Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
File: 2huf6PGjORf-5-Tb6fq5JeuGJak.mft (raw, json)
Hash identifier: cFNC9c3akGucfUcliPiOr7vW7J9+PLLBtXv0Cu5ZPKA=
Subject key identifier: 02:CE:84:A1:B7:9F:B2:5B:23:F6:6B:CE:9F:C1:BB:52:35:DC:F0:E5
Authority key identifier: DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9
Certificate issuer: /CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9
Certificate serial: 0197B7B38B02C129857A6DB8EC9998D43F47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
Manifest number: 0667
Signing time: Sat 28 Jun 2025 18:01:26 +0000
Manifest this update: Sat 28 Jun 2025 18:01:26 +0000
Manifest next update: Sun 29 Jun 2025 18:01:26 +0000
Files and hashes: 1: 2huf6PGjORf-5-Tb6fq5JeuGJak.crl (hash: UYYvCizQSfBfICqD9GNlFuFKrjzQRUtPor7cPscwRs4=)
2: qARNDLbWZGpXclqzpXtzfvYP72c.roa (hash: yeRNjTwXDaIWE/tdw8m2d67pmit4bLUSMZLje7zj8IA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:8b:02:c1:29:85:7a:6d:b8:ec:99:98:d4:3f:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9
Validity
Not Before: Jun 28 18:01:26 2025 GMT
Not After : Jun 29 18:01:26 2025 GMT
Subject: CN=02ce84a1b79fb25b23f66bce9fc1bb5235dcf0e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:87:9c:e3:cc:43:4d:ec:17:30:85:3b:d8:a9:
d3:17:33:18:52:ff:36:ec:7c:68:56:73:10:98:0f:
04:2b:47:71:e4:27:4d:45:1d:d7:e5:c5:5c:15:24:
c0:26:95:f1:10:3f:0d:81:ec:a9:50:c9:b9:47:d5:
f7:84:3e:ab:8a:f2:ee:4f:b3:68:b1:a1:3f:a6:da:
01:04:01:dd:46:92:8d:52:c0:7d:50:c8:18:0e:70:
6a:30:0d:74:17:1a:1a:8b:10:52:8f:af:df:8a:23:
ca:8d:88:90:11:65:92:dd:55:a3:9f:b4:3f:ed:01:
f9:05:a9:30:2f:a8:94:5c:77:76:62:79:a6:58:03:
f6:a1:f9:60:75:30:69:c9:71:63:fa:46:5a:c5:00:
24:06:d0:c4:43:d4:25:a5:4b:a0:3f:04:9b:e6:ff:
21:b2:4b:65:fa:db:c2:4b:a9:93:70:2d:c0:bb:0a:
48:e7:2a:6d:6e:85:67:d4:c0:84:83:49:6e:e8:9a:
46:3c:ec:db:ae:8d:b1:e8:48:cb:5a:94:56:4d:0f:
92:77:4b:20:71:53:9d:d7:f5:b7:ab:25:9a:3e:16:
23:d5:48:62:e4:2a:c0:72:06:3f:7d:d6:86:9b:df:
18:3f:87:6c:f7:eb:ea:a7:6f:3c:3f:ce:56:1e:fc:
9a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:CE:84:A1:B7:9F:B2:5B:23:F6:6B:CE:9F:C1:BB:52:35:DC:F0:E5
X509v3 Authority Key Identifier:
keyid:DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:11:97:8c:61:86:a9:08:9e:12:75:f3:8b:79:c9:3a:7f:d1:
ff:16:41:b2:2f:66:58:5b:c6:af:cd:10:df:d6:58:0e:18:7d:
87:4b:dd:0f:b7:1a:d8:73:6a:cd:ec:43:ee:76:82:6a:6a:aa:
0e:b0:f1:aa:07:f4:66:95:80:9b:49:f8:8e:41:fa:61:2f:c2:
fd:52:58:28:82:69:fe:b8:1d:48:0a:f1:0b:22:1d:33:6b:0b:
3f:45:85:10:eb:48:72:5e:fe:85:74:db:90:31:24:ee:70:43:
be:cf:23:b9:f7:70:6c:de:d2:42:8d:7e:35:47:25:aa:bb:54:
e6:59:2d:2a:0e:59:22:32:66:db:1c:09:49:ac:e5:fc:fa:e4:
f6:d4:3b:1b:18:f3:0c:ea:cd:36:dd:71:35:34:e5:38:55:36:
56:a6:af:2a:9d:67:59:15:86:ff:0d:fd:33:e5:e6:87:23:58:
4f:03:c5:93:d4:a0:60:ed:af:ba:c1:b2:f7:89:50:17:1e:8f:
8e:be:62:94:19:c4:22:86:87:f0:fd:af:a0:c9:c3:73:8d:74:
6f:15:19:c9:a7:54:7d:42:21:b8:5e:0a:7f:d3:24:d6:ce:7b:
5c:fd:ca:ce:46:d4:78:1b:f2:e1:ab:35:ba:d4:c3:46:16:62:
5d:a1:3d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:00:45 2025 by rpki-client