Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
File: 2ZaAKfEkCW6rlV35t6gciMszOgU.mft (raw, json)
Hash identifier: yX3aDBCWX9hZCeRfq5qrxtT6DpM5hp4gngZAmNx/rsI=
Subject key identifier: 72:A7:A4:D2:C0:B7:46:D7:2B:E3:91:30:09:7F:84:EE:8A:A3:A0:BF
Authority key identifier: D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
Certificate issuer: /CN=d9968029f124096eab955df9b7a81c88cb333a05
Certificate serial: 01976DAB44DDE2BCA8CE9CC3E84381FE8F67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
Manifest number: 0D43
Signing time: Sat 14 Jun 2025 09:00:30 +0000
Manifest this update: Sat 14 Jun 2025 09:00:30 +0000
Manifest next update: Sun 15 Jun 2025 09:00:30 +0000
Files and hashes: 1: 2ZaAKfEkCW6rlV35t6gciMszOgU.crl (hash: rFEpTY6k93VXrWWpdMq0RVFlnUZdgj1E/KcEKa3idzE=)
2: anoG2QxpBajiR81r5Nnqj0baENo.roa (hash: KO9yPbtejqfpWJpsarLnmq3okmJ48dSkW7G2+vLUOFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:44:dd:e2:bc:a8:ce:9c:c3:e8:43:81:fe:8f:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9968029f124096eab955df9b7a81c88cb333a05
Validity
Not Before: Jun 14 09:00:30 2025 GMT
Not After : Jun 15 09:00:30 2025 GMT
Subject: CN=72a7a4d2c0b746d72be39130097f84ee8aa3a0bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:39:7e:7d:b4:00:96:16:ff:a8:5a:63:4d:1d:
35:5a:d9:49:e0:4b:59:7c:65:96:60:7e:4e:6a:1f:
40:69:e7:ff:05:b0:97:70:d2:35:81:8f:68:ae:3d:
4a:55:c4:02:39:f9:fe:5f:d5:08:b7:53:e3:63:52:
7d:5c:8a:95:ae:23:a4:c0:fd:d2:6c:5c:a3:59:b4:
8a:80:a0:33:be:18:19:7b:39:76:61:4b:55:bf:06:
2d:d1:f5:25:c0:04:8c:cc:d0:2a:7e:ae:da:f2:97:
2d:68:d9:e3:de:92:93:66:6b:be:ea:c5:d2:5b:20:
ec:8b:85:3d:e1:31:4d:c8:30:2e:07:a5:19:84:09:
8e:b6:bd:41:df:76:49:f4:17:27:a6:76:2f:61:a5:
db:82:8c:5b:af:f0:eb:ba:dd:ae:77:e3:ff:a6:9a:
59:60:a2:89:58:f8:0a:ad:db:e9:b6:27:c3:12:24:
18:ae:8d:90:01:66:cc:9f:bc:a3:53:86:4b:16:82:
46:1b:3f:0b:23:5f:e5:e4:ff:f8:7e:8e:cc:7e:3c:
e9:06:97:19:2c:54:8b:0a:f3:2d:49:e9:2d:0b:d2:
f9:4a:58:1e:13:72:67:b1:54:46:b4:cc:30:79:ad:
34:d4:67:1c:80:fa:7c:54:d9:7e:2a:f2:12:61:48:
31:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:A7:A4:D2:C0:B7:46:D7:2B:E3:91:30:09:7F:84:EE:8A:A3:A0:BF
X509v3 Authority Key Identifier:
keyid:D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:f9:5f:8c:ee:ea:8c:da:cc:a0:76:50:6c:c4:7b:2e:62:65:
7b:08:da:b4:08:55:b9:c8:66:33:5e:a1:ec:75:0b:64:ae:1c:
ba:f0:b2:fd:e7:f1:b5:4d:3c:fc:18:bb:1b:f5:15:46:b4:13:
98:b2:80:b3:54:89:9d:a0:14:2e:de:41:e1:57:c8:f5:b6:28:
e5:8b:0f:6d:f7:33:18:2a:b5:40:e1:36:86:54:ec:b6:6a:a3:
1b:3b:8b:0b:2c:18:0b:d3:af:87:a1:07:c6:7e:67:c8:52:a1:
fd:9c:fa:e8:fb:4e:0c:94:62:20:b2:1d:3f:a7:43:a9:70:ed:
11:2f:9d:02:6f:15:bb:b3:04:2b:96:1c:de:4d:b0:e2:49:f0:
3e:5f:60:be:e8:93:71:75:94:a7:20:9e:39:4b:3a:97:c6:a1:
2e:c9:d0:ab:9f:1a:9f:89:25:d0:ed:00:f8:ef:36:3c:96:3e:
42:21:a2:38:28:10:07:5a:cf:f6:b1:58:ec:3c:55:68:ac:82:
ed:15:d4:df:cf:d0:df:26:fa:b4:fc:5a:bf:a3:74:e4:17:8f:
f8:06:b8:5e:2c:81:87:36:39:e0:e1:b6:64:38:83:10:9e:d4:
fa:e6:56:c9:cd:9f:9b:ea:ab:d7:6c:7b:70:56:3e:cb:a3:86:
8f:65:d3:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:03:46 2025 by rpki-client