Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
File: 2qM7UIN5nEnPntwAhit8nCGMZhM.mft (raw, json)
Hash identifier: LVoJJj9mDZ4sFkBSPWpx0iA0P24Ib3+3SwC22i9S6Vw=
Subject key identifier: 1A:D5:6B:6D:3B:C9:F2:15:22:CF:14:AF:BD:A7:65:9B:89:6C:3A:B8
Authority key identifier: DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
Certificate issuer: /CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Certificate serial: 0197B632E918A29C16E08E92AF9B57481512
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
Manifest number: 033C
Signing time: Sat 28 Jun 2025 11:01:19 +0000
Manifest this update: Sat 28 Jun 2025 11:01:19 +0000
Manifest next update: Sun 29 Jun 2025 11:01:19 +0000
Files and hashes: 1: 2qM7UIN5nEnPntwAhit8nCGMZhM.crl (hash: 9ua863YZHy1LFQSViwSnfma5oPVaw1PbitukCnRBibo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:e9:18:a2:9c:16:e0:8e:92:af:9b:57:48:15:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Validity
Not Before: Jun 28 11:01:19 2025 GMT
Not After : Jun 29 11:01:19 2025 GMT
Subject: CN=1ad56b6d3bc9f21522cf14afbda7659b896c3ab8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d2:7a:72:65:85:45:9f:71:7f:ad:27:8d:bd:
45:1d:6d:6d:fc:27:25:f9:01:48:79:67:6f:31:c7:
08:26:2f:5b:20:bc:5e:5f:f3:7e:a8:6f:f6:1b:e1:
00:d8:a7:1d:a5:2a:4e:0a:2f:70:2e:89:c8:17:f2:
2d:f2:5c:80:75:d2:53:a8:bf:54:54:b5:5a:a1:3a:
fc:c0:09:ab:7b:a4:16:ec:05:f6:96:ea:e6:68:65:
06:af:71:ed:39:b9:c1:a2:ac:f8:f1:ad:72:32:79:
6f:71:28:f8:72:c5:bb:9c:64:ab:1f:c2:24:98:83:
55:92:52:b1:6d:ac:b1:e5:ce:21:bf:fc:4c:4e:9a:
4b:7a:26:a1:eb:33:11:da:f3:1e:ff:07:50:89:d7:
5c:f9:35:97:cd:ee:b2:f3:b9:d0:fe:66:e7:fe:7b:
df:cc:6f:d7:eb:ee:cf:63:56:44:9f:24:a3:aa:fc:
8d:01:38:6c:4b:02:e7:42:8c:70:8a:e5:de:f5:92:
89:c3:bc:61:77:33:15:1f:f8:4e:72:8e:3f:12:2f:
b0:b0:ad:1c:be:ea:3d:1b:ce:24:c7:04:eb:65:29:
7c:b0:59:b5:ba:11:bd:45:4c:0b:61:17:8e:d2:89:
17:73:bb:55:35:30:6a:c5:05:2b:a1:38:ff:68:7d:
96:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:D5:6B:6D:3B:C9:F2:15:22:CF:14:AF:BD:A7:65:9B:89:6C:3A:B8
X509v3 Authority Key Identifier:
keyid:DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:94:7b:4e:52:9a:0e:5d:f9:dd:b2:ae:c1:32:89:ba:bf:9a:
e0:28:c5:50:14:42:bc:ae:a1:2d:39:91:48:f3:ef:eb:ef:6b:
32:d8:56:9d:05:2b:25:05:67:97:80:b9:6a:dd:17:a0:ca:3b:
03:b6:d4:70:c1:6a:2f:d7:0e:1e:e6:56:e9:b6:fc:88:f1:b4:
0c:6b:4e:54:2e:18:0f:09:da:c3:5b:0f:75:be:d7:0b:fc:23:
6f:2f:02:c9:ec:a1:80:71:14:c8:0f:9c:ae:d4:ae:1e:13:de:
52:6b:7b:d4:4d:b2:0e:1f:d6:b9:37:9b:a4:5b:7d:15:4e:ea:
42:f5:69:bb:74:35:77:19:52:db:9d:16:d8:36:5e:2f:c4:00:
07:bf:54:3b:ec:2c:38:ce:ad:ab:dd:a9:7d:8e:fa:02:61:88:
0a:f4:b6:36:b5:6f:0e:84:6e:ad:a6:f4:94:0e:d1:cb:2c:fb:
83:63:4b:cf:00:c2:50:38:40:a8:2c:9b:f7:1a:09:f8:44:36:
a1:02:9e:71:56:7d:f1:93:af:b8:eb:16:85:24:0d:95:8e:9d:
f6:fe:f0:7e:0e:7c:29:c9:07:c6:39:5a:1b:83:8e:c8:3f:26:
96:89:51:3c:36:4f:5b:8b:aa:ec:10:76:d8:39:e1:00:e8:af:
2a:19:3f:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:11:35 2025 by rpki-client