Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
File: 2NYGQYZJDYzqI0f_ejqCSS0feXc.mft (raw, json)
Hash identifier: 4f9r7cffHvQ2uCSaRrKDH3BGbe3jSEGTs0+s8PlNsGw=
Subject key identifier: DC:29:C4:82:36:46:10:69:44:61:CB:8D:CC:50:C3:93:9D:A4:94:CB
Authority key identifier: D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77
Certificate issuer: /CN=d8d6064186490d8cea2347ff7a3a82492d1f7977
Certificate serial: 0197B74577CB1EC6A709A5E540F9409E2764
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 16:01:12 +0000
Manifest this update: Sat 28 Jun 2025 16:01:12 +0000
Manifest next update: Sun 29 Jun 2025 16:01:12 +0000
Files and hashes: 1: 2NYGQYZJDYzqI0f_ejqCSS0feXc.crl (hash: 4ABOQc0gwV0wu/tiZQ5HWzbPS/9gOhO1ET0W/GIj5Ok=)
2: fRvh8sX1Hi5S8M4nM9SL76qC4pw.roa (hash: BU70IeuzZkqToqE9mDUdKtq0A+ixKO/u5mFIegNEZGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:77:cb:1e:c6:a7:09:a5:e5:40:f9:40:9e:27:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d6064186490d8cea2347ff7a3a82492d1f7977
Validity
Not Before: Jun 28 16:01:12 2025 GMT
Not After : Jun 29 16:01:12 2025 GMT
Subject: CN=dc29c482364610694461cb8dcc50c3939da494cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ec:45:8e:11:d3:da:90:e6:6e:25:fb:f5:af:
ab:e3:45:b9:db:db:f4:29:1d:9a:0b:da:91:ae:73:
2c:c8:bc:8d:f5:73:65:12:94:69:4f:9f:64:07:e1:
eb:ae:09:60:5b:df:3f:c0:75:d9:2b:30:0e:78:17:
3f:ca:ae:1f:01:6d:cd:27:84:9e:66:9c:c3:de:01:
88:df:ae:c3:e4:f6:dd:a8:6c:3d:95:35:fc:d7:70:
45:ae:40:69:aa:9b:e2:4f:d5:4f:a5:35:3c:5a:d2:
bf:2d:3e:21:e5:f1:3e:d7:c9:35:43:3a:f2:ab:40:
fe:ed:0c:3e:6e:a2:19:1b:e3:fa:e8:51:67:27:c6:
82:80:51:1b:e8:7e:ad:31:dd:e7:78:9c:a3:99:3d:
6c:eb:40:a7:3f:be:ce:10:c9:54:7a:92:5c:6f:f1:
02:f4:36:fd:d6:c0:95:4d:da:f0:75:2d:f6:f5:5b:
41:80:a1:ae:f7:d0:46:f0:11:f7:4f:76:6d:24:88:
5a:79:97:04:d1:8a:7e:e8:bf:34:95:96:a1:c8:02:
df:41:7d:4c:c2:c5:23:4b:17:98:7f:0a:a3:51:f2:
76:60:84:0e:47:6f:7c:7a:f7:e4:42:44:13:61:8d:
67:9c:c0:5c:4c:69:8d:7d:7b:a1:b0:0e:e2:c1:b4:
77:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:29:C4:82:36:46:10:69:44:61:CB:8D:CC:50:C3:93:9D:A4:94:CB
X509v3 Authority Key Identifier:
keyid:D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:86:a9:23:79:77:f8:2d:2c:48:39:1b:c0:18:71:76:16:29:
cd:fb:c6:c4:b3:31:f6:bb:4b:2d:f9:b1:8e:7e:b2:81:1a:90:
d0:c3:07:e2:25:58:55:9c:a0:dd:22:c2:cf:5b:80:6d:d2:b7:
f6:8b:8a:1b:65:61:e1:c9:28:95:c7:71:d9:ad:29:d0:7f:8f:
c6:1d:09:d9:6b:4e:e5:11:e1:88:da:0b:2a:94:87:7e:61:a4:
c9:28:1a:71:59:b1:2f:e7:11:a3:4c:49:5f:d1:6f:17:7e:57:
fc:78:ad:e7:af:d8:1c:3f:f7:6b:61:8a:dd:dd:7a:5d:8b:ec:
53:be:2c:f8:0f:24:20:5f:8c:45:9a:e8:0a:7e:7b:ba:50:33:
5f:28:47:09:fd:a6:5a:35:d1:95:0b:8a:f3:a0:1d:97:63:c7:
3c:45:9d:da:6c:8e:ad:e1:8a:f1:bb:c2:e7:49:6f:05:06:83:
d5:9f:45:e4:de:c8:1e:53:a6:f4:50:ba:9f:56:64:a9:a2:71:
00:71:c1:15:47:76:51:02:d3:f0:da:d6:b7:ff:36:8c:08:77:
da:b0:51:af:00:85:d9:61:6a:0f:e5:8d:cb:18:6d:d5:b0:29:
6d:b2:02:b7:b9:8d:89:e2:9b:13:92:ae:ec:4f:1f:96:20:8f:
14:24:43:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:14:33 2025 by rpki-client