Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
File: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft (raw, json)
Hash identifier: vQmr5nt8qhD8UCRf23kuU770nIDzXwJYSrQo2kfcLzI=
Subject key identifier: 5F:76:06:95:1E:91:7A:63:F4:DD:19:DB:8A:32:2B:7A:9E:9E:D0:EA
Authority key identifier: D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
Certificate issuer: /CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Certificate serial: 01984AAE93378737F685A40B3C34473004D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
Manifest number: 0D23
Signing time: Sun 27 Jul 2025 07:00:11 +0000
Manifest this update: Sun 27 Jul 2025 07:00:11 +0000
Manifest next update: Mon 28 Jul 2025 07:00:11 +0000
Files and hashes: 1: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl (hash: sfpkK5V3o/eDZB66vxRNQ72C/AbU36yAGUhzpGj69fw=)
2: GhbIbk50hv6g93dh7hGhzK6K_74.roa (hash: nXi3Gj76e6GTyqlSijwexlGEZ4aKaxuj/QihrtfAHS8=)
3: R5r0xeVYQuyhFWywaHju63NvX88.roa (hash: gil6oFrijLp6JqgDOMjfduAOivvAur9Q9eunuVq1Ysg=)
4: TofwY-R4zO7hCFwhNRcFqFccDIA.roa (hash: CO89XYgmv4EUpm6JNaIOn/T7FUsKcLGJGFWRoloHQXo=)
5: kEveC8WkpMXtAhCjQYal_7N8cqU.roa (hash: 36t2IiG5a0ru6GNWxSIKI2twOH4WabuzXbDN7PDUMCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:ae:93:37:87:37:f6:85:a4:0b:3c:34:47:30:04:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Validity
Not Before: Jul 27 07:00:11 2025 GMT
Not After : Jul 28 07:00:11 2025 GMT
Subject: CN=5f7606951e917a63f4dd19db8a322b7a9e9ed0ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:59:6d:73:9c:0d:c7:40:37:8b:7e:8c:ac:a7:
c3:ce:b4:57:b5:f0:d4:ba:55:f5:23:91:11:58:41:
8c:f9:27:ed:b6:03:7b:4e:ca:4e:e0:ff:22:47:a1:
a6:6a:ef:ba:f3:fa:db:00:87:cf:ec:38:36:67:f3:
ca:b7:eb:21:cc:62:3f:03:fc:70:4c:5a:e9:f6:73:
86:6c:9d:59:c9:ad:45:2d:00:86:90:6a:28:06:5c:
67:38:18:0e:cf:dd:a9:de:a1:11:c2:42:55:ed:47:
7d:b6:60:8d:32:2a:01:72:e4:00:eb:25:b0:32:68:
1a:2c:df:a1:f0:75:9b:f1:a4:72:a7:d0:c7:c3:bd:
f3:ed:f1:7f:c7:32:59:74:26:bc:ff:c9:67:e7:16:
b5:d1:13:5e:22:81:5c:df:4b:04:5b:46:cb:a8:6d:
0d:d8:0c:f4:f4:05:ca:b9:fa:5d:13:19:96:45:2a:
1f:37:83:84:a3:a7:7c:09:29:ac:7e:a8:43:48:d3:
e6:61:86:38:08:cc:5c:b0:3d:ef:07:a0:63:99:ca:
3f:a2:97:76:60:ae:82:03:6e:39:d3:b5:57:82:9b:
54:a1:37:7a:f9:3e:5a:1a:96:13:de:63:2f:db:7f:
70:0b:55:00:8d:3c:ec:3f:36:1f:14:f3:6f:54:e4:
d6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:76:06:95:1E:91:7A:63:F4:DD:19:DB:8A:32:2B:7A:9E:9E:D0:EA
X509v3 Authority Key Identifier:
keyid:D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:2b:d0:7d:f8:da:1f:be:1a:53:12:f6:54:fa:07:18:26:7a:
28:86:02:82:e7:38:92:cb:75:7a:0e:17:b6:06:d3:d7:07:95:
21:76:25:23:69:ba:d4:ae:66:87:44:2f:67:14:6b:f9:b7:a9:
69:a9:ca:a2:70:56:da:c3:e1:5d:c7:f3:92:16:f3:f9:3c:14:
1c:fb:5c:23:1c:3e:27:95:c0:9d:38:6e:29:cf:72:25:96:07:
4b:36:93:c9:32:1f:6d:db:75:5a:d9:f4:76:6f:f4:b4:ca:ff:
fd:b8:c5:29:2d:e3:f6:c7:22:88:8e:03:36:99:77:d4:61:20:
e1:73:a2:98:26:2c:99:89:ae:99:0b:93:32:dd:c7:b7:31:18:
91:8f:e5:ab:6e:2a:98:26:92:f2:86:37:17:5e:3f:00:9d:21:
c7:95:ea:71:2a:3e:5d:03:cb:01:aa:b9:28:c1:ae:ca:93:a2:
3d:43:6c:a7:90:4c:fc:85:26:49:81:60:a1:9b:5b:8a:e1:9c:
03:97:5a:82:06:7b:c6:99:98:4d:d1:a6:a7:85:4b:34:cd:58:
7c:72:2d:fc:db:f5:2d:13:71:14:09:34:44:c8:81:24:9d:a3:
43:85:25:c6:89:56:57:e5:61:1e:fa:e4:90:d0:68:9f:d1:32:
a2:be:a6:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhKrpM3hzf2haQLPDRHMATUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5YWQxOGY0YzM2MDY3MjIwZjRkODMzY2JjNzhhMTBmOTRl
YjA4ODgwHhcNMjUwNzI3MDcwMDExWhcNMjUwNzI4MDcwMDExWjAzMTEwLwYDVQQD
Eyg1Zjc2MDY5NTFlOTE3YTYzZjRkZDE5ZGI4YTMyMmI3YTllOWVkMGVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1ltc5wNx0A3i36MrKfDzrRXtfDU
ulX1I5ERWEGM+SfttgN7TspO4P8iR6Gmau+68/rbAIfP7Dg2Z/PKt+shzGI/A/xw
TFrp9nOGbJ1Zya1FLQCGkGooBlxnOBgOz92p3qERwkJV7Ud9tmCNMioBcuQA6yWw
MmgaLN+h8HWb8aRyp9DHw73z7fF/xzJZdCa8/8ln5xa10RNeIoFc30sEW0bLqG0N
2Az09AXKufpdExmWRSofN4OEo6d8CSmsfqhDSNPmYYY4CMxcsD3vB6Bjmco/opd2
YK6CA24507VXgptUoTd6+T5aGpYT3mMv239wC1UAjTzsPzYfFPNvVOTWpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF92BpUekXpj9N0Z24oyK3qentDqMB8GA1UdIwQY
MBaAFNmtGPTDYGciD02DPLx4oQ+U6wiIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmEwWTlNTmdaeUlQVFlNOHZIaWhENVRyQ0lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9kMzUxYmYtNzFjZS00ODU3LTllNTAt
YzI2NDczODVlNzI3LzEvMmEwWTlNTmdaeUlQVFlNOHZIaWhENVRyQ0lnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC9kMzUxYmYtNzFjZS00ODU3LTllNTAtYzI2NDczODVlNzI3
LzEvMmEwWTlNTmdaeUlQVFlNOHZIaWhENVRyQ0lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvyvQffja
H74aUxL2VPoHGCZ6KIYCguc4kst1eg4XtgbT1weVIXYlI2m61K5mh0QvZxRr+bep
aanKonBW2sPhXcfzkhbz+TwUHPtcIxw+J5XAnThuKc9yJZYHSzaTyTIfbdt1Wtn0
dm/0tMr//bjFKS3j9sciiI4DNpl31GEg4XOimCYsmYmumQuTMt3HtzEYkY/lq24q
mCaS8oY3F14/AJ0hx5XqcSo+XQPLAaq5KMGuypOiPUNsp5BM/IUmSYFgoZtbiuGc
A5daggZ7xpmYTdGmp4VLNM1YfHIt/Nv1LRNxFAk0RMiBJJ2jQ4UlxolWV+VhHvrk
kNBon9Eyor6mPg==
-----END CERTIFICATE-----
Generated at Sun Jul 27 11:24:38 2025 by rpki-client