Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: 2wmysyuJ6lUqRtyanCnbosSeK5x8KahrKeJ5Sm8alH4=
Subject key identifier: B7:13:08:97:77:B0:34:14:52:6C:4C:39:8D:BE:95:6C:3F:F4:2D:6F
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 01992330FE49F53857B3E25816BCBAB77F7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 123F
Signing time: Sun 07 Sep 2025 08:00:37 +0000
Manifest this update: Sun 07 Sep 2025 08:00:37 +0000
Manifest next update: Mon 08 Sep 2025 08:00:37 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: ncF62rzWp6IskWLqmC3R+kxDhwAvFSykn+JTTbir0BA=)
2: B9-JyKOh9vcA8Yt248kp1OHsLjE.roa (hash: IbF0FRhBYEIf5hZ2KcvfEljtf1YgGGazPG/5I71dHJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:fe:49:f5:38:57:b3:e2:58:16:bc:ba:b7:7f:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Sep 7 08:00:37 2025 GMT
Not After : Sep 8 08:00:37 2025 GMT
Subject: CN=b713089777b03414526c4c398dbe956c3ff42d6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c8:5a:4a:af:a0:c9:c5:4b:3d:fc:5a:c8:17:
8b:59:e3:e3:63:1a:4e:ee:46:f1:d9:1e:24:66:51:
35:b9:cd:71:36:af:1e:35:61:c8:d9:4e:b7:b6:b5:
7d:51:4c:67:3c:e6:ce:9f:bb:1e:62:95:fa:e6:23:
2b:a7:f5:ae:75:2b:45:6b:51:f1:bf:75:13:ed:9b:
79:66:39:ed:84:03:b6:aa:a9:8e:ab:b0:4c:77:8b:
c6:a2:3a:4e:c0:ad:dd:04:d4:b0:37:51:3e:b6:89:
f7:73:24:01:e0:96:75:02:d5:14:56:71:38:9a:15:
da:46:82:47:ed:b3:6b:ef:0c:7f:33:75:8c:1b:5f:
49:27:21:7f:c7:ec:4a:60:6a:25:c1:bf:b5:b4:74:
fc:d7:a3:61:aa:6d:70:f5:7d:f3:dd:34:bc:0e:37:
18:bd:a9:02:0d:80:df:46:61:86:87:a1:21:66:58:
14:92:12:3b:aa:aa:a9:99:61:a8:6f:2b:79:30:d2:
b4:b2:25:61:25:6a:ec:51:5f:f1:8d:7c:e9:c9:af:
7b:44:85:32:7d:81:e7:27:ec:76:1b:7a:9b:d5:ab:
2f:41:9b:0d:55:12:93:90:66:33:1c:4c:7a:8e:5e:
44:d7:1e:9b:78:d8:c9:6b:0a:df:90:23:64:b4:e6:
6d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:13:08:97:77:B0:34:14:52:6C:4C:39:8D:BE:95:6C:3F:F4:2D:6F
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:15:20:29:58:6a:7c:81:67:54:b3:7b:85:aa:38:b3:10:6c:
37:4d:ac:68:f6:9b:20:31:10:5b:c3:bd:35:50:d0:83:ca:3a:
52:60:46:53:80:26:25:be:0f:bd:6d:92:17:8b:44:28:b7:98:
94:70:c2:bc:63:8b:f5:6d:91:40:97:f5:2e:21:1c:6a:8a:d6:
51:1b:d6:b2:8a:c8:c2:f1:8b:f3:e7:34:7c:bb:23:12:2a:89:
12:84:d8:5a:11:62:d3:12:03:05:94:f3:bd:a4:1e:6d:4c:7f:
01:70:f4:a0:8b:63:cd:f9:87:30:d8:36:b2:68:e3:c0:a9:c9:
34:dc:1c:7d:4d:0e:7b:83:a0:76:af:b8:e5:e6:31:df:4c:90:
f9:4b:2a:6b:23:28:ce:5a:1f:70:cf:50:1f:e7:60:c5:2f:ef:
91:90:4a:33:80:46:bd:1b:61:26:fb:bb:16:ac:3d:fd:37:6c:
53:b9:93:17:87:09:2f:96:32:91:46:70:bd:2f:1c:b7:95:33:
65:a1:f7:ac:75:95:91:20:5e:52:b0:28:15:bf:65:79:2a:a4:
b3:79:69:2d:ab:e1:77:74:0d:0b:af:7c:60:ae:44:c8:ff:2d:
a0:08:75:7a:4e:14:57:29:97:77:f7:f3:e4:2b:94:24:b6:81:
cf:59:0a:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:03 2025 by rpki-client