Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
File: 2q_pD50IEzTMko7e6bxzFUBwjf0.mft (raw, json)
Hash identifier: t0lwPJ9vzKbwahStNCoZxY+l9Z4jhDf64W8GuT2oxTM=
Subject key identifier: 8F:01:D2:19:1C:5F:96:04:E6:67:DB:ED:A3:2B:A6:ED:66:F9:34:4C
Authority key identifier: DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
Certificate issuer: /CN=daafe90f9d081334cc928edee9bc731540708dfd
Certificate serial: 0197B6A18A979022334B9BD4C356F560F86D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
Manifest number: 090A
Signing time: Sat 28 Jun 2025 13:02:09 +0000
Manifest this update: Sat 28 Jun 2025 13:02:09 +0000
Manifest next update: Sun 29 Jun 2025 13:02:09 +0000
Files and hashes: 1: 2q_pD50IEzTMko7e6bxzFUBwjf0.crl (hash: iKA1ugfvVxNRUhiHq2S8Vy8QXtvXrevXg6jAxMjyYfg=)
2: ptCjyawSJ9frfP9fH_ikMswCnsI.roa (hash: qlAjQ7L6msxhMlwj1dEaHE32m8HH4N1buR0Bga+2/Qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:8a:97:90:22:33:4b:9b:d4:c3:56:f5:60:f8:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daafe90f9d081334cc928edee9bc731540708dfd
Validity
Not Before: Jun 28 13:02:09 2025 GMT
Not After : Jun 29 13:02:09 2025 GMT
Subject: CN=8f01d2191c5f9604e667dbeda32ba6ed66f9344c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b0:29:8b:48:1c:81:b1:c7:42:10:d2:af:f5:
1d:08:1e:ec:8c:89:fb:e0:ee:8b:78:12:38:5c:1b:
03:9a:d8:e9:13:81:28:7f:7b:39:c6:44:00:8a:32:
e7:36:36:e2:7a:d7:51:22:cd:2d:44:77:c4:0b:8c:
c5:ad:df:cb:9c:02:7e:aa:1e:be:99:6d:0e:b5:93:
18:1b:3f:d2:d0:7a:72:ca:e5:81:96:61:ab:e8:14:
09:e0:68:f8:d3:3b:78:72:94:e3:3f:3f:73:78:40:
d5:5b:55:b9:3a:6f:d4:b3:24:a8:a4:03:a0:d0:13:
df:41:af:85:90:d6:28:6b:aa:be:03:ec:df:26:11:
87:04:2b:ee:37:27:16:32:8a:c4:cb:0b:a6:ed:93:
88:c4:c8:7b:fe:09:d3:b2:41:66:e2:b3:6c:1d:ba:
33:bd:ec:67:a6:ae:62:79:55:3f:df:8b:51:60:ab:
1c:00:8f:1f:6d:82:6f:46:e2:c9:80:47:9e:51:08:
82:39:39:98:dd:6e:87:9a:e9:c4:84:38:90:5a:0c:
85:1f:b6:91:77:90:32:1b:42:ea:05:d4:02:27:02:
bd:02:f6:c2:1a:7b:70:bb:02:6b:91:79:b1:e1:ff:
e4:a3:58:20:59:9e:0d:a6:56:6e:f1:79:1b:8f:cb:
19:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:01:D2:19:1C:5F:96:04:E6:67:DB:ED:A3:2B:A6:ED:66:F9:34:4C
X509v3 Authority Key Identifier:
keyid:DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:e9:4a:d7:b1:34:63:ed:f7:66:f9:53:7b:92:99:15:0c:02:
1d:12:ee:95:7b:88:e8:68:4d:83:21:ce:10:ff:56:7c:84:86:
ab:90:30:64:81:43:b4:6f:e9:d4:de:4e:f3:de:f8:95:b3:fd:
a6:66:f7:02:5e:48:f7:7a:83:ca:66:12:1d:77:c9:1a:28:96:
47:21:33:e1:f1:45:af:bb:f7:19:fc:e6:db:a0:f1:fd:2c:44:
0f:89:b7:eb:ff:ea:3d:b6:6f:55:85:9e:a1:45:57:8d:57:1a:
29:59:43:f6:f0:cb:88:08:11:b8:84:56:0c:f8:75:f3:95:bb:
57:13:a8:d1:ee:6a:45:99:0e:37:3e:3b:92:cf:bf:a9:25:12:
12:37:30:ba:ac:6c:45:20:81:ec:52:d3:27:d8:56:7b:39:89:
ee:8b:86:33:b8:33:09:8f:42:a8:6b:6a:3f:de:ff:a1:18:b7:
4c:e0:f1:3c:86:a2:74:71:33:0b:2c:23:b9:ac:9a:fb:47:69:
76:9f:1a:da:c2:9b:c1:74:ed:99:62:cf:df:2e:8c:65:2f:d7:
ee:87:d2:94:8a:60:88:66:cf:dd:b1:f4:07:a8:cf:67:d3:1e:
6d:d1:dc:3b:49:8d:ff:d6:c2:e1:0d:51:f3:e2:2c:7d:0d:4c:
bf:74:b1:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:59:08 2025 by rpki-client