Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
File: 2f-H9S43t2bsv0s_nLJlWN0wiCA.mft (raw, json)
Hash identifier: gMwP/RTmcOzsp5H9OxacB48qlks7dAfBynO5AJdfnfY=
Subject key identifier: E8:23:6A:D6:C3:49:35:7C:D1:22:C4:E1:7E:B6:A0:6C:61:51:CA:45
Authority key identifier: D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
Certificate issuer: /CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Certificate serial: 019922C3A87F9821AE9D3AB963A1D164DA07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
Manifest number: 0C40
Signing time: Sun 07 Sep 2025 06:01:11 +0000
Manifest this update: Sun 07 Sep 2025 06:01:11 +0000
Manifest next update: Mon 08 Sep 2025 06:01:11 +0000
Files and hashes: 1: 2f-H9S43t2bsv0s_nLJlWN0wiCA.crl (hash: 9Aphcci/kjZ/wNMa4GvqXwtVYinpJSAHEjZTeMBi7PI=)
2: nyss7FejNtDGTUXRBz8EpK-bUtQ.roa (hash: 1YbJTbv2jhWedSFo8tfV4w9Efzyk/as9DY0FQwn+kas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 06:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:a8:7f:98:21:ae:9d:3a:b9:63:a1:d1:64:da:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Validity
Not Before: Sep 7 06:01:11 2025 GMT
Not After : Sep 8 06:01:11 2025 GMT
Subject: CN=e8236ad6c349357cd122c4e17eb6a06c6151ca45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f8:1d:b7:44:2f:84:95:92:8e:b7:ee:e9:c9:
96:94:0c:98:be:63:ec:54:0b:30:01:59:15:08:52:
75:ee:28:93:7e:0d:29:50:6a:54:f1:11:d3:85:71:
78:89:a2:9f:8f:10:c1:35:71:14:95:18:b8:b9:41:
84:e3:4c:f5:05:68:70:53:e7:eb:89:c8:42:84:b4:
fb:ad:86:6f:00:34:1e:cd:a3:f2:98:52:26:20:be:
78:c9:39:56:2c:63:99:91:7a:26:27:88:14:33:24:
a8:28:e7:f0:f7:d1:ad:48:36:1a:9b:6e:97:27:6f:
61:f0:58:b6:d9:58:3d:c3:c1:7d:9d:8e:fd:5e:32:
04:70:d9:5a:ae:d9:6f:9f:ee:2e:7c:21:a7:4f:81:
76:e3:b1:7f:be:f6:97:af:6d:cf:fc:e5:dc:62:68:
d8:f1:fa:88:e6:24:38:be:d7:eb:3a:d6:99:ef:e1:
e9:50:61:cc:ec:bc:82:41:66:cf:d7:9f:c7:af:47:
d9:64:f8:96:f3:01:5d:e0:aa:ae:d7:a3:24:8c:56:
3b:75:d7:5a:63:ae:32:50:af:7d:ce:cd:39:f7:57:
17:f1:f8:fb:33:94:01:6f:e4:13:6a:ff:c1:15:5e:
2d:91:de:65:65:9d:c2:b0:10:f8:7f:be:89:d1:b8:
3a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:23:6A:D6:C3:49:35:7C:D1:22:C4:E1:7E:B6:A0:6C:61:51:CA:45
X509v3 Authority Key Identifier:
keyid:D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:33:19:0e:98:da:8a:a0:0e:76:fa:c5:6d:c5:8a:fd:8a:0d:
39:0c:a4:31:38:00:00:82:95:fd:c1:05:e2:de:a2:16:11:a4:
0e:a8:8d:6e:0e:d1:d1:39:55:25:41:0c:b6:8a:8e:55:fa:c5:
62:59:4d:26:bd:a8:7a:fe:0b:c3:d4:a9:a1:6c:db:e8:f3:dd:
67:95:7b:f9:5b:4c:93:7c:75:62:f0:67:09:07:f1:28:f8:08:
e0:a0:a7:7e:46:f8:76:a6:cf:9d:b6:41:54:b8:3b:ca:3c:5f:
3e:09:bd:fb:a0:16:ea:86:1e:49:c3:69:98:58:6f:81:d2:f5:
32:b5:84:e2:c7:06:3b:31:71:a4:e6:30:01:a3:99:d4:ab:7a:
4f:83:10:cc:2c:c1:ff:6b:db:b0:58:23:d6:b8:3e:ae:1c:2e:
7c:e4:1a:f9:38:3a:f3:9a:00:2a:be:0d:ad:fd:4b:03:0b:8b:
5a:4c:0d:d2:8f:a9:c0:3a:d8:4a:de:5c:0c:94:53:0f:27:a7:
cb:47:66:83:cd:77:2c:fb:66:f6:08:a2:6a:82:8e:8f:6b:df:
d2:81:4b:8c:51:bf:7c:76:0a:ae:de:a4:97:70:f6:de:1a:03:
31:44:94:7f:f2:cb:cb:37:e6:ab:fa:f1:d3:8a:b2:4e:b8:55:
77:b4:98:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:34:11 2025 by rpki-client