Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
File: 2iTzVyHKMag-L26TfhdAjm57LGE.mft (raw, json)
Hash identifier: qogqz+cqwpFjW54Jt8Uv+JImEiRRR9UVDG7f83zTTUo=
Subject key identifier: FD:83:97:7F:84:A4:CD:80:05:11:90:7F:E2:F2:D2:6E:AA:F3:1A:E9
Authority key identifier: DA:24:F3:57:21:CA:31:A8:3E:2F:6E:93:7E:17:40:8E:6E:7B:2C:61
Certificate issuer: /CN=da24f35721ca31a83e2f6e937e17408e6e7b2c61
Certificate serial: 0197B8C59FF45D3E4B05049A26BD7B03F2FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2iTzVyHKMag-L26TfhdAjm57LGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
Manifest number: 15BB
Signing time: Sat 28 Jun 2025 23:00:48 +0000
Manifest this update: Sat 28 Jun 2025 23:00:48 +0000
Manifest next update: Sun 29 Jun 2025 23:00:48 +0000
Files and hashes: 1: 2iTzVyHKMag-L26TfhdAjm57LGE.crl (hash: XR89CfPDg2xnTCIVv2kC4+Iq9gJDWp6QoBmcpcvWER0=)
2: I11yOf8621A4bMVjivGCunNhodU.roa (hash: zD+DtTuh65HplID/p8Q/zTlZEI94dke+hM79PxEcBgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2iTzVyHKMag-L26TfhdAjm57LGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:c5:9f:f4:5d:3e:4b:05:04:9a:26:bd:7b:03:f2:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da24f35721ca31a83e2f6e937e17408e6e7b2c61
Validity
Not Before: Jun 28 23:00:48 2025 GMT
Not After : Jun 29 23:00:48 2025 GMT
Subject: CN=fd83977f84a4cd800511907fe2f2d26eaaf31ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:24:f3:bd:ef:04:84:1f:6a:1f:7c:f2:da:9e:
1f:a9:4a:60:73:a1:83:70:dd:37:49:69:b8:e6:4b:
b7:29:c4:7c:bc:a2:93:b6:50:09:dc:9f:bd:e5:70:
2d:85:e6:3a:b1:52:3d:b5:d0:81:09:23:89:1a:0b:
71:71:6f:16:8d:03:28:c3:47:11:d6:a1:a8:62:3a:
9f:76:a7:06:ee:4d:e7:3c:60:02:31:49:94:8e:7e:
6f:ad:af:ef:56:4f:7b:63:d4:85:25:a0:25:85:3d:
9b:41:7d:46:de:13:1b:96:16:33:8e:6f:78:3f:ab:
ea:4d:cc:78:61:7b:1d:d8:9d:68:dd:d0:30:05:e2:
1d:bb:b8:28:0e:c3:af:b7:b1:89:68:a7:e7:6c:be:
43:5e:be:39:78:b3:4b:07:33:e0:15:25:8d:2b:fa:
2d:63:79:c2:eb:b6:85:c8:d4:c4:d7:fb:40:fa:43:
7c:2c:0d:d0:36:b1:dd:6b:30:9e:49:05:1b:4e:a9:
1c:78:a8:3f:49:c0:72:e0:76:78:24:1a:dc:1d:f6:
3e:08:23:44:3a:f9:ad:55:f7:d1:44:03:bd:22:3a:
2b:65:66:13:9b:05:c1:24:35:67:06:40:f0:68:39:
2f:a8:cd:23:22:6f:fa:66:93:08:b4:7a:6c:64:53:
bc:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:83:97:7F:84:A4:CD:80:05:11:90:7F:E2:F2:D2:6E:AA:F3:1A:E9
X509v3 Authority Key Identifier:
keyid:DA:24:F3:57:21:CA:31:A8:3E:2F:6E:93:7E:17:40:8E:6E:7B:2C:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2iTzVyHKMag-L26TfhdAjm57LGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:9a:58:c1:98:b5:47:a9:61:d6:b8:4a:03:a3:b9:20:42:97:
20:a2:24:50:72:73:56:d8:45:d4:28:cc:8f:c9:76:f3:42:9a:
5d:72:6f:60:54:45:c2:62:16:26:df:52:bd:1f:7f:63:ce:fa:
22:b8:40:27:51:d2:4b:0c:cb:1b:25:b7:2b:69:b5:81:7f:05:
b4:b0:ab:3e:8b:e2:14:07:1f:f8:d3:27:7b:25:79:9c:c0:85:
61:b7:97:ff:2f:c3:41:bb:75:b9:32:e3:af:5b:cc:7e:04:26:
5d:d3:5d:8c:c7:8a:a5:31:f5:0d:b2:fb:54:2e:7c:c5:fe:85:
99:2c:08:a7:a3:05:98:30:cb:d2:56:03:66:d7:c2:3a:9d:24:
e3:d0:a0:6e:7f:4c:45:0b:2b:b7:9d:6b:ac:b5:5b:9b:d5:aa:
90:c8:27:32:57:b8:75:8d:0e:da:c6:78:81:38:17:a5:9b:85:
64:4b:58:6f:1f:53:f8:be:df:aa:c3:dc:cd:16:48:b8:db:c4:
75:63:60:0f:35:d0:7e:f1:3c:16:97:b9:82:10:88:5e:02:cd:
11:52:77:5d:78:a3:60:66:d3:b9:f6:40:d2:70:23:bc:dd:db:
db:5a:1b:09:2a:d3:c4:d9:42:05:fb:d6:0e:84:f1:b1:8c:b0:
d8:41:84:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:06:11 2025 by rpki-client