Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft
File: g2pzvtdapO-ld-2QrTVi4hlR0bI.mft (raw, json)
Hash identifier: Py8k0mlZP+cKdOOIgRk/EVsol0J+AygM1n6xUXwLdqc=
Subject key identifier: 7D:84:BE:5C:E1:86:00:E4:A6:51:A6:58:FD:11:55:AC:78:24:C3:2C
Authority key identifier: 83:6A:73:BE:D7:5A:A4:EF:A5:77:ED:90:AD:35:62:E2:19:51:D1:B2
Certificate issuer: /CN=836a73bed75aa4efa577ed90ad3562e21951d1b2
Certificate serial: 0197CB70B9579642880E436C8E9FDD4BB490
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft
Manifest number: 13C6
Signing time: Wed 02 Jul 2025 14:00:51 +0000
Manifest this update: Wed 02 Jul 2025 14:00:51 +0000
Manifest next update: Thu 03 Jul 2025 14:00:51 +0000
Files and hashes: 1: g2pzvtdapO-ld-2QrTVi4hlR0bI.crl (hash: k7mCS7cKsnLMElktyVwqX2clQ/IEskw4Uz2wOXcseqw=)
2: pCExSDuPpylceZEh-3ghVJcWtXU.roa (hash: EmDT0awECjqFFQZyEcdl/Y2PrhZj4pSyXOCLhHqwv2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 14:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cb:70:b9:57:96:42:88:0e:43:6c:8e:9f:dd:4b:b4:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=836a73bed75aa4efa577ed90ad3562e21951d1b2
Validity
Not Before: Jul 2 14:00:51 2025 GMT
Not After : Jul 3 14:00:51 2025 GMT
Subject: CN=7d84be5ce18600e4a651a658fd1155ac7824c32c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ff:21:87:2f:97:d7:91:00:4e:7f:b0:9f:da:
61:72:23:0a:83:79:d9:5e:7a:86:4d:2a:47:13:b9:
22:ae:7c:92:c1:c8:7a:45:33:61:2a:5e:02:a8:a4:
64:a5:85:6b:3d:4b:9a:c5:d9:d5:12:99:4d:89:2f:
97:d7:3e:6b:8f:2d:c9:8d:79:7d:73:a1:eb:b6:41:
83:fc:f8:59:bf:e1:c7:23:c9:17:03:34:94:89:06:
a2:99:27:a5:a7:b3:22:15:6c:c2:e0:32:a0:5b:af:
09:e4:21:8a:96:b1:a9:14:c6:87:4b:fa:2f:39:a1:
df:43:94:e3:c7:f7:c8:96:4b:b2:8e:97:2e:b8:06:
f8:cf:21:af:e8:1e:28:88:18:9d:a2:12:61:e0:5f:
9e:09:d1:28:6b:85:88:44:92:e5:18:52:96:e5:b2:
a1:0a:0d:fe:87:24:15:31:f0:5d:86:fc:b6:27:ba:
2f:b5:97:19:ae:7b:d6:8e:59:f5:c6:4a:d6:63:e7:
91:4e:f6:be:40:21:86:84:55:2b:3b:11:25:67:1c:
5e:78:a6:85:c3:e3:33:7f:2e:90:e3:4f:d5:44:27:
70:45:1f:16:18:ff:2e:52:00:1b:8a:58:b4:d1:1b:
1f:78:90:35:e8:7f:af:8b:09:4d:ff:9d:01:bd:cf:
df:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:84:BE:5C:E1:86:00:E4:A6:51:A6:58:FD:11:55:AC:78:24:C3:2C
X509v3 Authority Key Identifier:
keyid:83:6A:73:BE:D7:5A:A4:EF:A5:77:ED:90:AD:35:62:E2:19:51:D1:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:42:90:bc:b5:25:51:a2:08:8c:49:72:95:6f:2e:b5:fc:8c:
22:25:37:1b:26:21:d4:dc:93:2a:77:c6:31:b9:e1:0b:4d:8e:
b3:b8:6f:f9:0a:13:62:e5:1b:f1:be:d8:18:65:2f:cc:30:a1:
e8:38:5e:d1:39:78:4a:07:95:66:1b:55:37:21:21:68:8e:4f:
a0:fa:f2:f4:5a:77:78:df:fa:5c:0d:d3:35:88:a9:25:c2:40:
6c:6d:3a:94:d4:6e:03:c8:2a:60:88:b7:cd:d5:20:87:13:a9:
34:01:73:0b:79:b4:6d:d8:bd:5f:92:e8:27:4d:64:f8:3b:84:
d0:fe:6b:dd:0d:c8:a9:ac:6f:b1:6e:a4:40:16:f9:1a:4f:c4:
e5:2f:69:80:5f:e6:2f:00:11:ca:26:7b:4d:9d:07:89:69:85:
47:3c:af:35:bc:91:74:30:ef:e6:44:27:64:a7:99:4e:de:c5:
24:e2:de:8a:fe:22:ec:26:28:0c:4e:96:bd:a0:15:cf:97:34:
2c:99:fc:b4:cc:33:5d:70:5f:90:16:7d:38:0d:87:55:bb:ee:
7d:51:a5:58:39:15:f9:37:05:a8:47:85:2f:4d:fe:ad:58:fc:
73:97:38:35:7d:fc:ef:ef:62:19:4f:8d:28:2d:9e:41:e6:4c:
dc:50:da:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 22:40:52 2025 by rpki-client