Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
File: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft (raw, json)
Hash identifier: FJoiscmKlfEDsPMpbK2tvlCNEPzy1EppwizAZifMZ04=
Subject key identifier: 8A:C4:CE:77:EB:52:2A:FC:D5:65:EF:EE:A5:F4:55:6C:2E:2F:C5:25
Authority key identifier: D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
Certificate issuer: /CN=d908722a7555dd1621dd6a62209fa8da52942999
Certificate serial: 0197B74572EF895A28C4206DD8057B0C3116
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
Manifest number: 143F
Signing time: Sat 28 Jun 2025 16:01:11 +0000
Manifest this update: Sat 28 Jun 2025 16:01:11 +0000
Manifest next update: Sun 29 Jun 2025 16:01:11 +0000
Files and hashes: 1: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl (hash: VvvCBPmxrTreRHu87HIN+Hzopxv29gEzaU6vu6wtL8U=)
2: Y5hh8AgGKAUf_2S15Xwk_892p60.roa (hash: baZuJeVmztFazA/spLlePhpdINyXpI1DJgHdXLAL5/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:72:ef:89:5a:28:c4:20:6d:d8:05:7b:0c:31:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d908722a7555dd1621dd6a62209fa8da52942999
Validity
Not Before: Jun 28 16:01:11 2025 GMT
Not After : Jun 29 16:01:11 2025 GMT
Subject: CN=8ac4ce77eb522afcd565efeea5f4556c2e2fc525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8d:95:ef:8f:f5:36:73:65:46:1f:4b:a2:88:
74:41:e9:1f:8c:5f:9f:87:e7:0d:6c:9b:f0:22:02:
65:a7:0a:41:24:74:b2:b7:8b:b3:2a:7a:d2:48:6b:
62:c0:f8:a6:c5:11:19:2a:73:92:f8:4f:6c:37:97:
84:e9:1f:fe:2c:90:08:c6:56:2c:50:e1:2e:d1:ed:
2e:f5:c2:8f:a5:57:50:cf:89:fd:c1:f6:0e:b6:2e:
6a:1d:28:98:bf:d9:da:44:82:cd:17:8a:07:43:8c:
40:bf:41:c5:58:e0:09:c8:8f:d2:de:b2:f0:9f:a0:
13:74:03:29:9e:99:6f:43:da:42:a5:4e:4f:0b:af:
cb:74:90:0d:bd:aa:75:1f:ad:46:8b:f8:f0:ca:72:
ef:7b:c3:76:f1:1d:f3:cc:24:6c:d4:f7:02:07:40:
81:e0:d4:16:8e:36:68:ac:cd:f7:18:0a:d0:7d:6a:
79:e7:44:67:f2:8e:80:65:a4:e1:7f:c5:01:e5:54:
5c:03:81:28:36:18:d8:33:4f:fc:35:98:97:13:6e:
c1:b5:49:58:e7:52:72:f3:b7:ee:ce:cb:bd:28:71:
3c:23:a2:82:d5:a4:ca:c0:6e:f6:76:21:f5:e3:82:
fa:25:a2:bd:f7:6b:dc:6b:bc:88:76:68:11:8a:68:
c9:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:C4:CE:77:EB:52:2A:FC:D5:65:EF:EE:A5:F4:55:6C:2E:2F:C5:25
X509v3 Authority Key Identifier:
keyid:D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:c8:39:cb:1b:c2:36:50:d5:f2:91:ce:b6:5f:81:a4:37:ea:
c9:99:e5:f8:6a:c3:b1:78:6b:c3:ce:00:02:d8:2e:22:49:e9:
23:f6:7f:df:18:b0:6d:58:cb:75:5a:58:a8:d1:a0:7f:52:75:
9d:33:7e:27:76:32:b0:41:ca:cd:35:10:49:40:68:08:eb:ec:
fc:45:08:2d:5c:72:02:d1:7c:6a:18:5b:b0:74:54:d4:bb:61:
c2:b4:17:99:d4:81:4c:be:20:7f:96:67:75:93:05:4d:4f:eb:
52:cd:a3:45:18:f1:99:0f:36:27:bf:7c:e6:42:bf:f0:79:f5:
10:33:ab:5d:aa:61:d3:51:ee:48:7f:bc:cf:dd:99:f8:89:55:
6b:f9:9a:33:7d:86:cb:2d:8e:03:d2:c9:a6:68:44:fc:b6:8e:
02:bb:ed:3f:76:03:55:46:a2:f5:f5:a4:40:8e:51:1f:66:c9:
f3:55:38:17:6c:6b:d1:52:48:5d:f5:59:07:42:6f:76:86:56:
cc:da:e4:ef:ce:78:c2:7f:82:4d:43:17:64:ae:65:40:ea:8c:
6a:0a:93:0e:8f:a1:6b:1e:19:29:86:56:bc:c9:74:16:e3:ce:
fa:c0:2a:80:85:14:74:49:2e:db:3b:fc:99:6a:25:ae:87:16:
28:45:3c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:33:07 2025 by rpki-client