Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
File: 2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft (raw, json)
Hash identifier: OGoGNct9TVs6pLKPaGOX5XKi8FjmVHiMg4/izyn8+ZI=
Subject key identifier: 95:3F:2A:C8:9D:53:FB:BC:D5:AE:A2:9E:C5:DD:0A:F4:7A:71:59:29
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 0197B6A207B45F715E859B91BA34780A558F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
Manifest number: 0CF7
Signing time: Sat 28 Jun 2025 13:02:41 +0000
Manifest this update: Sat 28 Jun 2025 13:02:41 +0000
Manifest next update: Sun 29 Jun 2025 13:02:41 +0000
Files and hashes: 1: 2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl (hash: IduIf7Rs/64qV+koQZomFVA1bfaF8euY3mj3ha+HYHQ=)
2: 6MpCaf0UOBYn8TQkxejiZakptqM.roa (hash: ng/NGbK8yrrWtQu9zhuJZevZ0uFrzLg7FL/FvO6/2MU=)
3: VEU2Xx_W7oXurM3BP9vIKZCMG4o.roa (hash: o9K/DHxqI5B4HDKoeQx+W7Rwvv3Sj+2t3qcauvi8Xig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:07:b4:5f:71:5e:85:9b:91:ba:34:78:0a:55:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: Jun 28 13:02:41 2025 GMT
Not After : Jun 29 13:02:41 2025 GMT
Subject: CN=953f2ac89d53fbbcd5aea29ec5dd0af47a715929
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:45:28:1a:48:ce:81:44:4b:a1:4c:c4:51:04:
54:13:58:ba:df:81:2e:10:de:94:98:5c:9e:04:ef:
a7:87:99:c5:6d:a0:29:e7:f3:21:2a:44:05:a0:7c:
e8:27:a6:9e:f0:48:55:36:1b:fc:80:69:fc:d5:83:
4d:02:f7:8b:50:75:b6:5f:93:b4:12:b3:0a:57:42:
d2:2f:3d:33:a3:96:8f:a7:db:53:1e:fa:f8:3b:ec:
78:5a:29:6b:da:b6:d7:ed:82:27:dc:01:bc:32:23:
29:ee:38:45:67:49:cb:a4:e3:17:a9:86:59:89:d0:
01:87:03:bd:ae:16:47:c7:c8:d3:50:0f:76:18:3d:
59:5b:7e:4a:fd:14:fe:59:55:90:8d:af:81:fc:a5:
d8:cc:11:ed:e6:ed:1d:c3:5f:c5:3f:08:3f:f6:c0:
24:e0:24:c4:0e:af:e6:f5:73:ee:40:ee:1a:26:bb:
fb:8b:e9:6a:62:a7:e1:e2:44:52:87:a8:b4:33:ee:
44:89:93:27:22:15:67:7e:cf:50:3f:07:9c:3b:f1:
87:16:f7:35:07:5b:8c:5b:c4:22:37:39:1b:55:09:
ed:58:66:d2:6a:cb:bb:21:9b:bf:13:19:9d:c9:a4:
d1:f3:87:12:e5:e4:44:4e:7d:fe:7d:ce:71:54:13:
7c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:3F:2A:C8:9D:53:FB:BC:D5:AE:A2:9E:C5:DD:0A:F4:7A:71:59:29
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:f7:44:10:87:66:f7:7e:60:e7:35:82:83:f2:69:6e:fd:83:
dd:60:2c:6c:73:f5:3d:93:66:55:4e:b7:a9:9d:fc:4d:08:e9:
e2:b2:08:38:5f:e9:fb:20:2c:b5:75:58:b4:e9:ed:21:55:c9:
74:10:c9:7e:d3:33:c9:7a:fd:1e:0f:2a:c5:1c:23:4b:8a:6a:
48:a8:06:d5:b9:7a:26:a8:68:ce:a7:ef:cb:8f:4d:f3:5f:af:
fa:cb:1c:5a:39:c1:ca:91:f3:5d:fa:44:fc:c4:0c:d0:43:1b:
c6:f0:b2:92:a7:01:53:a7:fe:a2:ee:8a:3a:42:1e:17:f4:3d:
05:7b:60:1d:da:41:f6:a8:dd:92:ea:03:c4:80:71:32:f2:6c:
2a:ba:53:2c:1c:28:eb:f6:8f:52:d3:7f:cf:2c:83:bf:cb:54:
59:60:34:4d:e4:85:3a:b6:8c:11:3f:e7:b2:01:5b:5c:e0:83:
9a:27:e7:66:de:99:18:08:78:18:9a:64:f4:25:52:d1:26:9a:
d1:46:e4:25:40:17:e8:f1:ea:e5:ef:d4:d4:da:a3:59:50:8e:
3d:fe:02:04:e4:cd:05:cf:65:d6:94:07:86:d8:b0:f3:d6:5d:
13:d4:2f:43:8c:20:88:c3:c5:84:99:61:bd:5c:64:c5:b9:a4:
c5:85:90:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:19:33 2025 by rpki-client