Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
File: 2My6s6LYEMX6KdzanVAgJhbvueg.mft (raw, json)
Hash identifier: cq44OUO2CNEHEYKONqnHhXomSDTq5LuWNQmarRcTqVA=
Subject key identifier: C2:B6:46:69:DB:26:F6:5A:72:CA:74:10:BB:5A:9F:5D:1A:AA:20:F9
Authority key identifier: D8:CC:BA:B3:A2:D8:10:C5:FA:29:DC:DA:9D:50:20:26:16:EF:B9:E8
Certificate issuer: /CN=d8ccbab3a2d810c5fa29dcda9d50202616efb9e8
Certificate serial: 0197B7EAC67FA709341D6281C14DCBFCCC36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
Manifest number: 20
Signing time: Sat 28 Jun 2025 19:01:45 +0000
Manifest this update: Sat 28 Jun 2025 19:01:45 +0000
Manifest next update: Sun 29 Jun 2025 19:01:45 +0000
Files and hashes: 1: 2My6s6LYEMX6KdzanVAgJhbvueg.crl (hash: mf0siqrJ+qCYlcrlbhXWKp+otV9/W3ww5ERF34ebMQs=)
2: KOSoig2OcfAUHpP5S4cPuKe0-qQ.roa (hash: h7WOd3FoOyE3z3s6Su64D7SfxJalvzda0YokBEiVb1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:c6:7f:a7:09:34:1d:62:81:c1:4d:cb:fc:cc:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ccbab3a2d810c5fa29dcda9d50202616efb9e8
Validity
Not Before: Jun 28 19:01:45 2025 GMT
Not After : Jun 29 19:01:45 2025 GMT
Subject: CN=c2b64669db26f65a72ca7410bb5a9f5d1aaa20f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4c:b9:6a:c5:d8:a5:35:88:a1:f7:f0:ed:ba:
60:4e:cf:69:c0:18:1c:3b:9c:ee:76:05:66:cb:0c:
b1:f4:98:e8:46:72:e4:b6:f0:01:7c:8e:e4:bd:af:
76:c6:65:0e:10:50:ff:68:64:43:cd:c0:01:bd:d9:
21:61:9a:11:7f:be:f7:4a:80:a8:60:28:d4:c7:03:
d9:39:47:dc:ed:dc:fd:75:97:e4:9f:78:8a:09:4c:
3f:61:d2:ae:6c:c2:7b:26:ec:84:93:c5:67:f7:9d:
f1:cd:2b:8d:d4:b7:bc:d3:f8:0c:28:8f:08:ca:41:
b6:28:90:9c:59:ae:49:c4:64:54:9b:0c:f0:8b:3a:
9d:fc:bc:8e:16:88:03:38:a0:ac:14:12:a8:3e:5f:
c3:de:f7:c3:51:16:39:a6:61:3b:07:da:88:cf:94:
38:fc:f2:36:36:55:a1:92:0a:fb:e9:cd:c4:4d:a5:
d1:c7:0c:ff:59:50:0c:39:fe:0b:05:6c:aa:bf:aa:
04:2e:b3:d1:c4:03:64:3f:cf:12:36:8f:ce:30:e2:
1f:5c:dd:5a:b1:e6:41:a0:2a:9f:68:fb:0b:a4:02:
82:28:c7:24:4b:ff:7f:11:95:fb:39:4f:2a:93:5d:
bb:3a:95:33:b2:1b:8f:50:8d:d2:7d:80:ca:02:2e:
e7:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B6:46:69:DB:26:F6:5A:72:CA:74:10:BB:5A:9F:5D:1A:AA:20:F9
X509v3 Authority Key Identifier:
keyid:D8:CC:BA:B3:A2:D8:10:C5:FA:29:DC:DA:9D:50:20:26:16:EF:B9:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:c1:d4:01:29:b3:88:34:b2:01:0f:28:b8:ee:b3:85:bf:a6:
d5:21:6f:57:4f:c1:37:fe:87:48:8d:34:e4:de:30:28:60:3e:
f7:c3:be:e3:0d:14:4e:c3:68:15:a3:5e:83:c2:01:60:23:f1:
82:2b:c4:6c:86:3e:67:e7:b5:a1:99:75:d1:1b:5e:55:3a:53:
5f:6c:1f:fd:b6:2e:e2:61:23:a2:13:5a:23:f8:91:41:47:9b:
47:f0:e7:7e:99:54:af:1f:cc:35:a5:f3:da:75:2f:0e:8b:a5:
0c:19:d1:71:69:b5:1d:e7:ad:ce:c9:be:15:ba:1b:95:80:be:
c9:f7:39:23:7f:79:58:67:04:18:28:d9:37:69:d8:86:f3:fb:
4f:b2:7b:82:60:92:c2:2e:9f:4b:c1:60:91:65:05:0c:b6:07:
28:d0:10:9f:2b:2e:68:73:91:30:79:d5:6c:aa:7a:ac:9b:d6:
28:0b:5c:bf:2b:68:61:48:bc:9f:63:5e:0c:4c:60:3e:c8:65:
1e:5a:53:c0:5b:65:b8:32:48:0d:9a:93:3c:15:c0:03:7a:1b:
67:9b:19:ba:5d:3e:55:e4:74:f0:93:1f:3b:3c:e6:4a:f3:fb:
0e:74:20:61:93:f8:37:86:43:84:e2:aa:e0:0c:e8:f3:49:b9:
cd:06:0c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:36:59 2025 by rpki-client