Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: c2MwDfq1tMNuPxPljDLK3bwlEcVliKgn4GFEjpYBtWM=
Subject key identifier: 18:BC:97:30:6D:E2:76:AC:39:5F:96:13:B1:4A:1D:7F:1C:4B:16:AD
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 0197B7EA859B6227F8FF483DE781948BD969
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 14E4
Signing time: Sat 28 Jun 2025 19:01:29 +0000
Manifest this update: Sat 28 Jun 2025 19:01:29 +0000
Manifest next update: Sun 29 Jun 2025 19:01:29 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: 03utblO+Ep+I5V53HdVXoHexTOnrNvDbMposIKAH4H8=)
2: 6R0wvkFPscZQ2uww-ZvwnaXh--0.roa (hash: wyiJ7rZP6x6kzeIfld1VjsLp4nIqzGhNhuxTGdTq1Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:85:9b:62:27:f8:ff:48:3d:e7:81:94:8b:d9:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: Jun 28 19:01:29 2025 GMT
Not After : Jun 29 19:01:29 2025 GMT
Subject: CN=18bc97306de276ac395f9613b14a1d7f1c4b16ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6e:8e:d4:e7:7d:4f:aa:35:18:6d:17:8c:24:
68:58:ca:6f:26:78:84:43:e5:d4:55:bb:03:08:91:
95:a4:32:c1:83:be:15:24:b3:d7:2e:22:6c:6e:5b:
39:be:2d:e6:df:6a:19:1c:38:cb:bf:e1:24:34:5f:
c6:1a:77:82:8d:a0:df:1f:89:a3:7a:b8:b5:d7:f3:
c3:e4:bf:2a:85:72:ad:dc:b6:ee:1d:87:f0:26:a0:
ab:d2:4b:fb:6b:46:88:fd:31:fd:34:2e:6c:c1:9a:
5c:55:88:a7:b3:5b:aa:7c:d7:9e:08:e9:d8:6f:97:
61:29:69:b0:36:48:07:82:11:81:98:4d:72:c7:57:
9c:a3:a7:d6:bb:e9:e7:89:c4:bd:e6:0e:74:47:6a:
a6:a6:3a:fb:cf:1d:60:3f:bb:d5:22:98:3a:33:80:
01:c3:31:ef:47:31:52:78:26:f5:68:51:1e:09:cd:
62:3d:fa:b3:72:fd:48:27:2e:8a:d5:8e:40:b7:b5:
63:41:9c:01:31:e3:a2:6e:eb:1f:ff:2b:6d:23:db:
64:d9:8c:d6:a8:a3:a9:a0:df:0c:76:0c:df:9f:00:
28:87:76:4e:99:f6:c4:a5:6e:37:f5:53:73:c4:7e:
fd:43:a1:f7:c4:76:dd:84:42:d8:2c:e5:da:45:9d:
a9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:BC:97:30:6D:E2:76:AC:39:5F:96:13:B1:4A:1D:7F:1C:4B:16:AD
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:82:b7:e3:d6:30:70:1d:d2:ca:65:81:d4:91:c0:ab:43:60:
fc:40:cf:f5:b4:36:4d:87:ca:3a:fc:5f:16:5d:a4:c4:e1:09:
34:2d:14:e0:44:cf:17:39:6f:5d:9e:9d:8b:94:bd:82:9b:45:
06:b3:2c:54:84:fd:50:7c:51:80:21:2d:1d:e7:68:9b:72:5a:
15:72:74:50:d7:94:8e:80:f5:d8:b8:1a:2e:40:e2:d8:27:67:
69:74:6e:5f:9e:be:4b:f2:43:4e:f7:44:8e:fa:65:75:23:04:
ed:88:e4:54:7e:b5:8f:dd:94:67:25:dd:9a:61:c7:1c:95:73:
07:2d:a2:5a:c8:88:16:2e:fd:fb:17:00:5a:a3:18:d3:79:4e:
a1:0b:4b:e1:43:e5:ab:a2:c6:ed:a5:8f:ce:8e:00:41:4a:ba:
d7:6c:34:a3:2c:79:de:c4:7c:6c:31:14:b3:3d:e2:e9:a6:e6:
7c:23:a2:9d:c9:db:35:7c:0c:d1:4c:5a:13:ec:82:99:16:ef:
ab:03:ba:21:91:56:af:a7:34:74:89:6e:93:13:bb:e4:da:7b:
60:2f:b8:89:de:ef:8a:71:65:21:e3:78:61:5d:ca:e4:55:dc:
a8:e5:bf:80:83:24:61:09:0b:54:8e:ca:88:cc:21:0f:2f:a8:
55:4d:eb:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:28:37 2025 by rpki-client