Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
File: 2dHiILYBtn_jDLt7fBvyL74i-08.mft (raw, json)
Hash identifier: ywRPZQdOcWSCMafOEdJ7B5EmYBMIzQhDriTi/TMmmVY=
Subject key identifier: 70:9E:47:A7:01:61:33:36:7E:37:C2:2B:5B:55:C3:9B:B2:B8:C9:5C
Authority key identifier: D9:D1:E2:20:B6:01:B6:7F:E3:0C:BB:7B:7C:1B:F2:2F:BE:22:FB:4F
Certificate issuer: /CN=d9d1e220b601b67fe30cbb7b7c1bf22fbe22fb4f
Certificate serial: 0197B6A2459A8C244AEE92ED10B079D77542
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
Manifest number: 0A42
Signing time: Sat 28 Jun 2025 13:02:57 +0000
Manifest this update: Sat 28 Jun 2025 13:02:57 +0000
Manifest next update: Sun 29 Jun 2025 13:02:57 +0000
Files and hashes: 1: 2dHiILYBtn_jDLt7fBvyL74i-08.crl (hash: Pcvhl/98eN59mc1zKp+PHyRmKCZ48Kz/7jxXT0+b5l4=)
2: jIeL0Ff1YswP2z65Y_1AGOy9fmw.roa (hash: OwVjmKWjz0aDaa4mX/kuMdsef7BkmTlqjQTaGRRWwQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:45:9a:8c:24:4a:ee:92:ed:10:b0:79:d7:75:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d1e220b601b67fe30cbb7b7c1bf22fbe22fb4f
Validity
Not Before: Jun 28 13:02:57 2025 GMT
Not After : Jun 29 13:02:57 2025 GMT
Subject: CN=709e47a7016133367e37c22b5b55c39bb2b8c95c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:47:31:16:8d:7d:13:52:fa:06:7b:13:66:35:
2b:6b:21:8a:85:36:6d:a6:31:c4:82:60:54:a7:da:
80:c1:07:f1:5a:c6:bb:bd:91:d7:8f:8c:ef:5b:88:
cb:77:0d:ea:bb:84:30:a2:ce:8d:34:96:8c:82:e3:
cd:52:f7:a9:5f:a9:38:09:a0:49:6a:41:f3:63:32:
a7:7c:5e:9c:87:10:f7:a6:b7:c9:37:64:53:dc:be:
c3:64:04:9f:0d:14:23:84:41:a0:bd:7c:f6:e4:aa:
36:96:c6:46:47:eb:25:8e:2e:b4:60:fd:fe:f9:bf:
a7:33:7a:d3:ec:67:8c:6c:35:a2:3d:f6:f5:6d:64:
7e:9b:ea:bc:ff:f0:7b:4c:08:c0:f7:56:56:bb:bb:
9c:63:36:be:ac:64:f6:16:8f:20:fa:b2:e3:10:8d:
21:a7:8a:40:cd:42:f9:08:0d:7f:09:ce:21:3b:69:
98:ef:c8:c6:08:4a:e6:f6:05:e5:69:b8:59:d4:a7:
de:94:a2:a3:91:e0:f4:e8:15:42:44:97:a7:65:7f:
a5:e0:86:a9:aa:63:bd:28:a0:6f:ad:7d:5d:da:8b:
aa:9f:c3:73:59:76:c7:44:f3:ab:76:cf:5d:8c:2e:
f6:1e:4d:c5:ef:9a:e7:81:d5:22:f2:84:10:dd:79:
6f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:9E:47:A7:01:61:33:36:7E:37:C2:2B:5B:55:C3:9B:B2:B8:C9:5C
X509v3 Authority Key Identifier:
keyid:D9:D1:E2:20:B6:01:B6:7F:E3:0C:BB:7B:7C:1B:F2:2F:BE:22:FB:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:4a:02:f2:b9:13:f2:7a:8a:1b:75:c5:33:40:5b:30:ab:e6:
8e:81:a4:54:72:8c:df:6e:d0:18:2d:44:58:a2:07:ef:3c:2b:
50:11:51:23:1b:01:3f:3a:1b:82:ef:9a:46:33:fb:a4:7b:68:
90:48:af:d9:b6:3e:18:39:b7:41:65:fd:75:ee:e9:e1:c5:27:
8a:74:a2:27:fd:b2:f3:b4:06:22:29:76:ad:68:00:8b:22:77:
38:68:2d:b4:44:90:b2:c4:cf:88:4b:13:25:79:50:e3:c8:2d:
fa:bd:94:9a:53:98:10:d5:42:23:8b:5f:d3:97:ab:30:d5:9b:
d3:69:82:1a:f2:61:68:64:01:b7:ac:a3:65:54:4f:51:36:5f:
a2:fd:53:38:b9:d4:31:37:9c:65:c3:13:d1:1e:4f:99:49:24:
4f:a1:d0:7a:df:cb:ea:0b:12:e2:7c:4b:bf:65:73:55:17:d9:
e6:fe:d1:22:a2:8b:e1:a8:7b:aa:ff:aa:48:5d:83:e7:d3:75:
34:51:ad:80:8e:bf:ea:ef:8e:1e:5f:10:66:db:ba:97:d5:b8:
38:f6:91:fa:15:b1:e3:c5:9c:7b:37:49:9f:30:97:8d:55:71:
97:d5:6e:5c:7b:ed:c6:8f:49:e3:45:61:01:01:f2:a3:9e:ef:
2c:8f:1f:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:30:18 2025 by rpki-client