Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json)
Hash identifier: S+lpRJxKLNkt6n9QrtDboTXjtwvjipvSRjCL2wUqDNk=
Subject key identifier: 84:34:8B:BD:64:50:A3:50:E5:8A:D9:68:E1:D7:39:07:70:85:F2:EB
Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac
Certificate serial: 01993125255F7FAF8E929D5E2D917A0E0164
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
Manifest number: 0C12
Signing time: Wed 10 Sep 2025 01:02:21 +0000
Manifest this update: Wed 10 Sep 2025 01:02:21 +0000
Manifest next update: Thu 11 Sep 2025 01:02:21 +0000
Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: rOlpJ2HtROm1touNqk3CV+5gN/RB26Kn+yszg8tqPy8=)
2: x6hLDer_XW1q_iEu4GXkzkZyC4s.roa (hash: WqVvea5/LNqbNIIZsdml33Mg9/QcNbUM12u8YdmaIWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 21:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:25:25:5f:7f:af:8e:92:9d:5e:2d:91:7a:0e:01:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac
Validity
Not Before: Sep 10 01:02:21 2025 GMT
Not After : Sep 11 01:02:21 2025 GMT
Subject: CN=84348bbd6450a350e58ad968e1d739077085f2eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1a:10:f3:05:28:c8:0f:15:e2:0d:55:7b:aa:
d4:75:56:88:b9:1c:c3:8c:63:0f:58:c4:a6:da:6a:
57:2f:36:6e:ab:28:c2:bb:6f:a8:62:6a:9c:d5:6b:
71:9d:08:0a:9a:23:7a:af:e3:ff:92:32:e3:cb:18:
58:ff:12:13:b8:db:0a:7a:5c:4b:11:aa:b6:02:4b:
34:4a:d0:c6:fe:d1:7c:08:0a:1b:45:44:09:00:89:
19:00:d9:96:fa:9b:05:20:c3:ff:5e:dd:bb:71:1c:
f0:48:00:50:cf:3f:01:26:f7:d4:d8:e9:14:d8:1c:
4a:0d:d5:3e:c5:3a:12:31:30:67:de:98:f2:c7:47:
cd:87:4a:df:f1:41:00:0d:95:33:6a:75:23:62:a2:
d9:46:0e:75:e3:69:2a:e1:3a:c0:8b:fa:55:ab:3b:
cd:2c:a2:97:3b:ef:d5:f5:bc:a9:3c:1d:58:28:31:
83:9c:a4:2c:27:37:41:3a:41:d3:2d:0f:78:7e:1a:
c7:74:d4:9b:ec:c4:1d:58:23:d7:59:d2:8c:a9:f7:
9b:e4:ae:ba:de:1e:2c:36:e0:8b:37:f2:5d:2f:e9:
93:0a:b1:b6:58:9e:29:6b:f5:ae:78:46:3a:c4:51:
a6:ec:fa:48:51:6c:20:cb:9d:cc:8b:66:5e:e8:9f:
47:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:34:8B:BD:64:50:A3:50:E5:8A:D9:68:E1:D7:39:07:70:85:F2:EB
X509v3 Authority Key Identifier:
keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:27:0d:7a:15:2c:59:47:24:67:62:6e:dd:8e:94:68:f1:92:
64:da:d8:f3:af:60:4c:bb:f3:6d:57:10:19:73:be:f3:ec:f6:
6f:bb:9d:a6:38:95:21:03:e4:24:9e:9f:4a:43:0d:90:80:e7:
be:86:cf:cd:85:3a:b2:b2:e9:37:a1:f3:68:25:73:b7:85:27:
49:18:d6:1d:b2:46:f7:5b:a4:7a:52:ea:42:0c:3a:11:d0:18:
b4:2b:b2:a9:f4:34:53:1e:16:0b:f4:9e:99:72:5b:63:f4:9b:
b9:e5:14:f2:f6:19:e9:63:f7:86:23:2d:8f:27:e5:1d:fb:3c:
40:0c:fa:33:1b:d3:84:36:a0:99:f6:ed:7c:6e:95:20:95:77:
11:30:39:61:4c:84:dd:81:1e:71:e2:3d:3d:d3:d0:70:3e:1c:
96:66:fc:ab:99:20:9b:8b:96:34:95:88:f4:d0:e8:71:2a:5f:
f5:f8:ea:9a:72:bd:ad:01:73:eb:f6:1c:00:11:31:a0:01:c4:
16:85:0f:cd:2d:b8:12:a8:c0:cf:5b:b9:7a:a6:39:5d:01:4d:
96:d2:27:91:d2:93:47:c4:21:e2:af:52:6e:5b:0b:ac:2f:02:
cb:7f:45:c1:3b:63:ad:34:5a:f2:5a:f5:21:3c:3c:df:83:9d:
c4:b5:88:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 04:18:00 2025 by rpki-client