Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
File: 2QrRERMYMAumeOiOBQKx_FHjU3k.mft (raw, json)
Hash identifier: DAJCgW3bxlQOUYHDQnLviO+BFYQToOF937Wa0fDDuEE=
Subject key identifier: 7C:00:CD:06:7B:1E:4F:CC:9F:F5:8D:D8:E3:AB:C2:FB:21:85:E6:2F
Authority key identifier: D9:0A:D1:11:13:18:30:0B:A6:78:E8:8E:05:02:B1:FC:51:E3:53:79
Certificate issuer: /CN=d90ad1111318300ba678e88e0502b1fc51e35379
Certificate serial: 0197B6D762A8C75B2AC74EE39E92D9C56C3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
Manifest number: 01BF
Signing time: Sat 28 Jun 2025 14:00:58 +0000
Manifest this update: Sat 28 Jun 2025 14:00:58 +0000
Manifest next update: Sun 29 Jun 2025 14:00:58 +0000
Files and hashes: 1: 2QrRERMYMAumeOiOBQKx_FHjU3k.crl (hash: OBJ+KVMbhx0eIcTOtl5oDeezGAxjy16/IJh4h+CD4Mc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:62:a8:c7:5b:2a:c7:4e:e3:9e:92:d9:c5:6c:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90ad1111318300ba678e88e0502b1fc51e35379
Validity
Not Before: Jun 28 14:00:58 2025 GMT
Not After : Jun 29 14:00:58 2025 GMT
Subject: CN=7c00cd067b1e4fcc9ff58dd8e3abc2fb2185e62f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d1:34:a0:e1:3a:53:d9:67:96:31:6d:2e:8e:
76:51:d4:31:4c:12:2c:82:ab:05:c5:85:d8:29:b4:
35:06:41:91:91:fe:17:24:1f:9b:60:d7:c7:b0:f7:
7a:1d:69:16:e4:7c:01:d2:b9:66:42:78:6c:bd:e2:
50:39:e1:70:14:1f:63:c1:88:07:dd:43:4e:5c:a9:
61:32:3d:80:91:5f:dc:9e:0a:5e:54:5a:4b:f0:6a:
ad:96:ef:d0:80:3b:21:38:fd:06:a6:72:12:08:2f:
6b:74:f4:be:5d:b7:dc:dd:69:f1:54:ae:1b:c0:f4:
70:e2:2b:c0:03:e4:7f:01:86:8c:2e:fd:15:b8:65:
70:fe:a5:5a:14:0b:0c:3d:d6:7d:2c:8b:0a:d8:3c:
d7:d9:4c:d1:01:81:50:46:79:d0:4e:7e:82:1b:14:
95:a9:5c:e7:fe:1f:a2:ea:4f:1e:fc:d1:99:34:2a:
8e:89:ec:da:06:20:b5:e7:ba:ad:72:e0:7c:c7:d5:
ae:e5:14:e8:73:c2:ff:e3:b5:f3:14:f9:f5:0e:0f:
43:3d:f9:a6:81:ca:96:fb:f4:44:39:a8:2b:bb:56:
eb:8c:da:97:a1:ce:b1:44:93:91:13:a5:94:e6:2c:
00:d2:f5:c8:19:c8:1c:cc:3e:65:c2:fb:20:18:ad:
78:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:00:CD:06:7B:1E:4F:CC:9F:F5:8D:D8:E3:AB:C2:FB:21:85:E6:2F
X509v3 Authority Key Identifier:
keyid:D9:0A:D1:11:13:18:30:0B:A6:78:E8:8E:05:02:B1:FC:51:E3:53:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:84:b5:e1:41:8f:4c:22:8f:ed:3a:76:d4:3b:8f:f5:e1:cc:
83:4d:8c:23:27:bb:49:0f:e1:9d:88:25:73:b6:23:eb:dc:e6:
47:2e:0a:ac:6d:a0:d3:ff:a2:82:9f:ee:61:0a:74:20:32:b6:
d5:c5:97:56:50:7b:72:1e:f4:ac:41:c3:d4:65:a4:00:94:7a:
e8:f9:fb:e1:d7:a4:82:49:b2:1f:bb:5d:45:d7:f4:96:0e:fb:
ee:ad:04:3f:a0:a2:4f:71:de:50:04:a6:df:1e:36:e8:29:c9:
90:23:44:ae:70:ea:3c:db:03:54:1c:7d:b2:17:1f:9d:b6:c7:
ca:23:1f:cf:f8:53:92:de:a7:93:f8:dd:aa:d8:77:ca:46:02:
61:7d:b9:82:04:71:5e:30:3b:06:9e:98:11:65:9e:79:9c:84:
db:87:59:32:5b:7d:95:eb:16:74:8b:94:a0:d1:e3:b9:e5:8d:
8c:da:b4:1e:36:c9:8b:06:18:1a:ec:80:71:bd:3c:eb:5a:c2:
16:88:68:a7:b5:73:ee:0c:7d:c3:02:bc:06:10:5b:5d:12:0b:
4a:34:43:f7:18:03:eb:d5:af:4d:58:16:6e:17:11:ff:ac:f5:
b2:80:62:29:9e:05:7b:78:20:ff:fa:90:c6:7c:71:e4:17:95:
32:21:91:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:26:13 2025 by rpki-client