Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
File: 2GucF3igUp7n4jIAPL5cmTw2_ds.mft (raw, json)
Hash identifier: KmYTQwjfeWLKTJKTm0/8Xr9Yox8wg3ucPFB9H2qfcmE=
Subject key identifier: 1C:86:31:27:91:C3:1E:D4:54:FE:8E:28:EE:08:3B:76:BC:76:15:DA
Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Certificate serial: 0197B6D72B089BE19236252B837BCB7F026B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
Manifest number: 0315
Signing time: Sat 28 Jun 2025 14:00:43 +0000
Manifest this update: Sat 28 Jun 2025 14:00:43 +0000
Manifest next update: Sun 29 Jun 2025 14:00:43 +0000
Files and hashes: 1: 2GucF3igUp7n4jIAPL5cmTw2_ds.crl (hash: 5cRenRa//hN/mBMhUCLHK2srEUejriF+SDPsy98McLo=)
2: xaTFNHvIwGFGt2nvvisSJGJJn1U.roa (hash: dncutlGZCp4ijfHdULe589Ce9+6dKbRvNV71t7mvtSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:2b:08:9b:e1:92:36:25:2b:83:7b:cb:7f:02:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Validity
Not Before: Jun 28 14:00:43 2025 GMT
Not After : Jun 29 14:00:43 2025 GMT
Subject: CN=1c86312791c31ed454fe8e28ee083b76bc7615da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:33:69:fc:7d:25:bb:1b:4d:e8:4c:df:d7:1b:
c8:a1:7b:74:02:dc:22:2d:5f:70:a4:17:4c:6c:7b:
da:58:d5:84:02:4d:6c:e7:e1:20:fb:c2:30:1d:71:
92:72:d4:21:4e:89:54:9a:1d:6f:7a:7a:e7:ad:97:
24:46:39:3f:df:b8:a6:6d:fc:72:a0:d8:4d:9b:59:
58:5d:e8:74:8c:11:54:67:2f:38:61:fd:1b:6a:58:
a4:73:6b:24:94:e3:c3:06:c8:63:ed:87:0d:d0:fc:
18:08:fe:a5:cc:23:ac:77:c1:be:f5:a2:45:30:1a:
0d:86:dd:11:82:24:6d:a2:ef:d8:39:86:1c:0b:b7:
c3:11:79:2c:2b:74:ee:0f:fb:8d:77:dd:dc:a3:5e:
0d:0b:1e:af:95:11:70:6b:77:8d:56:d3:48:58:99:
59:fc:1a:47:fa:0f:5c:6a:e1:8f:58:eb:2e:00:81:
a9:71:d7:d1:20:aa:73:93:69:90:6c:08:e2:ec:f4:
54:c5:81:45:ad:88:4f:d1:25:57:f9:74:23:3a:2d:
66:f0:e8:ac:59:8e:6d:f3:0b:f8:31:ed:01:be:d3:
14:9f:58:13:36:1b:4b:58:de:e8:28:60:0f:61:85:
b5:7a:15:a2:ee:06:7c:7b:ba:38:d3:7b:ff:14:39:
7e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:86:31:27:91:C3:1E:D4:54:FE:8E:28:EE:08:3B:76:BC:76:15:DA
X509v3 Authority Key Identifier:
keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:32:ed:7b:9e:6a:23:97:f7:d3:fb:1a:2a:f6:b5:3f:ba:61:
87:77:4d:f8:e2:6d:66:48:2c:15:ff:80:a5:99:73:9a:6f:30:
7b:ff:53:13:f5:a5:f9:cf:b6:31:ba:ed:e6:44:26:7d:28:5f:
0d:6b:82:bc:a4:c3:89:87:c8:d8:ff:ea:c7:fd:e3:6f:aa:26:
f2:85:a5:8f:13:63:13:4d:fe:21:ee:ca:38:ce:39:4e:d1:6b:
f5:17:0d:c2:56:90:ba:dc:09:20:49:2a:ff:50:19:15:94:0d:
de:16:4e:45:5e:86:cd:40:b3:09:54:db:be:6e:49:27:a6:3c:
99:d5:0f:96:d0:c3:79:97:dc:df:0e:b1:3c:95:45:c3:c6:48:
3e:73:25:6f:34:26:2e:4b:80:8d:31:e1:c8:af:1c:b3:41:fa:
8c:a7:9c:0d:3b:de:56:2b:57:2d:ad:a7:e5:f9:fb:d2:34:19:
9e:b2:42:28:71:9a:8f:c3:f1:f3:08:e7:b3:4a:50:72:73:79:
4c:ca:91:42:48:ac:41:68:9b:f5:37:25:0e:31:01:ad:06:32:
b9:8b:f2:61:09:72:5a:a6:68:a7:6b:d2:2b:a3:40:a7:49:f6:
d5:dc:6e:3f:9a:9f:c9:1f:00:93:1c:ce:af:5a:52:2c:60:e4:
c4:9c:d8:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:53:01 2025 by rpki-client