Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: Cntw07EU71ZrB7QRBR/RF1lpjSdftch548dSNEsDXiw=
Subject key identifier: 89:C2:3A:72:13:B7:D0:83:D9:78:04:6D:20:49:40:3A:9C:84:E7:06
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 0197B70E9558204AA677BF45C4B55C873664
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 0263
Signing time: Sat 28 Jun 2025 15:01:15 +0000
Manifest this update: Sat 28 Jun 2025 15:01:15 +0000
Manifest next update: Sun 29 Jun 2025 15:01:15 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: yup6FxcrkPEsjvBgNZgRWh6fUcQ5KwWwOpX42FD9zzM=)
2: S9_pIBHq75Wq7oGW-jAli5gxMaE.roa (hash: cpq5fUvjVAhKKLO06wh9HRGgk0x/xpun3Cli9g36l8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:95:58:20:4a:a6:77:bf:45:c4:b5:5c:87:36:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: Jun 28 15:01:15 2025 GMT
Not After : Jun 29 15:01:15 2025 GMT
Subject: CN=89c23a7213b7d083d978046d2049403a9c84e706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9d:5f:45:20:3c:0c:34:44:1b:23:93:89:45:
c4:8b:4e:0a:6e:46:45:55:e9:a1:c7:93:27:71:f6:
5d:e0:8a:48:db:79:0e:33:c1:2c:bf:29:05:70:8b:
74:d1:02:54:75:a3:f0:f8:76:7f:ad:45:5b:5d:86:
02:3f:af:9c:16:cd:78:7c:c2:5b:c8:e0:fd:62:8f:
8a:51:11:83:2d:ab:25:b0:28:40:d2:28:20:47:76:
53:13:74:e0:79:ca:53:7f:42:84:78:82:da:bc:db:
eb:10:8b:3e:f1:b9:ff:f1:86:42:00:52:b2:62:cb:
a4:43:a8:50:92:72:d0:d9:b4:a3:a1:e3:bb:fe:da:
9f:c5:d1:e4:68:7f:aa:bb:df:e3:3d:0f:1e:49:17:
66:34:43:65:53:51:da:30:18:06:27:df:f3:da:7c:
14:7b:8c:1f:03:83:4c:f1:d7:01:65:a9:e5:53:59:
72:52:85:fa:23:a5:f5:b7:3f:8e:a1:69:65:04:ac:
b8:e8:34:c8:50:c3:a2:4d:df:13:1c:df:b9:63:75:
24:5e:56:02:ee:50:e9:d9:92:cc:1f:0f:4e:2c:04:
ee:4b:15:4a:85:ed:55:fb:b3:93:4d:94:cc:00:d9:
74:ad:4a:17:b5:52:01:a7:23:cd:31:30:f9:52:a8:
72:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C2:3A:72:13:B7:D0:83:D9:78:04:6D:20:49:40:3A:9C:84:E7:06
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:7e:a8:31:0f:17:c3:d8:86:18:75:f4:d9:73:3c:aa:1e:6d:
c2:5b:1d:7b:e2:9e:20:8d:05:89:21:86:35:e1:21:f3:78:4e:
de:de:68:07:ed:2d:fc:a1:ec:ff:c5:90:8c:13:c9:2f:a9:98:
3a:e5:68:df:ca:8a:2b:06:9e:a8:81:57:1a:45:b3:eb:b2:77:
37:c7:9c:9e:5c:ee:a9:3d:bf:e9:0e:6b:44:d8:ee:52:92:01:
bc:6d:88:ce:74:7a:bb:62:ea:f4:9f:34:b2:54:bc:c8:e2:e7:
1c:8e:a4:b9:08:ec:e1:4c:44:d3:09:c3:53:0c:76:97:80:9b:
bb:53:b6:4e:ff:4a:aa:e2:cc:f6:2c:72:32:ed:bd:d8:31:28:
7c:c3:f0:db:97:20:67:da:46:b3:b5:98:e6:cf:75:c1:a2:e7:
6d:50:95:1d:0a:fb:8b:82:5d:85:f5:81:73:fe:52:aa:f9:d2:
86:e1:b6:73:52:0d:bf:d4:4d:01:84:78:db:00:d1:df:79:fc:
a6:b6:20:f9:ae:17:19:2d:62:6e:67:d6:e2:90:b8:25:be:34:
95:be:90:13:87:85:a9:bc:d6:16:67:5d:6e:51:35:ea:5b:1a:
dc:ce:b7:61:6c:9e:05:ae:ff:14:fd:ea:89:f4:4a:34:fa:2d:
93:24:b8:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:43:23 2025 by rpki-client