Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
File: 2lTIIO5UFUMsaLATYZJ1_0xubqU.mft (raw, json)
Hash identifier: EqQKlT4GL0NhsKD8nV6uCk87Qy9UOhVgnhH/7Ev3EfU=
Subject key identifier: CA:1E:4C:12:CB:4B:9A:3E:9F:1D:33:DD:34:7F:EA:D4:FE:09:B7:8C
Authority key identifier: DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5
Certificate issuer: /CN=da54c820ee5415432c68b013619275ff4c6e6ea5
Certificate serial: 0197B88EFEFE345FFE06C7055A32941A5C44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
Manifest number: 063A
Signing time: Sat 28 Jun 2025 22:01:08 +0000
Manifest this update: Sat 28 Jun 2025 22:01:08 +0000
Manifest next update: Sun 29 Jun 2025 22:01:08 +0000
Files and hashes: 1: 2lTIIO5UFUMsaLATYZJ1_0xubqU.crl (hash: Ws8imiczhBSnPYa2zyYdWXjKwxPjpScGdZXZ1QwCPBc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8e:fe:fe:34:5f:fe:06:c7:05:5a:32:94:1a:5c:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da54c820ee5415432c68b013619275ff4c6e6ea5
Validity
Not Before: Jun 28 22:01:08 2025 GMT
Not After : Jun 29 22:01:08 2025 GMT
Subject: CN=ca1e4c12cb4b9a3e9f1d33dd347fead4fe09b78c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:54:c9:1d:97:d8:1f:35:80:43:bc:c0:5a:0b:
f2:26:4d:fb:ba:83:77:9f:a3:f2:8b:a1:e8:58:e0:
0f:19:2b:9f:b8:a7:98:73:31:a9:f2:fc:77:2f:1e:
98:5b:cb:f1:92:84:75:52:78:c6:bb:03:b4:11:a8:
b6:fb:69:da:3c:b5:45:5a:bf:14:0b:a0:88:3f:f4:
01:c7:dd:96:8d:2a:22:bc:a7:36:49:af:23:12:bf:
23:2b:c0:f4:58:4d:68:84:d5:71:1f:5f:2b:bd:85:
2b:64:ea:08:83:cf:7b:0a:24:fa:1b:14:d6:b6:1b:
cf:98:f7:0e:04:6b:49:98:85:74:3b:66:10:dc:a2:
c2:e9:ad:96:7a:bc:82:44:89:d4:0d:d5:51:ee:5e:
4c:94:ef:7f:78:f4:4e:fc:63:bb:32:f3:58:66:c6:
53:46:31:c5:ae:42:71:66:25:ff:4c:91:15:cd:a6:
47:9c:18:3a:e0:61:dc:d3:f2:0a:83:9b:ce:8a:7c:
e5:2f:59:9a:10:86:9e:98:fd:97:50:04:3c:47:5b:
56:a3:e4:a2:5c:db:12:69:ec:5a:b6:53:37:51:07:
20:78:14:d2:9a:1a:af:f4:13:52:0a:65:aa:67:d8:
9a:ab:74:cf:9f:9e:fc:df:2e:7e:95:80:1e:85:ca:
7f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:1E:4C:12:CB:4B:9A:3E:9F:1D:33:DD:34:7F:EA:D4:FE:09:B7:8C
X509v3 Authority Key Identifier:
keyid:DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:f1:59:75:65:51:8e:37:c6:21:d3:05:b1:92:db:4e:53:83:
ed:32:e3:34:b1:f8:69:64:07:a6:02:62:3e:8c:c1:b4:92:13:
7f:b6:68:62:21:7e:fb:bc:4a:03:74:11:55:fd:30:45:bc:48:
9c:2c:9a:b9:95:f7:75:4d:c3:df:08:4a:e0:93:65:f6:39:a5:
4d:95:bf:83:3d:eb:a8:ad:4c:51:f9:a8:54:a8:ea:a0:6f:f9:
6e:02:6f:3f:a7:2f:65:cb:e9:99:bf:ba:03:75:a6:c6:b5:d5:
16:fc:4c:54:ce:d6:19:8a:3f:f4:be:cc:c1:a6:24:06:15:cf:
f2:05:31:79:ea:61:1c:4d:58:44:80:3e:b7:72:10:3e:3d:cc:
fb:e2:31:b5:b0:68:88:db:6a:c2:83:9a:67:69:c5:d7:ad:2b:
38:f8:14:9c:48:6f:04:81:ef:d1:eb:bb:9f:1b:57:7e:78:53:
30:57:5d:49:07:eb:c3:fb:fe:8c:87:c3:80:d3:e8:bb:e5:9c:
67:14:76:b5:ef:c7:0b:bd:2b:ca:ea:5f:37:d1:f6:3e:03:ce:
19:d5:9e:ff:61:7a:6e:f5:53:82:89:ea:df:8f:e6:1e:83:19:
20:d6:cb:1c:e9:33:4d:72:ab:be:65:d7:09:b8:65:96:8e:03:
d6:5b:52:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:16:28 2025 by rpki-client