Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
File: 2m3EGSZFyEKk-i-II08uWhhMdmQ.mft (raw, json)
Hash identifier: 1a0CdXg3Xb0J17n4Z7cAb6Um7a1Rn6iV31dIIYbBjIY=
Subject key identifier: 4B:CD:07:F8:69:68:E5:99:91:07:31:C7:E4:65:50:E4:D8:50:6E:87
Authority key identifier: DA:6D:C4:19:26:45:C8:42:A4:FA:2F:88:23:4F:2E:5A:18:4C:76:64
Certificate issuer: /CN=da6dc4192645c842a4fa2f88234f2e5a184c7664
Certificate serial: 0197B6A0E17626081E0C39930891AA4B49E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
Manifest number: 0712
Signing time: Sat 28 Jun 2025 13:01:26 +0000
Manifest this update: Sat 28 Jun 2025 13:01:26 +0000
Manifest next update: Sun 29 Jun 2025 13:01:26 +0000
Files and hashes: 1: 2m3EGSZFyEKk-i-II08uWhhMdmQ.crl (hash: AkOMaPgurudRIrzgOh9xehfJbl+FheLiyYN7JDAG1JM=)
2: JwOlXzHs1rdGVXlkVOqZWuxz-yI.roa (hash: PGrtrfZNHqKpdplaHtlzlb/8zTI8cEQQrTdbVPKqLz0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:e1:76:26:08:1e:0c:39:93:08:91:aa:4b:49:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da6dc4192645c842a4fa2f88234f2e5a184c7664
Validity
Not Before: Jun 28 13:01:26 2025 GMT
Not After : Jun 29 13:01:26 2025 GMT
Subject: CN=4bcd07f86968e599910731c7e46550e4d8506e87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4a:27:89:cd:dd:f3:dc:6a:db:d9:2b:ac:03:
73:cd:92:3e:f9:15:e0:1a:43:84:ec:e2:ea:6b:00:
9c:54:37:b0:48:d0:13:7a:5c:46:5e:c1:48:d5:51:
5e:0e:04:9a:f2:8a:16:14:a4:e7:e7:15:16:51:59:
27:84:bc:01:d0:37:a9:c9:82:fa:37:f9:09:22:17:
4d:9f:a5:a2:81:56:c0:19:13:f3:9b:6f:4b:77:f9:
3c:8e:90:a9:88:fa:11:a8:f6:82:da:2f:3a:98:24:
ca:7a:11:16:af:b3:7a:81:dd:19:50:e6:1a:8e:2b:
cb:ca:2e:f6:f6:98:51:7e:31:23:47:c3:50:ce:3c:
8b:60:c4:ab:c6:b6:6f:5c:e9:9d:2b:10:af:a6:05:
19:1b:f0:28:49:8c:31:34:4e:bc:0c:59:b1:a8:72:
f1:aa:e4:5f:64:79:9a:91:1d:f4:5f:04:67:a9:db:
da:56:cf:2f:c0:e1:97:a8:78:a2:9e:f1:0b:66:bf:
d6:32:71:91:ce:ff:6a:08:4b:e1:47:23:5b:07:2b:
5e:34:26:f6:30:82:c4:b8:6a:ea:f4:ee:08:91:06:
c7:33:2d:41:be:28:d4:e5:b2:2d:99:b9:6e:4c:b5:
92:bd:ea:8a:c8:13:44:59:f5:22:59:8f:3a:f9:cb:
9d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:CD:07:F8:69:68:E5:99:91:07:31:C7:E4:65:50:E4:D8:50:6E:87
X509v3 Authority Key Identifier:
keyid:DA:6D:C4:19:26:45:C8:42:A4:FA:2F:88:23:4F:2E:5A:18:4C:76:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:67:b4:a2:2d:fa:e8:65:cf:3c:7b:c0:fb:a4:11:1e:ee:e6:
4b:ab:4f:16:a0:0c:f5:f6:2b:8e:4c:7d:7c:00:25:51:25:27:
99:7c:11:2b:65:5a:f6:9d:a2:9b:bd:15:e0:7c:c7:c6:a5:15:
a0:52:9a:bd:9f:ef:8f:ce:85:5b:80:ed:72:01:85:10:d7:b7:
07:8d:24:89:7e:d3:6f:5f:14:bf:59:60:6c:90:02:0a:f0:cb:
0c:9f:b5:09:6d:e7:c3:1e:d2:e9:d1:2d:8d:ae:31:90:7d:a1:
79:88:7f:d0:28:21:8b:2c:b1:c4:de:e9:0a:fe:70:50:a6:6f:
64:7b:17:4b:28:dd:d1:cc:c3:07:8b:3a:c0:ca:e7:4e:65:83:
0f:6c:3a:5a:ae:c9:48:14:0a:80:88:df:3a:97:b5:9b:f8:b1:
93:0b:7c:2c:c3:c8:9c:7f:c8:ae:a4:7b:49:3c:91:c9:86:2b:
77:cd:aa:d6:eb:d1:4f:d9:03:dd:06:b4:7a:9e:cf:57:1e:e2:
12:30:b4:41:22:49:9e:52:3b:df:b4:31:57:70:86:ec:cf:29:
9e:46:cc:90:35:54:c6:1b:60:31:2e:80:db:08:51:fe:3c:35:
83:8b:74:96:e0:86:92:a5:9b:84:2c:28:ad:67:e7:7c:be:28:
46:19:2b:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:21:06 2025 by rpki-client