Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
File: 2wy7NfYw1Aytd1B_2r03_e3BIQM.mft (raw, json)
Hash identifier: XlgkiSmPOXDtwNOZEb8L72ICdtZ1S6c5hHz3Lk8DJUY=
Subject key identifier: E9:8B:1D:BA:D0:D7:A8:EC:86:23:32:DB:93:BD:E3:8A:70:14:8F:93
Authority key identifier: DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
Certificate issuer: /CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Certificate serial: 0197B6A1E86894123978DF1B9FB6EA9A9F94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
Manifest number: 69
Signing time: Sat 28 Jun 2025 13:02:33 +0000
Manifest this update: Sat 28 Jun 2025 13:02:33 +0000
Manifest next update: Sun 29 Jun 2025 13:02:33 +0000
Files and hashes: 1: 2wy7NfYw1Aytd1B_2r03_e3BIQM.crl (hash: xM1eYUDBmFMe9+417fYHe1ZCUlabqjLinykJIFi4kbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:e8:68:94:12:39:78:df:1b:9f:b6:ea:9a:9f:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Validity
Not Before: Jun 28 13:02:33 2025 GMT
Not After : Jun 29 13:02:33 2025 GMT
Subject: CN=e98b1dbad0d7a8ec862332db93bde38a70148f93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:af:91:da:5a:dd:d4:26:1a:93:2e:87:0c:ba:
60:6d:ed:94:c0:3d:38:ea:39:b8:2b:dc:c6:58:75:
31:47:c5:0f:1a:2c:fd:29:2b:50:81:0d:15:86:4a:
f4:85:56:33:20:1d:57:7e:eb:25:b0:f8:1e:6a:d9:
c0:3e:ac:41:cb:a2:f3:32:47:55:bd:9e:04:a0:34:
9a:f6:ec:22:08:bb:83:f6:02:2e:3e:5a:a1:8b:9c:
fd:5b:a1:25:35:5c:15:b5:21:61:f7:06:91:9c:52:
e5:92:c6:27:c6:d4:fd:46:41:82:57:01:76:49:87:
2e:27:b3:e5:cf:5a:ea:0e:11:d0:84:87:66:2e:a0:
e7:fa:9a:e5:8b:9b:9b:c6:82:f5:9a:7a:71:f6:e3:
77:4b:ae:cc:0a:5e:7f:7c:9d:ef:f2:9b:5a:8a:cd:
39:ac:89:59:c2:56:1e:36:eb:9e:8e:b8:c0:28:69:
e2:1a:e9:ed:93:c4:91:7b:ba:e5:a4:a9:5c:d4:94:
fb:a8:18:d3:62:b3:46:dc:96:d7:33:34:e8:a1:86:
48:43:30:b2:19:9e:80:7b:a4:47:5a:48:48:15:3f:
49:75:22:1d:3b:2c:8f:b0:5b:d2:85:55:bb:9b:04:
dc:91:41:d2:2e:a6:11:41:37:86:e3:f5:ac:f0:9d:
7d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:8B:1D:BA:D0:D7:A8:EC:86:23:32:DB:93:BD:E3:8A:70:14:8F:93
X509v3 Authority Key Identifier:
keyid:DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:d8:87:9d:74:11:2e:a4:d8:53:da:c6:f4:8e:da:5a:55:fe:
81:3e:a4:a0:6e:66:9d:f6:70:3c:ef:ca:e9:7d:c1:e0:a2:49:
3d:2a:e7:99:52:c8:24:ce:f7:b7:68:18:8e:dd:fb:30:29:49:
1a:33:52:b9:13:7e:c1:48:ea:8a:e2:06:b1:1f:cb:60:e1:53:
d9:7b:b2:8c:3e:24:6b:1c:62:20:01:01:7b:ca:81:3d:2a:fb:
1a:a5:bc:dc:4c:14:b7:f3:54:3e:29:7d:d9:aa:88:30:38:29:
2e:49:23:e6:39:e7:8f:92:4f:51:b0:06:4b:79:ce:77:1b:7f:
e2:39:a0:74:df:69:5d:52:19:ed:33:f8:8c:dc:60:9f:6c:0d:
41:cb:49:c6:e0:24:37:23:66:8a:26:60:e9:60:75:46:2f:9b:
5d:23:77:c2:6e:b5:09:02:e5:b3:00:88:4a:35:08:7d:bd:ba:
57:b8:b7:09:a1:46:ee:c8:51:0d:c6:84:d8:e5:b0:7e:c8:53:
09:00:2a:82:1f:3e:07:06:a3:bc:29:03:a5:fd:c4:8a:2a:e5:
a2:48:ad:0e:f6:35:e3:ab:18:06:19:06:5c:3b:f6:44:ae:db:
4a:0c:6f:aa:ab:fa:33:f9:93:fd:10:51:b8:b0:c8:68:05:87:
0b:a5:87:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:57:01 2025 by rpki-client