bb:a0:15:5b:45:cb:a5:fc:77:54:69:
9c:80:f3:3d:43:b4:5e:c3:52:81:84:c9:c9:4c:ef:aa:6c:10:
3e:5f:81:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:00:30 2025 by rpki-client