Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
File: 2pxnKeHomJmE3YAtGpDonOL-Nzw.mft (raw, json)
Hash identifier: GMfWDwKqkvVdyhAEWVH+P6Sp9B5WfEsJ2mBavUypwzA=
Subject key identifier: 9A:6F:5D:EE:A4:39:D9:A3:15:A9:E5:C1:75:23:92:38:91:96:0D:B2
Authority key identifier: DA:9C:67:29:E1:E8:98:99:84:DD:80:2D:1A:90:E8:9C:E2:FE:37:3C
Certificate issuer: /CN=da9c6729e1e8989984dd802d1a90e89ce2fe373c
Certificate serial: 0197B9A1E5D43057522C8D8230A633CA71AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
Manifest number: 15B6
Signing time: Sun 29 Jun 2025 03:01:24 +0000
Manifest this update: Sun 29 Jun 2025 03:01:24 +0000
Manifest next update: Mon 30 Jun 2025 03:01:24 +0000
Files and hashes: 1: 24_mmtOlkG05yQ7mb26MLLzNTPk.roa (hash: NN9FJFjMrEoXgY4DCGNqxgbjsbFf0mQojMZSGAkFQFg=)
2: 2pxnKeHomJmE3YAtGpDonOL-Nzw.crl (hash: oKjaLurXB25yfiCR56hw/Tzd5sWvFQAPUoR8XkpQtEg=)
3: bhkCmw6Utz1WDIi1a3ZQnDXW25w.roa (hash: vuvSrc/xAi8bu4mOjDMbPo9yb6kp8ev2fK1dkeS76Yo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:e5:d4:30:57:52:2c:8d:82:30:a6:33:ca:71:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da9c6729e1e8989984dd802d1a90e89ce2fe373c
Validity
Not Before: Jun 29 03:01:24 2025 GMT
Not After : Jun 30 03:01:24 2025 GMT
Subject: CN=9a6f5deea439d9a315a9e5c17523923891960db2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:2f:f3:54:73:67:9a:a0:c5:6a:4f:64:77:8a:
c9:0d:43:f8:53:c2:3d:38:d6:8c:fe:cd:0c:0b:31:
7d:96:22:df:da:8a:f0:0c:c6:e5:c7:56:26:28:78:
de:b3:55:de:26:74:e7:b2:4e:c3:46:be:94:24:7f:
10:b6:b1:09:e5:7f:27:01:1f:89:ee:10:ad:7d:5a:
87:56:66:e6:2a:f0:27:92:01:b3:38:48:10:8d:c0:
07:bf:19:bd:64:6a:3b:3f:1c:37:2f:f4:f2:4b:d2:
0d:c1:fc:ea:54:ab:9b:81:75:72:ff:36:aa:8e:ef:
ff:fa:b2:00:cb:74:28:75:81:0e:13:9e:f6:67:c7:
ee:3a:6b:4b:12:42:fc:79:87:9b:19:bb:f7:80:7a:
85:06:82:5a:a1:1c:9a:25:4e:0f:a4:91:7f:fe:4f:
b7:74:a5:80:ce:d9:1e:07:c6:50:36:4f:d1:ce:fd:
94:b7:ac:ba:59:02:e0:e7:60:47:e9:3b:1d:d7:c8:
ea:16:30:d0:2e:5f:89:3b:33:19:3f:a1:56:a3:25:
47:0b:f4:c9:0e:20:cc:a1:25:43:13:0c:80:fd:95:
4b:0a:df:db:3e:7f:72:52:a5:3b:07:f5:1f:16:ca:
08:35:7d:b1:a9:4a:fb:ad:64:8a:7f:40:34:7c:c6:
df:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:6F:5D:EE:A4:39:D9:A3:15:A9:E5:C1:75:23:92:38:91:96:0D:B2
X509v3 Authority Key Identifier:
keyid:DA:9C:67:29:E1:E8:98:99:84:DD:80:2D:1A:90:E8:9C:E2:FE:37:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:24:23:04:f5:d5:4d:6c:36:9d:6f:5d:e9:bf:51:89:58:b6:
76:fe:fa:1b:6b:f4:08:19:bb:c4:50:7a:ff:cf:40:0e:31:53:
3c:4b:09:48:0f:00:c7:ec:2f:21:7b:ee:85:b9:bc:20:51:f9:
95:2a:e3:f0:51:77:82:66:a6:ff:1e:98:19:84:cb:59:ce:6f:
f5:55:93:a8:e1:d7:b7:b1:7e:b6:33:b0:f1:97:65:68:04:b1:
b4:86:2f:aa:cc:fe:c8:60:2d:13:6f:99:e3:85:6c:59:14:8f:
b0:67:c2:9c:a5:7c:79:a8:d9:aa:09:50:8b:3c:93:10:59:97:
43:54:c6:3a:30:1d:77:0a:4d:63:63:ae:2f:1b:e5:2d:72:03:
68:b4:af:71:36:a1:c7:c7:5d:d9:20:4c:5b:ae:36:f5:d4:77:
50:b0:a9:95:4a:33:83:a2:23:54:ef:27:30:d6:32:c1:eb:9a:
7a:38:73:24:eb:3b:64:fd:31:19:6b:05:12:1b:a9:ff:a7:11:
98:08:51:a0:42:bd:25:c8:46:38:73:5d:63:5a:7c:29:01:87:
cb:fa:da:4f:40:38:fe:ae:68:09:8a:ce:0e:5d:3b:a3:07:c5:
cf:57:0f:c5:8f:d1:73:ab:63:5c:ac:aa:a9:ae:ff:3d:48:ab:
b8:7a:eb:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:50:31 2025 by rpki-client