Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
File: 2LlxoaILZPFCUYAfj0NKQHX36pE.mft (raw, json)
Hash identifier: CtgWmyDepAHUVJr8ZYKuBqHBZzVFiFRK8G+GSaQJkC4=
Subject key identifier: 9D:6E:CF:9A:49:5E:4F:87:9E:AF:32:6D:7E:54:25:7F:99:E9:95:19
Authority key identifier: D8:B9:71:A1:A2:0B:64:F1:42:51:80:1F:8F:43:4A:40:75:F7:EA:91
Certificate issuer: /CN=d8b971a1a20b64f14251801f8f434a4075f7ea91
Certificate serial: 019847AD92C9CC552F1C596C3018661E1F26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
Manifest number: 02AF
Signing time: Sat 26 Jul 2025 17:00:14 +0000
Manifest this update: Sat 26 Jul 2025 17:00:14 +0000
Manifest next update: Sun 27 Jul 2025 17:00:14 +0000
Files and hashes: 1: 2LlxoaILZPFCUYAfj0NKQHX36pE.crl (hash: ruE9GhCI/7tufvdOz0CJJ54EUqwZYZ6m8rzduwjo2kA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:ad:92:c9:cc:55:2f:1c:59:6c:30:18:66:1e:1f:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8b971a1a20b64f14251801f8f434a4075f7ea91
Validity
Not Before: Jul 26 17:00:14 2025 GMT
Not After : Jul 27 17:00:14 2025 GMT
Subject: CN=9d6ecf9a495e4f879eaf326d7e54257f99e99519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7f:97:32:7b:21:a6:8b:94:29:36:c2:b2:63:
32:0f:3d:47:8d:3f:38:d6:58:5b:8d:dc:d1:0f:a5:
c0:bd:23:8d:c2:8a:8a:6f:4c:d4:4b:ec:cf:5d:bc:
76:b2:7d:11:5d:b7:92:22:c9:8e:cb:e7:75:56:2b:
dc:c1:ae:61:22:db:69:4c:4c:b8:65:7a:23:1a:55:
69:77:fa:9d:19:9d:23:22:87:3c:4b:83:64:01:d1:
96:14:64:57:6a:f7:c2:e1:28:cb:e3:fe:56:7d:e6:
ef:55:6c:6e:16:83:6d:35:66:43:1a:00:bf:5a:6c:
4f:64:1c:ac:31:3e:ae:1e:3b:95:87:23:3d:85:dc:
10:6a:ee:43:a6:76:70:37:07:c7:33:dc:61:ac:5e:
1e:61:5a:54:a3:ce:f0:cd:da:08:5c:d4:e6:6e:e7:
8c:51:34:90:d6:4c:30:35:c6:e1:e7:73:b1:21:52:
c8:4a:fe:a6:87:d2:69:fd:f0:e0:5a:8d:f4:00:7e:
d1:a3:8d:76:80:23:cf:1b:e1:8d:52:35:26:44:1a:
53:c0:39:c5:1f:44:2f:99:8c:ef:d2:e8:d9:a8:4d:
02:fe:10:76:cc:a4:3d:a5:52:73:4c:53:f0:6a:57:
fd:f5:3f:16:bb:9f:e0:e2:fb:dc:2a:ab:eb:a5:69:
8b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6E:CF:9A:49:5E:4F:87:9E:AF:32:6D:7E:54:25:7F:99:E9:95:19
X509v3 Authority Key Identifier:
keyid:D8:B9:71:A1:A2:0B:64:F1:42:51:80:1F:8F:43:4A:40:75:F7:EA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:32:2a:2d:cc:4a:3d:b7:a4:ad:79:84:cd:da:8b:4f:62:da:
2e:89:7d:ab:49:a7:83:05:00:08:39:b5:5f:39:db:de:b3:00:
7f:d7:18:c6:2d:f3:16:05:01:9f:98:4d:22:0d:1a:b7:8e:0c:
eb:7b:60:23:d3:9a:61:d7:44:70:01:1f:db:c1:69:44:a0:38:
2e:f6:c0:0b:47:01:a9:9d:10:fa:4f:84:2a:79:96:24:cb:33:
17:23:e5:8e:e5:d3:37:15:9b:0c:e6:f0:e2:84:79:ca:c1:f3:
95:d6:91:82:9e:83:be:35:5a:53:b1:18:7c:13:a7:cc:d3:49:
e8:56:d5:3d:f4:24:ce:df:f5:2a:3e:13:c8:0c:2d:95:a3:38:
1a:9e:fb:13:4e:76:d8:61:10:89:47:8a:7a:b0:b5:f1:f5:fd:
d1:51:b1:32:25:88:94:f5:80:42:c3:36:f5:d9:ae:d0:08:d2:
7a:e5:4c:cb:dc:1c:be:a7:9c:11:0e:2f:70:fa:39:42:ee:4a:
41:9f:ff:24:0c:6e:60:93:f8:46:18:4e:cf:0f:16:40:cd:e1:
35:68:8a:24:ee:14:47:07:c5:3f:d9:ed:f5:e3:54:1c:01:ec:
ba:28:e3:00:c3:65:93:e6:c0:2f:3e:3e:ee:0f:39:2e:d9:53:
e4:a4:f6:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:51:44 2025 by rpki-client