Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: Lxl4eujSTruapOQQ1+hSB5P/ecp0yOZC5LZsraacej4=
Subject key identifier: 84:4B:FE:0E:FA:4C:1C:25:D7:1E:B4:7B:F8:5A:4A:AA:5E:80:D2:20
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 0197CE71ECF3621DA717A59875CFA801A20F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 15C4
Signing time: Thu 03 Jul 2025 04:01:02 +0000
Manifest this update: Thu 03 Jul 2025 04:01:02 +0000
Manifest next update: Fri 04 Jul 2025 04:01:02 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: kPzVJsm8c6UrXTh9j9zZN1lj1I81a0hzPupPFksXfBs=)
2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=)
3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 04:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ce:71:ec:f3:62:1d:a7:17:a5:98:75:cf:a8:01:a2:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Jul 3 04:01:02 2025 GMT
Not After : Jul 4 04:01:02 2025 GMT
Subject: CN=844bfe0efa4c1c25d71eb47bf85a4aaa5e80d220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:8b:42:dd:0b:1a:74:f8:95:5c:4d:47:8e:92:
7e:40:80:ab:61:da:a1:33:98:fa:0a:53:2b:fa:3f:
52:92:b0:d4:8e:0d:84:b7:be:ba:74:cd:fd:d6:3d:
1f:91:5b:1a:72:2f:89:ba:c7:24:64:98:99:c9:d0:
4a:a4:9c:95:1b:f0:31:05:46:02:d5:d7:10:64:11:
8d:4c:63:64:f2:fe:4c:c6:29:60:38:a9:69:b3:ac:
26:4a:6b:5e:a4:a7:b1:40:9d:a8:a2:c1:30:38:64:
4d:1e:d5:11:75:4a:0e:97:4c:8e:2f:e0:6e:cb:ff:
1f:9e:73:5e:df:7d:c8:af:5d:fe:c8:54:01:b4:3f:
59:ca:4d:09:00:b9:a0:45:8c:75:7a:71:2c:74:ab:
a2:b5:f6:30:f4:e8:5b:c3:fc:d6:d8:d7:a8:28:dc:
52:79:fe:21:74:ab:31:43:09:d1:6f:44:c5:4a:56:
21:55:87:6c:22:76:48:76:dd:68:7a:de:e2:a5:c6:
25:02:04:71:26:11:0e:36:00:fa:3b:bb:6d:21:20:
38:62:66:a4:13:d3:da:74:6a:26:41:3d:55:00:7d:
c6:bc:19:a5:90:86:8e:69:2e:40:c6:40:ad:92:f0:
79:af:73:8a:44:8a:a5:66:3d:d6:70:cf:3b:59:b9:
83:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:4B:FE:0E:FA:4C:1C:25:D7:1E:B4:7B:F8:5A:4A:AA:5E:80:D2:20
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e4:a5:68:88:95:c1:27:9d:d6:05:7b:f6:a0:3b:7d:62:5d:47:
13:ab:34:91:e8:e3:56:40:7a:38:ea:ae:ca:4d:d7:49:63:0f:
29:4d:5d:9d:cf:9d:ed:6a:1b:e6:f1:c1:09:bc:5c:9d:73:a2:
4f:31:ba:c1:34:1c:b6:e4:e2:6d:81:2e:d3:40:d6:14:0f:0d:
00:48:13:7a:10:d7:66:2e:3e:ca:eb:d5:65:1a:ce:eb:c0:30:
1c:7c:6b:59:d9:dc:69:26:b6:4f:b4:8d:08:d7:75:aa:e4:45:
aa:d7:8a:7b:8d:6d:59:ce:e0:93:70:96:ce:b6:03:f9:1e:59:
5d:66:e4:3f:5f:34:6f:8c:14:bf:d1:82:76:a2:90:c8:82:67:
12:97:77:b3:77:ad:54:4d:a2:1e:93:d4:3b:61:06:1e:4c:45:
77:95:b9:d7:10:cb:30:67:1f:42:f9:5f:24:ea:81:0f:23:f6:
d1:ac:ff:81:ab:78:6c:85:cb:d5:32:35:49:3c:47:e6:b9:69:
0f:4d:fc:c4:3a:f7:2f:4e:cc:78:b9:f7:2c:16:c4:1f:db:bf:
d5:a3:ce:1e:69:52:1c:07:92:43:ec:39:36:f7:3a:b9:9a:94:
ca:c1:84:76:f9:b7:e4:91:f6:fb:dc:32:4a:4a:71:0e:37:54:
27:d5:a8:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 07:09:26 2025 by rpki-client