Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
File: 2yNWAARVt7WJTO0UaYWgqIifnkw.mft (raw, json)
Hash identifier: diEqu8CKuzbxLdH62/pXDorQwef4C/cIyE9kQw/hAeM=
Subject key identifier: D7:85:BD:55:B8:67:92:B6:40:3D:24:D4:73:7C:03:45:85:C2:DC:EA
Authority key identifier: DB:23:56:00:04:55:B7:B5:89:4C:ED:14:69:85:A0:A8:88:9F:9E:4C
Certificate issuer: /CN=db2356000455b7b5894ced146985a0a8889f9e4c
Certificate serial: 0197B7455D88C38D4C0D9CA4C03DF57AC07E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
Manifest number: 13D0
Signing time: Sat 28 Jun 2025 16:01:05 +0000
Manifest this update: Sat 28 Jun 2025 16:01:05 +0000
Manifest next update: Sun 29 Jun 2025 16:01:05 +0000
Files and hashes: 1: 2yNWAARVt7WJTO0UaYWgqIifnkw.crl (hash: 3avS+K53QLDTdCKOyv7hRQiTvu3yJqvsbxp86n2d8ok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:5d:88:c3:8d:4c:0d:9c:a4:c0:3d:f5:7a:c0:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db2356000455b7b5894ced146985a0a8889f9e4c
Validity
Not Before: Jun 28 16:01:05 2025 GMT
Not After : Jun 29 16:01:05 2025 GMT
Subject: CN=d785bd55b86792b6403d24d4737c034585c2dcea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:da:64:23:77:8f:28:3c:27:5e:c1:62:b5:69:
59:72:03:89:43:25:2f:05:56:f7:77:6a:f4:b0:0a:
b3:c0:35:38:f1:f0:02:b9:10:35:70:c7:fd:58:1a:
8b:6b:18:a5:fb:7e:69:ab:f0:1e:d1:2e:a8:7f:27:
50:db:ea:1f:7d:9f:01:25:83:61:cb:83:a0:8a:34:
b3:ff:a4:32:7f:0c:60:a8:2d:d0:c1:f0:f9:29:9a:
96:76:bb:9a:3e:26:33:e2:22:bb:42:0d:26:ea:40:
70:97:d2:d0:6f:1e:21:3e:8f:a8:f5:6f:69:79:5a:
eb:55:ef:1e:a1:d0:24:00:c2:5e:d8:16:f8:41:4c:
3a:a4:6c:eb:73:0e:f9:31:0e:d3:8b:02:91:40:79:
ce:18:b9:54:b9:ff:46:8f:27:63:86:cf:d7:ab:cc:
de:c1:b7:df:9f:82:db:a8:bc:f7:21:76:34:cc:db:
16:2e:04:43:41:32:d9:15:f3:97:b8:17:4e:0b:6c:
65:c2:56:d0:e3:71:fd:4a:7a:41:ac:ec:7f:f9:20:
3d:4f:0e:eb:2f:a6:11:48:43:28:77:6b:7f:a7:a7:
99:a2:d7:82:d1:0b:7e:8e:5b:89:26:5f:bc:6b:29:
02:8e:03:1d:00:d9:64:35:05:c5:7d:2d:88:e1:73:
04:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:85:BD:55:B8:67:92:B6:40:3D:24:D4:73:7C:03:45:85:C2:DC:EA
X509v3 Authority Key Identifier:
keyid:DB:23:56:00:04:55:B7:B5:89:4C:ED:14:69:85:A0:A8:88:9F:9E:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2yNWAARVt7WJTO0UaYWgqIifnkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9b87f8-ca94-483f-88ea-4863911412fa/1/2yNWAARVt7WJTO0UaYWgqIifnkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:49:3c:6c:8d:2b:b6:3e:3e:c7:a9:ac:4e:14:2a:94:96:d3:
61:39:e3:c1:83:20:f0:3b:d9:41:0d:4f:f8:32:e1:47:c2:81:
01:0c:c7:01:5b:0a:9a:c0:c8:96:36:59:5c:bf:03:39:3d:72:
96:ff:4e:59:c2:83:94:38:f9:f0:79:b1:f8:cc:30:f8:b4:9f:
a2:03:3f:b6:bd:6f:e3:35:1c:52:87:c8:fa:59:4f:25:56:e0:
39:13:55:9e:c2:0c:9e:68:5b:b7:43:ea:98:1e:03:6e:31:e5:
fd:28:36:3e:ef:19:cf:95:3e:0b:fe:5c:8b:50:33:7b:f1:4c:
36:96:65:94:db:ad:e0:46:e9:70:5a:01:56:28:47:c3:f9:de:
18:67:60:9f:35:45:89:fc:48:a6:d4:87:c6:1c:4f:09:23:e1:
53:3d:74:48:94:48:3a:e3:25:0e:56:e2:65:20:9f:03:23:5c:
57:14:00:e9:86:13:f8:23:c6:1f:de:37:6a:32:2f:52:b2:17:
55:6d:8b:1e:ce:76:ed:09:44:1e:49:15:e5:3e:9b:01:e6:1d:
a3:76:ed:58:bd:3d:3c:65:e1:56:70:2b:10:e7:3c:4d:ba:77:
b2:c0:fa:09:c7:f9:b3:57:67:ea:8e:78:6a:84:0b:b9:eb:eb:
dc:40:0d:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:02:11 2025 by rpki-client