Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
File: 2l7eZe_t7t-MigSyRaOl32OmnoQ.mft (raw, json)
Hash identifier: AEkF7C2sRh6+e6k0eKzPqXhvfWIArLyxisCxn/4L6eE=
Subject key identifier: EF:B3:86:4F:26:98:65:FC:BF:95:01:4A:2B:7E:A8:44:8F:66:0E:D9
Authority key identifier: DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
Certificate issuer: /CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Certificate serial: 0198D473166E130DED3797DE38855D946C41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 01:02:48 +0000
Manifest this update: Sat 23 Aug 2025 01:02:48 +0000
Manifest next update: Sun 24 Aug 2025 01:02:48 +0000
Files and hashes: 1: 2l7eZe_t7t-MigSyRaOl32OmnoQ.crl (hash: aB7P6MS86EBQGX7pis0En1ZHixslYP0bmGzZT+YxE5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:16:6e:13:0d:ed:37:97:de:38:85:5d:94:6c:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Validity
Not Before: Aug 23 01:02:48 2025 GMT
Not After : Aug 24 01:02:48 2025 GMT
Subject: CN=efb3864f269865fcbf95014a2b7ea8448f660ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0b:05:6a:bf:10:f1:ea:b3:fc:72:ed:e0:1f:
4e:c1:31:b9:fe:aa:e9:68:d5:f8:27:06:24:ed:dd:
61:36:29:5b:00:02:b9:32:95:cf:a3:04:ff:59:45:
41:fc:db:c7:c0:30:94:ff:85:11:27:54:35:17:af:
89:cf:5f:ed:79:ce:75:6b:1e:72:5a:e0:69:36:4b:
0b:cf:49:82:ce:85:30:83:bb:73:b5:81:17:5d:be:
15:6c:9d:2f:03:89:3d:1d:e6:d3:ca:3c:e0:0d:d8:
1f:04:7c:d9:99:48:f9:95:0e:d0:20:db:7d:a6:bd:
58:b8:92:9c:5a:51:84:06:7e:27:ff:38:f8:ec:bb:
1a:f8:d3:f5:f8:7c:fa:44:84:98:59:2e:fd:ab:5e:
dd:80:78:b0:7a:b8:0c:f8:36:a9:74:2c:8e:71:c3:
08:1e:27:97:0e:0b:67:e5:e1:3b:6f:c7:3b:83:49:
b2:68:fe:7c:01:a6:b0:e1:60:3f:20:3a:93:ba:0c:
99:80:61:f4:8a:f2:23:1a:51:cf:94:54:c5:56:04:
17:5e:77:3f:ab:b2:23:56:07:36:fa:2d:12:bb:5b:
60:69:fd:45:00:65:b7:c9:56:ad:2f:6a:b8:82:00:
84:98:01:e4:71:e2:ce:87:b1:5b:91:06:51:de:62:
5f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B3:86:4F:26:98:65:FC:BF:95:01:4A:2B:7E:A8:44:8F:66:0E:D9
X509v3 Authority Key Identifier:
keyid:DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:58:aa:ee:72:09:82:22:53:62:99:ec:5b:0f:8c:dc:2f:f2:
03:d6:f1:f3:c5:7a:d5:1a:a0:2b:ee:42:e8:d1:ce:88:28:08:
de:e3:5f:61:b3:ae:cc:18:73:3e:73:19:01:f8:2a:c5:72:c3:
12:78:95:a8:9a:ed:77:e7:6c:95:fd:84:81:63:76:19:92:26:
11:05:46:61:8c:da:c9:82:21:dd:c1:f8:d9:79:20:72:81:5a:
38:7b:40:57:3f:fc:6c:a7:6d:74:f6:ef:d5:3a:88:e8:9c:c9:
95:9f:a3:2e:ee:43:45:e2:e5:a7:64:e5:57:b9:65:ae:73:d8:
1b:da:05:07:33:76:6b:34:aa:82:b6:3c:68:3b:cb:fd:78:38:
c9:17:cb:32:01:84:3a:2f:77:aa:1b:ab:7a:6a:03:c8:36:0a:
fe:f7:f5:34:d5:0f:84:47:7f:fa:cb:b6:a7:54:63:48:c2:52:
f1:cd:82:eb:b8:be:7f:28:9c:3d:de:c6:e3:26:60:c8:77:2c:
11:b1:5e:7a:af:12:85:aa:67:25:fe:9a:5b:e8:4c:fe:f2:85:
5f:e5:bc:5b:36:e9:28:49:b6:34:87:be:99:fc:6d:8b:26:33:
91:8a:06:d0:67:2e:41:a3:af:4b:67:41:74:2a:dc:04:e0:ad:
ab:5c:a0:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:08 2025 by rpki-client