Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
File: 2m3EGSZFyEKk-i-II08uWhhMdmQ.mft (raw, json)
Hash identifier: GOqOAhngg5v+PCxgT1s24csK0iatwxAb1eBTk3XAzWg=
Subject key identifier: C7:5F:CF:FD:DC:D6:A6:5B:00:D1:C9:81:0D:B5:27:53:0D:47:5D:8B
Authority key identifier: DA:6D:C4:19:26:45:C8:42:A4:FA:2F:88:23:4F:2E:5A:18:4C:76:64
Certificate issuer: /CN=da6dc4192645c842a4fa2f88234f2e5a184c7664
Certificate serial: 0198D6611D4EA0D3F83EFA66816031BA90C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
Manifest number: 07A7
Signing time: Sat 23 Aug 2025 10:02:25 +0000
Manifest this update: Sat 23 Aug 2025 10:02:25 +0000
Manifest next update: Sun 24 Aug 2025 10:02:25 +0000
Files and hashes: 1: 2m3EGSZFyEKk-i-II08uWhhMdmQ.crl (hash: 37eAjfbcocUYDTA+5rtFfPX1jryoOJK1vuQ+TdRkSn8=)
2: JwOlXzHs1rdGVXlkVOqZWuxz-yI.roa (hash: PGrtrfZNHqKpdplaHtlzlb/8zTI8cEQQrTdbVPKqLz0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:1d:4e:a0:d3:f8:3e:fa:66:81:60:31:ba:90:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da6dc4192645c842a4fa2f88234f2e5a184c7664
Validity
Not Before: Aug 23 10:02:25 2025 GMT
Not After : Aug 24 10:02:25 2025 GMT
Subject: CN=c75fcffddcd6a65b00d1c9810db527530d475d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b7:eb:26:a5:5a:6c:8e:c5:a6:d9:c6:d6:e9:
e5:0e:8b:32:42:51:52:3b:52:b3:22:90:ec:1b:01:
b0:cd:56:1d:9e:fd:7b:f6:d0:9f:e0:c4:95:d9:5d:
24:f9:cd:1d:c1:7a:52:ea:7a:ff:e7:75:d2:cf:aa:
cc:d1:38:85:dd:bc:ff:fd:33:72:87:e1:f8:95:58:
93:9b:bd:47:b7:f8:d2:9b:98:17:52:1d:31:73:9c:
34:1d:3c:7b:40:af:8c:08:d7:68:2f:49:63:ce:cc:
67:68:36:d7:a9:fc:8c:9e:7a:28:aa:e7:02:b9:fc:
8e:ea:bb:e6:d0:c0:68:d4:c2:4b:b6:ce:24:47:bb:
cd:af:63:c8:53:bf:e7:e1:ac:a7:a2:55:e3:45:26:
bd:3c:35:78:2c:eb:ee:7f:10:47:d9:85:1c:9b:13:
bd:cf:1d:ea:1d:2f:66:4b:07:d9:28:23:11:01:42:
1f:29:65:87:67:6c:9b:82:b1:3f:7e:f9:d7:81:a8:
81:57:7a:a6:c2:31:96:4a:a0:64:71:ef:25:3c:06:
9c:30:77:7d:5d:7a:3e:91:0f:1b:94:39:dd:f4:81:
b6:14:f2:51:62:8b:e5:46:c0:40:ad:b7:2f:4f:3f:
67:6b:44:77:f3:aa:56:43:b9:64:05:ef:31:a7:19:
60:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:5F:CF:FD:DC:D6:A6:5B:00:D1:C9:81:0D:B5:27:53:0D:47:5D:8B
X509v3 Authority Key Identifier:
keyid:DA:6D:C4:19:26:45:C8:42:A4:FA:2F:88:23:4F:2E:5A:18:4C:76:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:31:64:5d:54:ca:c5:e6:20:2e:58:d9:32:ef:eb:f7:fe:3e:
6d:45:d2:c9:3b:cb:f8:97:dc:a5:bf:32:9d:29:4c:30:76:57:
03:bd:75:6a:e1:46:7c:07:59:11:be:ba:82:e0:58:01:b7:05:
47:3f:5d:69:1d:b7:0b:58:54:e1:ac:21:8f:a1:f9:25:b7:18:
9e:00:50:91:67:8c:1a:53:85:f4:e7:bc:43:be:25:3b:1d:50:
3a:d9:ea:c8:a7:62:84:7f:fb:5a:e7:5b:33:3c:b8:62:86:28:
af:b1:e8:18:6c:ec:24:2e:0b:fc:d1:e9:a5:84:35:79:72:31:
b2:2b:cb:ed:0e:ad:70:9d:78:22:80:0e:17:89:1f:9d:84:ae:
98:e1:9d:cb:11:55:68:f8:bc:d8:13:73:7c:31:0e:03:0a:f0:
b9:4b:94:db:12:5c:05:7a:c4:e9:f8:be:17:a8:9d:d4:b2:97:
83:f6:bc:ce:d2:c8:da:21:49:ae:89:9c:c2:2c:de:9e:66:ca:
28:a0:0c:5c:72:3a:73:42:ac:0f:6a:ac:f7:42:db:38:c4:b6:
98:d6:a7:66:0f:25:89:10:50:f3:28:62:1f:90:c5:e6:ea:1d:
7c:dd:73:81:38:33:aa:a4:49:91:87:08:27:be:c6:d8:db:d9:
7a:28:cf:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:29:51 2025 by rpki-client