Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
File: 2gBH2sju-JRNeMG3omhowD4s5GY.mft (raw, json)
Hash identifier: aA7qX++cAW/VyT0AfCH/MZOrctZtCz1G0P41xq00+K8=
Subject key identifier: C4:C9:F6:23:0A:1B:DE:0D:66:94:33:2F:32:B2:18:40:BD:F2:45:7E
Authority key identifier: DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
Certificate issuer: /CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Certificate serial: 0197B6D776C0295DDB4B701FF5ECF863D15F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 14:01:03 +0000
Manifest this update: Sat 28 Jun 2025 14:01:03 +0000
Manifest next update: Sun 29 Jun 2025 14:01:03 +0000
Files and hashes: 1: 1HJjsYIKgn5m4aKZWr3wynalRwQ.roa (hash: 4AW+T8DVNHH/qCqGZo07n9kC0wNSFK9esxUBxaOybzo=)
2: 2gBH2sju-JRNeMG3omhowD4s5GY.crl (hash: 8fYKbBpUoCkJF72dNRLWJsOjqIu6bddS4PxY/5dkBus=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:76:c0:29:5d:db:4b:70:1f:f5:ec:f8:63:d1:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Validity
Not Before: Jun 28 14:01:03 2025 GMT
Not After : Jun 29 14:01:03 2025 GMT
Subject: CN=c4c9f6230a1bde0d6694332f32b21840bdf2457e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f6:1c:dc:9c:ee:2f:d8:f8:c8:9d:08:5b:9a:
f4:d0:85:ce:f5:1a:56:90:b4:fa:ff:26:05:01:86:
23:26:ef:f6:66:f8:83:73:52:a8:bf:32:56:cf:b4:
e4:39:c9:62:ca:c7:97:96:84:47:65:2f:0d:e6:47:
fd:a3:26:21:d8:18:eb:31:d3:75:b3:04:b1:78:44:
99:e8:91:b6:e8:04:d8:f7:b4:b3:36:3d:c5:cf:74:
01:88:da:e7:b8:f8:76:d2:0b:5b:01:44:4b:18:ac:
33:51:12:c1:14:98:c3:a7:0c:f4:10:f9:03:49:80:
a9:bf:3c:71:67:85:12:40:f5:6e:2f:15:00:1a:da:
8c:a5:05:d1:c8:84:42:8f:bf:ea:a8:83:35:be:2f:
63:ed:3d:ad:b3:f0:bb:0e:ee:b4:90:dc:a2:53:6f:
96:0f:40:2f:35:0c:ee:e0:a5:11:dc:7f:01:01:64:
07:30:0f:8e:4e:8a:3a:3b:8a:41:3f:79:ae:ff:0f:
77:4a:06:60:ea:10:90:ff:cd:ab:50:7c:1c:4c:20:
ae:58:3c:f0:4c:86:e7:9d:db:01:52:4d:03:f6:60:
9f:bb:4a:e5:4f:fb:4f:1c:0f:8a:0d:ea:5a:53:08:
c9:67:30:10:b3:01:52:29:f9:26:6a:35:4c:e7:dc:
15:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C9:F6:23:0A:1B:DE:0D:66:94:33:2F:32:B2:18:40:BD:F2:45:7E
X509v3 Authority Key Identifier:
keyid:DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:96:71:9a:d1:7a:e9:15:ff:2e:b3:4f:89:0e:7e:bb:3f:52:
bc:80:7e:17:18:67:2d:bf:58:f5:39:08:a8:9d:c9:ac:8f:8b:
5f:53:39:f3:3e:23:83:73:f6:a5:75:6a:63:62:c3:79:77:b2:
e3:ba:e0:f2:b4:da:ed:1e:d1:a0:a9:ed:12:76:d4:25:bf:59:
f1:ac:28:66:c2:88:0a:f2:80:96:12:6b:ed:56:11:a3:40:b9:
87:b5:9a:26:38:24:cd:bb:d7:bd:c1:cf:4d:4d:b4:c5:1c:d4:
58:11:d6:48:b2:a7:93:0f:fa:7a:56:ec:69:26:c3:c5:7d:a4:
f4:47:49:f4:b3:2e:c2:12:d8:43:91:64:3f:de:4c:33:1f:81:
67:10:23:57:00:9f:98:21:8b:75:f3:ed:9b:f1:63:b3:cf:a0:
a2:36:e5:73:c3:d2:1d:30:cf:de:46:b4:ee:cf:13:6d:10:5a:
8e:f2:88:e8:61:8a:d9:57:3b:3b:8d:7f:23:a8:c9:32:b2:85:
1e:26:4f:9a:8a:4d:b7:87:cf:93:76:08:40:72:88:20:df:00:
4f:89:2b:38:f8:8b:8b:73:ee:4f:22:f6:fe:be:37:33:2c:2a:
b6:19:7c:96:ee:e9:6c:f4:8f:d8:7d:f2:0a:f3:99:18:84:bc:
08:d7:14:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:37:13 2025 by rpki-client