Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: 8NqQr1xI/0TIitWVBjzTn/KGsKVt0KyQ6DBQeEcmXN8=
Subject key identifier: 32:C2:3A:00:FC:60:09:51:8D:F4:FD:7E:A8:36:69:8F:27:2C:E8:D8
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 0197B77CDA0F82FA38955513BF8602EEEA22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 0EC6
Signing time: Sat 28 Jun 2025 17:01:42 +0000
Manifest this update: Sat 28 Jun 2025 17:01:42 +0000
Manifest next update: Sun 29 Jun 2025 17:01:42 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: JXBaYxpjxAOIQoo8ScFwLqls0k99ZoipWIrhgsdblTA=)
2: fvccoh-XRGUydolEQwVKUg__llM.roa (hash: MESTegxG3uX73jrknXUqcZY7a9Gll4oI6clWX78ISS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:da:0f:82:fa:38:95:55:13:bf:86:02:ee:ea:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: Jun 28 17:01:42 2025 GMT
Not After : Jun 29 17:01:42 2025 GMT
Subject: CN=32c23a00fc6009518df4fd7ea836698f272ce8d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:98:84:85:a8:bd:97:93:03:4a:2b:14:27:74:
45:a4:29:bc:70:55:c0:c9:29:4e:73:f5:74:79:64:
47:7f:a2:e4:b7:72:6e:c0:c3:03:3d:b6:8b:bb:dd:
48:79:e8:6e:55:4f:90:ee:ba:45:e2:91:d2:27:a7:
90:64:ab:3c:e7:46:c0:69:aa:2d:17:ab:36:a7:dc:
d2:15:21:58:1e:ac:79:c2:2a:81:5a:c1:2e:59:ba:
ab:79:38:54:8d:12:b6:44:e8:60:2a:6e:98:6e:b8:
d4:2b:4b:e6:a6:ce:1d:f3:d9:50:2c:4b:b2:f0:80:
24:5a:fd:5e:7b:45:13:93:f2:93:a3:b6:fb:31:16:
dd:a9:30:aa:75:8b:a0:fc:45:50:f5:e9:82:2c:50:
8d:c7:65:b2:dc:32:a3:ce:65:df:0c:bd:ee:35:c0:
09:6c:32:40:66:2e:ad:94:44:3a:de:1d:fc:a3:31:
67:8a:79:a0:5e:29:a3:df:11:f8:b5:56:3e:aa:9b:
4b:1d:ed:99:5b:28:76:ad:40:23:ee:dd:75:48:89:
0d:c9:73:33:40:48:09:1d:ff:7e:5c:fc:74:8b:8e:
b0:15:62:2e:c7:73:7e:8c:c7:03:d3:c2:2f:de:a2:
7e:9c:3d:1b:b1:13:85:8d:1d:f0:22:f7:d7:43:57:
0d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C2:3A:00:FC:60:09:51:8D:F4:FD:7E:A8:36:69:8F:27:2C:E8:D8
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:df:19:12:29:10:c4:aa:54:72:07:ab:82:83:47:4c:94:8a:
ac:df:1c:e9:96:00:80:65:8c:6b:ce:69:96:7f:b9:5c:ae:81:
c0:f9:b8:33:81:e2:97:a2:b3:04:7e:3d:f4:58:c1:ea:db:a5:
82:ac:26:e0:e6:2a:5c:44:93:47:7c:57:a4:ba:cd:16:e2:45:
c5:bc:0a:8b:63:bd:59:22:df:57:95:d6:ed:e6:b4:e7:2a:4c:
e4:2b:ca:46:06:01:a4:42:f9:5f:a1:5d:d2:36:04:82:a5:d7:
96:1e:18:09:2e:cb:c6:0a:3c:9a:6a:74:40:9d:79:28:fc:12:
c7:e5:5d:d2:8f:93:78:c1:31:a6:09:b9:f6:d0:9f:34:82:92:
6c:5d:a1:5a:bc:fa:33:18:aa:93:42:ab:4c:b0:c9:a1:2c:23:
71:41:7b:e6:37:fa:2f:7a:da:3a:f8:8a:0f:b5:f8:f9:81:4a:
08:30:f4:5f:36:4f:52:73:34:d4:06:96:2e:02:0a:9e:a0:9d:
99:a9:53:10:c0:64:45:ef:b7:db:8e:fb:53:75:f7:24:b1:70:
72:2c:39:b6:61:f2:84:fd:8f:63:a7:1a:6b:57:2d:bd:c4:40:
9f:66:45:75:99:ae:81:23:bf:18:cc:42:aa:d3:d3:2e:96:56:
09:41:f8:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:46:13 2025 by rpki-client