Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft
File: 2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft (raw, json)
Hash identifier: vpuIANQX54lDaY/moFeAFfRQOrwRXOfWh0H8YKX7glc=
Subject key identifier: 96:49:52:BB:7B:62:32:CF:20:70:50:A4:65:13:CC:C8:3B:4F:95:A9
Authority key identifier: D8:76:63:C5:E1:4F:13:74:6C:80:F6:0B:A3:63:49:3D:9A:49:34:CC
Certificate issuer: /CN=d87663c5e14f13746c80f60ba363493d9a4934cc
Certificate serial: 0197B5C4C58314D7FB47A6525BA0A02E9CBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HZjxeFPE3RsgPYLo2NJPZpJNMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft
Manifest number: 064E
Signing time: Sat 28 Jun 2025 09:01:01 +0000
Manifest this update: Sat 28 Jun 2025 09:01:01 +0000
Manifest next update: Sun 29 Jun 2025 09:01:01 +0000
Files and hashes: 1: 2HZjxeFPE3RsgPYLo2NJPZpJNMw.crl (hash: UIPBShqBnDvZNxEL61Hv1uSXtsY2P3ADO6S34g14Ldo=)
2: eNatCM_ng_ZzT0XjnAhnE8JwsaM.roa (hash: NiVcVjOLTxJgHF9YkgZvM/M3+zTG2kPIupDct4SjNb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HZjxeFPE3RsgPYLo2NJPZpJNMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:c5:83:14:d7:fb:47:a6:52:5b:a0:a0:2e:9c:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87663c5e14f13746c80f60ba363493d9a4934cc
Validity
Not Before: Jun 28 09:01:01 2025 GMT
Not After : Jun 29 09:01:01 2025 GMT
Subject: CN=964952bb7b6232cf207050a46513ccc83b4f95a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a2:43:53:3f:37:ef:a6:3f:53:87:42:1e:07:
40:d2:20:c8:88:38:df:a5:21:37:82:f0:08:d4:b9:
14:40:f8:4f:e4:83:44:be:ec:b1:46:c9:bb:9b:76:
b7:1c:1a:d1:a7:28:88:1f:51:8f:78:08:b1:d9:e8:
92:77:db:84:42:da:2d:73:e6:73:19:3f:f3:ef:5c:
e8:4a:5a:eb:28:c4:cb:e6:4e:1f:c7:cd:f2:6c:9a:
b2:3a:fe:27:dd:c4:ee:66:80:e4:71:b2:e6:4f:82:
eb:7e:65:9f:2e:35:16:94:3c:fe:67:f9:c3:00:b8:
fa:c8:db:91:a6:c9:9f:92:93:88:aa:66:f4:b5:19:
22:05:66:0d:4e:41:2b:47:a7:c1:57:f6:23:c7:db:
fd:c1:df:d1:65:a8:3a:55:02:ea:cc:4c:7a:50:73:
09:94:5c:e3:ee:10:eb:ba:65:75:69:ab:9f:3a:8d:
82:7e:79:c4:ae:2b:dd:5d:92:23:8d:12:c5:aa:02:
17:78:61:87:99:b3:e7:14:ca:31:a8:51:9c:6f:dc:
02:c3:c8:89:15:f6:1a:03:d9:4d:89:6f:b3:69:3d:
fd:7f:cf:46:5d:b7:89:4b:b3:ab:7e:20:53:6c:69:
4e:7a:20:42:02:3b:84:32:22:4b:b5:dc:b4:15:49:
58:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:49:52:BB:7B:62:32:CF:20:70:50:A4:65:13:CC:C8:3B:4F:95:A9
X509v3 Authority Key Identifier:
keyid:D8:76:63:C5:E1:4F:13:74:6C:80:F6:0B:A3:63:49:3D:9A:49:34:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HZjxeFPE3RsgPYLo2NJPZpJNMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:15:92:f2:7f:1d:d4:4b:9d:1f:7c:c9:fe:80:85:8d:81:05:
93:d9:de:2e:cf:c9:47:1d:e4:3d:28:9f:4e:1a:4f:41:3c:24:
30:62:2c:14:a2:ca:36:87:85:73:c9:03:49:99:0e:fa:7c:f9:
6c:9d:74:31:83:e3:07:37:93:ef:9a:17:ae:14:cf:f0:99:1b:
1b:4d:a0:1b:fc:f0:f8:5d:83:c9:7c:0b:40:f7:cb:e2:3e:c6:
3e:58:0b:e6:84:b5:9e:06:25:a6:7e:4f:55:4a:17:be:e2:fc:
d0:79:f5:f7:ab:50:36:40:02:9a:b7:57:0c:43:4e:02:b0:54:
12:5f:a2:2f:d3:e6:bc:8a:2a:9e:fb:32:d5:12:23:73:59:ae:
32:18:77:5c:91:b1:aa:bb:a2:fc:44:45:7f:82:21:c8:e2:9e:
a3:af:a2:6b:d3:11:27:c2:e2:7e:cb:c6:e9:95:df:19:7d:cb:
b2:7b:11:8f:3d:ad:24:f5:0a:5b:e9:fe:94:9b:c6:71:16:41:
c6:04:5a:6b:39:76:b2:08:51:f8:9a:1d:1d:73:3d:a5:69:9f:
66:f0:b0:57:fe:46:bc:0e:ec:f8:26:a5:16:2e:5c:de:6e:26:
0b:44:ce:02:d8:8f:98:b7:ae:5b:3d:8c:d3:f8:ad:cf:e7:e3:
85:11:6c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:58:13 2025 by rpki-client