Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
File: 2DLajUWISdX0C6bwuSCPhYXZ4j4.mft (raw, json)
Hash identifier: ZKuncaRHgbL2NsNOpfDrUa8q/vH270sDh1Oki69a3Zs=
Subject key identifier: 82:20:3E:EB:05:A2:23:BB:0F:A7:1F:2C:4D:D2:FD:76:99:63:4E:D9
Authority key identifier: D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
Certificate issuer: /CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Certificate serial: 0197B5FBB7405A348C786355354E413629FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 10:01:01 +0000
Manifest this update: Sat 28 Jun 2025 10:01:01 +0000
Manifest next update: Sun 29 Jun 2025 10:01:01 +0000
Files and hashes: 1: 0LdCYiyoo_rQZDLAQK9EXmWdrLs.roa (hash: ii+DUPaWPj2PKPLgx9rgU4vJhM6MjQajOc4FBEHl1O8=)
2: 2DLajUWISdX0C6bwuSCPhYXZ4j4.crl (hash: 0F12t+vlGduuHwBHq7T/F0Gn6Wu+0nWvvVLyYkRpfpY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fb:b7:40:5a:34:8c:78:63:55:35:4e:41:36:29:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Validity
Not Before: Jun 28 10:01:01 2025 GMT
Not After : Jun 29 10:01:01 2025 GMT
Subject: CN=82203eeb05a223bb0fa71f2c4dd2fd7699634ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:78:27:26:42:ee:0d:6b:26:23:3a:62:9f:d2:
87:cc:76:17:3a:38:9c:cd:d3:9e:9c:48:09:d1:1d:
30:13:a4:8f:d3:48:b6:44:fa:5c:40:62:66:3e:53:
fa:02:6d:73:61:22:57:c4:0e:63:bc:f6:9b:43:62:
1a:65:2f:30:c3:26:18:58:72:cd:c4:70:3c:06:c6:
27:8b:0d:c9:75:19:f0:1f:7e:0b:b4:13:f8:ec:d8:
66:c9:3d:4b:77:b1:71:42:de:7b:3e:d2:be:10:3e:
e7:d5:c3:53:53:6a:2f:aa:0b:99:9b:18:04:4d:e7:
fd:3f:ae:9d:10:17:6a:f9:8b:9b:63:9d:8c:44:e2:
27:2b:29:9e:c1:35:72:9b:f9:d0:61:90:ce:31:d3:
69:25:d8:ab:69:3a:f4:7e:ee:ac:68:d7:27:dd:d8:
0f:3e:22:dd:0e:dc:b0:e5:d4:23:c0:6d:d8:a4:34:
c4:64:fc:c7:5e:54:8f:df:e5:d7:e7:ca:25:2a:dd:
d3:59:e4:ce:c7:db:61:f8:9f:5b:4f:46:60:b9:a4:
b8:c9:03:46:40:cf:23:59:c4:ea:59:cb:6c:3b:c4:
a4:ad:a6:fb:58:70:35:19:cd:18:9f:56:1d:06:cb:
43:8d:5c:1b:c0:e4:c7:88:33:ee:1c:49:53:f1:b3:
80:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:20:3E:EB:05:A2:23:BB:0F:A7:1F:2C:4D:D2:FD:76:99:63:4E:D9
X509v3 Authority Key Identifier:
keyid:D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:bf:d8:bd:20:ea:71:6c:09:b5:2c:b0:f5:34:ff:39:14:01:
05:6c:ae:5c:e4:e2:c3:c8:a1:39:e7:17:fa:a5:6f:15:1d:41:
ee:85:6b:db:de:42:b0:25:4f:af:ee:f9:48:b8:fa:6a:51:77:
79:d8:38:bb:2d:43:f6:f7:41:1b:5e:ab:ea:dc:a4:d4:a9:44:
d7:1f:98:a2:26:5e:4e:aa:82:66:9f:4e:af:6c:0d:d9:48:ec:
ec:d5:64:db:2f:07:fd:ec:4b:89:2c:7e:dd:a7:eb:99:83:94:
5c:ce:8b:6e:d0:5e:d8:31:d6:5b:6a:44:cb:41:4e:8c:02:fc:
05:0d:77:4c:31:e5:0b:74:5f:53:64:ac:6d:60:3c:61:14:e2:
92:d1:15:a8:0b:2b:5b:0e:04:95:21:e2:08:5f:20:2e:63:ee:
56:ae:77:24:be:12:7f:ec:41:a4:ea:1d:98:63:30:b5:d8:a2:
0d:01:dd:d8:f5:7c:b4:f7:25:e9:73:22:bf:46:02:a3:48:21:
5d:2a:95:7e:cb:42:bd:d4:e0:d1:9d:5b:97:75:b0:08:46:26:
fa:46:d4:de:78:82:2c:ea:5e:88:f7:73:11:31:04:2e:01:a8:
b4:73:5d:8c:ce:cb:05:eb:29:eb:e1:42:32:3d:73:48:07:c3:
c3:b2:3d:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:06:36 2025 by rpki-client