Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
File: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft (raw, json)
Hash identifier: 9iyAh/oksOclo51XM9qNQ903s1PW8tf+3Kb7ZgUGjmk=
Subject key identifier: 59:CC:1E:48:87:2B:3A:6E:9A:16:3A:01:38:52:D9:5A:D3:44:BE:E5
Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Certificate serial: 0197B5FC70035B2DFF17FF790465B6EF998E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
Manifest number: 0D44
Signing time: Sat 28 Jun 2025 10:01:49 +0000
Manifest this update: Sat 28 Jun 2025 10:01:49 +0000
Manifest next update: Sun 29 Jun 2025 10:01:49 +0000
Files and hashes: 1: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl (hash: U5l+oCCXPkHKJmG9ou/beNAzPnw9vS0+A3NQHIXmV7o=)
2: nEst59VNXuZ4VJfEimqfkDoIWMw.roa (hash: MVYyTOwc+4oCrDyXY6sI17JYzQycO6fjKklmhjG1KnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fc:70:03:5b:2d:ff:17:ff:79:04:65:b6:ef:99:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Validity
Not Before: Jun 28 10:01:49 2025 GMT
Not After : Jun 29 10:01:49 2025 GMT
Subject: CN=59cc1e48872b3a6e9a163a013852d95ad344bee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6f:89:c3:c4:5d:1b:2b:e3:63:79:5d:d6:d2:
95:46:66:a1:39:b0:e8:b4:06:ef:fd:db:53:c8:cc:
05:27:28:b7:58:03:f9:fb:25:ac:ac:2c:7a:59:d5:
c8:d3:05:81:8a:3f:41:0c:4b:9c:ca:23:31:c2:8d:
9f:ed:43:bb:0b:02:80:a1:44:d0:99:af:41:89:84:
2f:15:b8:1c:9e:05:3b:11:c7:e9:1a:fb:0b:4a:80:
78:4b:94:a4:61:41:f5:2f:08:98:d4:86:96:8e:13:
fb:f8:e3:20:2e:78:d2:ef:fc:12:f3:f5:2b:d5:6f:
2f:84:50:2b:58:d1:c8:40:11:8a:09:02:75:df:71:
91:d3:c5:9d:89:a0:78:f9:a1:cd:a5:44:d5:03:1c:
81:53:d0:41:1c:07:6e:5d:45:2d:de:c9:2e:95:43:
1f:00:32:73:4e:82:e2:da:0d:6b:8b:18:18:28:80:
bb:de:b8:1f:aa:28:74:ef:44:07:bb:71:b8:1b:57:
10:fc:a2:1c:7d:ad:3b:26:92:07:36:7d:4e:29:62:
ac:cb:f8:3d:7e:20:5f:93:a0:eb:26:05:76:8b:4e:
35:7c:c5:00:35:7e:07:25:7a:ee:75:0b:f3:bc:bd:
8e:81:37:d8:85:16:27:75:01:ad:56:49:dc:d2:cb:
f0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:CC:1E:48:87:2B:3A:6E:9A:16:3A:01:38:52:D9:5A:D3:44:BE:E5
X509v3 Authority Key Identifier:
keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:97:6a:11:52:eb:aa:2a:d1:96:ad:e2:e2:ce:81:31:c2:7c:
d4:12:6f:0a:d0:b8:05:3e:e5:b9:14:cf:11:7c:67:43:ad:50:
8a:c9:60:c9:38:a8:a5:66:63:78:48:21:6e:37:e6:a9:db:62:
dd:9f:5d:dc:68:59:b0:ab:16:ad:11:d5:82:eb:4c:fa:40:64:
a0:3f:6c:e5:17:8e:d3:eb:42:a1:66:e3:07:ac:58:18:46:c5:
e9:6a:bf:11:74:42:b4:40:82:17:b8:71:8d:9e:31:64:41:99:
93:87:1c:fe:a4:b5:52:d9:72:3f:e5:6e:77:df:a4:5b:a6:78:
3f:6b:69:28:ba:d0:4f:5b:4b:d5:89:21:23:23:3c:be:4b:dd:
67:4e:2a:36:c9:5a:bd:f4:04:34:c8:d0:42:a1:f0:20:d0:07:
c2:04:bd:d9:19:1b:22:4c:bb:44:66:34:af:ea:bb:cb:64:9d:
dc:5a:d6:ff:0f:98:9d:95:34:e8:0d:9e:0b:1f:3d:14:99:b7:
6b:00:0d:16:ad:81:29:a3:57:9d:c7:08:e3:32:a7:85:99:01:
f9:30:3b:49:ae:74:d7:84:6d:7b:69:86:36:a2:94:4d:c9:cb:
07:61:ac:35:e4:58:36:08:a4:df:0d:40:2b:21:b2:81:07:70:
b9:0e:01:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:47:35 2025 by rpki-client