Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
File: 2LlxoaILZPFCUYAfj0NKQHX36pE.mft (raw, json)
Hash identifier: 4EgKrItmF83wMMe+XAQ1YJZJ9Ud1dU1TT2AZjeBD5rE=
Subject key identifier: C7:D8:24:27:3D:ED:33:4F:1C:D9:A5:25:64:05:6B:9F:96:7E:03:C7
Authority key identifier: D8:B9:71:A1:A2:0B:64:F1:42:51:80:1F:8F:43:4A:40:75:F7:EA:91
Certificate issuer: /CN=d8b971a1a20b64f14251801f8f434a4075f7ea91
Certificate serial: 0197B6D748ADADE03E1B44C67230ACD3D6DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
Manifest number: 0264
Signing time: Sat 28 Jun 2025 14:00:51 +0000
Manifest this update: Sat 28 Jun 2025 14:00:51 +0000
Manifest next update: Sun 29 Jun 2025 14:00:51 +0000
Files and hashes: 1: 2LlxoaILZPFCUYAfj0NKQHX36pE.crl (hash: w1BUk4+F32qHDvVs/+vSjcKcrroru8hNp+ji8vgyASc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:48:ad:ad:e0:3e:1b:44:c6:72:30:ac:d3:d6:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8b971a1a20b64f14251801f8f434a4075f7ea91
Validity
Not Before: Jun 28 14:00:51 2025 GMT
Not After : Jun 29 14:00:51 2025 GMT
Subject: CN=c7d824273ded334f1cd9a52564056b9f967e03c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e2:89:6a:61:37:63:c6:99:e3:5f:97:96:02:
2b:d4:6c:a5:81:d6:61:e1:d3:70:bb:cd:63:5e:78:
49:4b:3d:44:07:10:01:8c:e7:c2:5b:30:49:b4:ad:
2e:bb:e2:54:4f:c0:22:04:39:d9:5e:48:47:51:c7:
d9:52:df:3e:ac:ac:0a:d6:e5:15:95:88:75:3f:c0:
0d:e9:c6:aa:44:cc:37:2b:50:39:bd:78:84:99:70:
e3:13:f5:a0:61:8a:4c:10:4b:d4:d9:39:a1:7f:a1:
df:3d:a0:a2:68:c1:3b:65:96:e2:45:89:7e:0f:a6:
68:6a:54:b3:32:63:75:da:0b:5e:24:01:39:bb:99:
68:f8:29:26:6f:f5:52:c4:8e:3c:51:da:a3:71:45:
1e:ae:5e:d5:9c:ee:3e:e9:88:b3:7e:3f:6a:80:81:
2d:d7:63:d2:0c:ae:6f:aa:da:81:ce:80:d9:64:b6:
64:8e:b6:3a:b2:f9:32:a2:ac:1a:40:92:64:52:19:
ff:d1:8b:87:76:e2:fd:31:83:71:3f:6b:bf:00:3a:
92:df:c1:6c:97:d8:e9:16:02:9d:86:9e:a4:c7:ea:
6a:57:98:92:8c:07:fe:b3:4a:c1:e3:01:6a:94:6d:
03:7a:78:09:53:82:74:77:d3:49:aa:6f:2b:56:63:
c1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:D8:24:27:3D:ED:33:4F:1C:D9:A5:25:64:05:6B:9F:96:7E:03:C7
X509v3 Authority Key Identifier:
keyid:D8:B9:71:A1:A2:0B:64:F1:42:51:80:1F:8F:43:4A:40:75:F7:EA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:9b:91:fb:1d:2b:82:59:7d:f1:9c:8d:8f:0a:d7:ff:b9:92:
43:d3:98:0a:01:c3:e4:51:1f:c9:1e:00:73:4b:b7:f1:27:9c:
b9:eb:79:a1:a7:df:89:38:a1:7c:33:12:b5:5c:99:0b:45:52:
19:fb:8b:f2:b0:cf:b6:55:57:96:f3:6e:02:4f:74:a7:57:6c:
1a:82:f5:21:08:c0:93:84:99:73:95:34:f9:aa:9e:06:6c:0c:
ae:ba:bf:7e:3f:82:8e:86:70:13:c9:7c:df:72:0c:34:86:95:
4c:e3:f7:04:13:68:21:99:98:59:ce:a4:c3:fc:0f:12:dd:98:
ba:a4:a1:38:22:cf:e6:31:b4:ee:b5:22:07:ed:af:56:f3:ab:
5c:95:92:09:86:9b:23:1a:a4:fe:47:40:04:29:b7:cd:a1:42:
b9:1a:db:8d:ee:b8:b0:cb:47:65:12:7e:eb:a5:08:5e:8a:53:
01:21:10:c5:86:bd:14:4a:1e:94:60:02:d5:af:d1:4b:bd:0a:
2c:4a:a6:b8:04:5a:40:ec:cc:25:4f:ee:3e:4b:bd:54:05:39:
aa:d8:a1:af:92:35:7b:94:b8:1c:b1:56:e6:74:1c:3e:eb:52:
a7:51:92:19:38:6c:75:ad:0e:56:68:8d:72:2c:49:61:40:8a:
16:c9:57:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:34:59 2025 by rpki-client