Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
File: 2RTaVuGpNGSdoClkrBLro0xcuE8.mft (raw, json)
Hash identifier: iNSS+DNFCnqjc4y9pZp2uraYkrMIbnStFTyPSZnXtWo=
Subject key identifier: 19:7A:AB:77:B9:34:08:97:CE:D7:B7:C2:8B:63:14:C7:AC:B9:C3:03
Authority key identifier: D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
Certificate issuer: /CN=d914da56e1a934649da02964ac12eba34c5cb84f
Certificate serial: 0197B77CD9361D7CA4B0F142DCA3437C5E57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
Manifest number: 0311
Signing time: Sat 28 Jun 2025 17:01:41 +0000
Manifest this update: Sat 28 Jun 2025 17:01:41 +0000
Manifest next update: Sun 29 Jun 2025 17:01:41 +0000
Files and hashes: 1: 2RTaVuGpNGSdoClkrBLro0xcuE8.crl (hash: R3IeDtWYOjalV/C/KCLZ/Z8U9U4y3YOHhdhUZADurnM=)
2: As7V6ZE1xBs1gl2SXAEbNIUHC00.roa (hash: kQVt6PxymkEnwafOS16jS1OEQiU/aYHOchiiJ14/rGk=)
3: PIhsP1al3YizxN861NowDoYoHI0.roa (hash: R9+qOpDwEb0Q5efJFh94SK/9P5J9FFbPDMd4Z1g9adY=)
4: RVfWb6AeQUrXaw0eh9r6r19sjZE.roa (hash: v4r/LVDf839QcMU4tAbsB+argaU/EH+WPkLUSna1SOM=)
5: T195uzhcxLzu10eyYWudFCGivFA.roa (hash: qzUIoK7cQxzw4ahmYyu2KSE8akPb2eWd34lvfRiJKwg=)
6: WLuKYa43v4uLoTtBwSGJKLjUaW8.roa (hash: Fla1bcGk5oIM2PQQTeiavoL8NWNQFQ/epjWD6RXMXlw=)
7: h2By371OCvj77wNVdyQcqgznsSg.roa (hash: soUA/0DY5+xPnyfK/0AF2K5yBnM6iGB14VNuRKlaQjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:d9:36:1d:7c:a4:b0:f1:42:dc:a3:43:7c:5e:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d914da56e1a934649da02964ac12eba34c5cb84f
Validity
Not Before: Jun 28 17:01:41 2025 GMT
Not After : Jun 29 17:01:41 2025 GMT
Subject: CN=197aab77b9340897ced7b7c28b6314c7acb9c303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9c:59:03:08:e6:ae:71:53:3c:a3:e1:1d:00:
01:1a:b9:af:eb:85:45:66:ff:b9:8e:7c:47:3b:62:
fd:5f:e2:6d:ca:c9:23:54:50:b2:b4:51:84:fd:1e:
e7:a3:cb:7d:5b:1a:68:80:be:16:e3:80:0b:43:86:
4b:db:cf:06:c4:df:68:2d:e8:7a:dd:24:fa:c8:03:
84:e0:7d:9c:7b:38:2e:3d:70:58:64:a7:95:69:a1:
86:5b:62:85:8a:e2:c0:ab:cb:78:6f:ec:1b:f9:69:
cf:16:b0:46:a6:06:c0:cd:f4:c2:49:3c:33:d6:2e:
4a:4c:31:d8:b3:d4:5a:ab:a0:0a:d1:0e:90:fd:36:
09:31:2d:44:60:e8:4b:7d:46:67:5a:3a:7f:23:1a:
27:ca:02:3e:fd:02:1c:44:5b:50:e7:ca:24:8f:f9:
0b:de:01:af:63:7e:8e:9c:c1:79:fe:ea:57:e3:3e:
2c:8b:73:c1:2e:f2:2d:9c:36:ff:6d:91:d4:f2:32:
5a:45:ea:aa:1e:fc:dd:53:e8:b8:da:2b:05:b7:a1:
40:aa:fe:05:76:53:2c:69:99:d5:c8:d8:a8:a7:30:
2a:74:9d:74:06:83:22:37:7a:ae:76:25:f0:ef:8a:
a9:d8:d0:81:c4:af:f4:e3:61:65:ba:95:4d:5c:e3:
d8:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:7A:AB:77:B9:34:08:97:CE:D7:B7:C2:8B:63:14:C7:AC:B9:C3:03
X509v3 Authority Key Identifier:
keyid:D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:c1:6f:e6:7d:31:ae:02:ce:d3:60:ad:53:6e:ab:34:77:14:
70:d3:74:20:25:2f:ba:c9:5a:5d:91:e8:6b:60:fe:b1:33:9e:
cb:51:67:25:96:6a:90:6a:71:9b:99:ad:74:63:8c:7a:31:cb:
88:38:17:5d:08:d8:42:33:66:3b:c4:d8:70:34:96:58:ca:0a:
fe:bf:13:33:1e:c1:b1:97:92:c9:d9:d6:96:bc:62:7f:34:08:
f5:4b:54:e1:3a:14:5a:80:bd:99:70:a9:ca:8f:1f:05:e4:44:
80:4e:46:ed:d3:27:98:43:21:29:82:0b:8e:4f:63:37:83:31:
6b:60:b5:8f:6a:b3:f7:82:0e:fc:4a:14:7b:77:e1:79:76:a8:
a9:9f:f2:2d:fd:a8:42:5d:c9:dc:7d:0c:f2:02:5e:20:a1:97:
07:88:d9:a5:77:9a:b6:54:b3:48:00:db:c8:db:b4:4d:2f:63:
fc:7b:24:6a:9a:aa:ec:01:d3:8c:65:70:91:80:43:f0:41:80:
8a:4f:93:55:c1:a0:d0:de:55:30:e3:ca:d7:ec:6f:3c:2e:95:
f6:42:a0:66:fb:26:77:91:02:70:c8:67:9a:e7:47:99:7d:12:
ac:0c:a6:a1:e7:cc:5d:4b:76:8e:98:5c:f6:de:dc:ad:bc:10:
9d:e4:cd:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:26:08 2025 by rpki-client