Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: DT7ep111D0iyER0RpbPbwJWdGuh+rxC1BydQ4boohEI=
Subject key identifier: A6:2E:63:D8:E7:CB:13:9B:C1:99:FB:D5:01:86:5C:01:58:C2:B7:E6
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 0197B745A4953928F78F790AA27E8AB1D696
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 1518
Signing time: Sat 28 Jun 2025 16:01:24 +0000
Manifest this update: Sat 28 Jun 2025 16:01:24 +0000
Manifest next update: Sun 29 Jun 2025 16:01:24 +0000
Files and hashes: 1: WWNEma98vqvt3aWub4KvZrisRPY.roa (hash: 8ej/FxtmoHvT2+4JYPncO9OF+5JwUWMEm2sRynTw/0U=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: 3Ue0FPz13fQflafnqxDbXCd7t+Ra2+eBc6nDNx62wPM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:a4:95:39:28:f7:8f:79:0a:a2:7e:8a:b1:d6:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Jun 28 16:01:24 2025 GMT
Not After : Jun 29 16:01:24 2025 GMT
Subject: CN=a62e63d8e7cb139bc199fbd501865c0158c2b7e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a7:c7:21:57:27:dd:0f:43:98:e0:4d:a3:c6:
60:bb:13:70:bd:47:1e:90:43:49:96:71:77:5d:ce:
3e:de:f3:3f:5e:97:ea:ff:8c:97:8f:03:c2:56:b6:
e9:b7:4a:ba:03:00:99:e0:d2:64:16:3b:66:2c:13:
99:89:db:c1:0f:8b:74:ce:eb:06:71:5b:7e:68:08:
35:ac:66:c9:31:b8:11:77:04:99:b0:48:08:fa:c0:
06:62:c4:3c:dc:ab:c1:a4:3d:ad:4b:f0:2f:a1:cf:
4a:b6:23:87:73:55:91:c3:76:2a:30:16:2e:f7:61:
01:4b:30:ab:c3:e8:af:40:d6:36:16:63:50:9e:07:
ae:70:f3:52:a0:c4:2c:93:c4:b1:99:b2:31:07:d1:
02:aa:c4:19:27:10:dd:77:ca:bd:b5:b3:db:b7:0e:
ed:a9:bb:4a:5c:57:c1:6f:15:ce:f9:da:28:c5:bc:
95:ac:36:a5:b4:d1:39:f0:e1:eb:86:fd:e2:27:1c:
86:fe:b6:24:81:c4:f3:02:1f:3a:5c:97:8a:7b:60:
ae:e5:29:e4:ef:68:e8:91:cc:e2:ed:35:19:73:c2:
00:16:7c:44:9a:4f:40:c6:a0:c9:55:c4:89:cb:d8:
3a:0c:a8:24:c2:64:20:7e:c5:ea:0d:0b:82:83:e4:
57:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:2E:63:D8:E7:CB:13:9B:C1:99:FB:D5:01:86:5C:01:58:C2:B7:E6
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:f1:4c:86:a6:f8:01:6f:0c:48:b9:32:f4:50:f8:1b:14:68:
96:ed:76:d5:5a:67:1a:ca:a0:8e:7a:ea:1d:c1:88:fe:e0:b3:
c4:c5:fd:4b:3b:a1:7f:47:f2:ab:b6:c8:3b:1a:a9:a6:03:1d:
3b:f1:f6:8d:4f:02:25:88:e7:11:f1:76:95:ed:f6:84:cd:c7:
e4:95:61:3c:ae:e0:7d:63:ac:10:0a:a2:c6:4e:78:0f:2e:d3:
96:59:35:f3:2d:c7:a0:87:71:d8:2b:b2:8f:3b:58:cb:c5:55:
e5:89:bd:a7:79:8b:41:d2:22:fa:e5:8b:ae:8b:5d:ab:01:9c:
3b:7e:63:6b:52:dd:7d:74:9c:bd:26:70:bc:98:b0:f2:44:73:
71:0d:02:f8:45:27:c7:dd:a9:db:0a:ed:6c:ad:97:1d:c3:51:
fb:66:0e:36:66:ed:e0:f2:9f:f2:4e:2e:09:66:68:f7:63:f8:
e2:a5:fb:7a:c5:29:24:19:ea:a5:0d:52:e2:c2:f5:08:88:8b:
d9:16:6b:f8:5f:a9:db:49:30:bb:d5:98:95:0e:0f:a3:a5:1e:
6d:d8:89:02:3b:2a:d5:e0:55:9f:8e:cb:74:da:1c:72:27:ae:
29:75:19:87:d9:0f:39:37:4a:8a:21:1c:b8:3f:53:b8:d3:d6:
16:55:d9:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:11:48 2025 by rpki-client