Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
File: 2jQhazvZIbbGYYeoyGpKS7DuUj8.mft (raw, json)
Hash identifier: JSpddbYE6tn3bo+hXDeAQMhxy++V6yKhzmUIpNwIqNk=
Subject key identifier: 74:3A:7D:DB:F0:29:A2:B2:57:3D:06:78:D2:7B:2C:D2:1A:DC:2D:5E
Authority key identifier: DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F
Certificate issuer: /CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f
Certificate serial: 0197B70F323C11C20CE0791D8265907A9C52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
Manifest number: 12BC
Signing time: Sat 28 Jun 2025 15:01:55 +0000
Manifest this update: Sat 28 Jun 2025 15:01:55 +0000
Manifest next update: Sun 29 Jun 2025 15:01:55 +0000
Files and hashes: 1: 2jQhazvZIbbGYYeoyGpKS7DuUj8.crl (hash: rqf1hnQ+ttz40hBH9SqWCMrBQ0LtN2BE0QcZhYoAgos=)
2: y-rAx3x5ggb3kBBIMyQl2KhriYw.roa (hash: j/sr0gEHuELryIqb8wmwmOpvCJwyct02mKuP2NU5Abs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:32:3c:11:c2:0c:e0:79:1d:82:65:90:7a:9c:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f
Validity
Not Before: Jun 28 15:01:55 2025 GMT
Not After : Jun 29 15:01:55 2025 GMT
Subject: CN=743a7ddbf029a2b2573d0678d27b2cd21adc2d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:0f:fc:c8:49:7c:ef:81:14:fd:08:0c:58:ae:
81:ae:e2:6b:fa:e6:7f:4c:21:64:1f:a2:b5:fa:23:
22:fe:2e:8c:6f:f2:a1:33:14:fa:90:9c:01:3f:de:
aa:f9:b3:3b:81:78:be:20:62:84:3b:ed:09:7f:79:
40:63:56:e6:26:02:eb:58:ed:d6:57:63:4e:f8:f7:
77:f7:31:23:cf:2a:61:95:dc:0f:88:10:65:40:f4:
5e:16:e6:92:bb:2a:98:45:25:05:98:6c:8f:34:1e:
36:a7:0c:bc:90:e1:71:71:3c:e6:7b:b7:8a:3e:1f:
b2:67:b3:2a:ed:e9:8e:d6:09:a8:3f:43:d0:0d:87:
6b:94:68:42:39:92:e8:a7:0e:7f:2e:63:63:2a:0e:
32:13:48:e4:48:5c:ce:67:c1:6c:85:d7:ac:d0:fc:
3c:7d:88:69:be:f7:70:e1:b8:e4:47:68:3b:d4:7c:
58:ee:c5:c0:62:68:c7:40:c5:52:0f:43:25:4b:c6:
14:68:41:2f:45:fc:2c:50:8c:f3:19:16:d0:01:65:
07:b2:81:37:6e:c3:d5:2b:51:97:fa:70:90:32:cd:
08:e3:50:95:db:51:a8:30:8d:09:e5:e5:f5:17:cd:
c5:e9:a7:48:5d:41:da:3c:da:80:f9:28:7d:94:9c:
b1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:3A:7D:DB:F0:29:A2:B2:57:3D:06:78:D2:7B:2C:D2:1A:DC:2D:5E
X509v3 Authority Key Identifier:
keyid:DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:d8:3f:d4:1e:6a:bf:3e:70:fc:f2:38:a6:f6:e2:1a:d8:55:
74:ec:b8:56:1c:93:47:8f:50:1e:b4:17:78:4c:3d:c8:d5:31:
a5:7e:d3:75:dd:7b:a6:93:ce:35:22:9e:1d:6a:a2:f0:98:37:
4b:00:23:ad:76:fd:1a:29:0b:75:4c:5a:e1:d4:19:ca:18:e9:
2c:6d:bc:f7:79:88:fb:86:70:c8:0b:87:a9:b5:c6:d1:02:9d:
25:90:03:23:4c:54:77:26:40:ce:63:93:16:b5:fd:14:2a:50:
22:16:cc:c2:09:a8:27:51:87:9b:e5:10:52:5a:7a:1a:9c:12:
7c:d0:f0:f1:97:7b:2d:9b:60:2a:ea:e8:d5:a6:dc:1e:b6:74:
41:ab:bd:5c:af:30:f8:da:ee:24:44:81:ea:cc:a0:15:d9:0c:
50:58:f2:56:de:6d:b1:93:06:b4:f8:ac:fd:54:3a:57:c3:20:
52:f1:c4:61:6b:83:fa:02:80:1d:cc:fe:a8:7c:7c:5e:78:50:
62:ce:ca:05:61:80:ea:eb:ca:fd:a5:a1:31:06:06:a9:72:54:
bd:5c:3f:28:31:fb:de:27:de:4b:c6:7f:34:23:a7:5d:03:4d:
f2:5b:08:c6:65:d8:35:51:db:99:29:74:24:f7:30:38:fe:df:
a7:eb:63:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:01:55 2025 by rpki-client