Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: vRnkBjXykHVXuAEPmUl8WMtB9xDH+H4n0HZuDerZL5Y=
Subject key identifier: 1D:5F:E2:3E:4B:42:79:DE:D1:4D:B0:6C:86:ED:ED:F2:2F:D7:D8:0C
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 01993794B5F45F7F68F5245EA5217C47B8F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 15DF
Signing time: Thu 11 Sep 2025 07:01:56 +0000
Manifest this update: Thu 11 Sep 2025 07:01:56 +0000
Manifest next update: Fri 12 Sep 2025 07:01:56 +0000
Files and hashes: 1: WWNEma98vqvt3aWub4KvZrisRPY.roa (hash: 8ej/FxtmoHvT2+4JYPncO9OF+5JwUWMEm2sRynTw/0U=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: JkDpmMc3wy6WaCLdjcedap0WYkiSc/WV71agXmrb9N4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 05:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:37:94:b5:f4:5f:7f:68:f5:24:5e:a5:21:7c:47:b8:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Sep 11 07:01:56 2025 GMT
Not After : Sep 12 07:01:56 2025 GMT
Subject: CN=1d5fe23e4b4279ded14db06c86ededf22fd7d80c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b9:45:c0:ef:fc:0b:30:24:38:a6:c8:cf:6c:
b0:f2:ed:b6:5c:a8:ca:a3:6c:6e:fb:97:f7:01:02:
a4:d1:cf:fc:58:04:06:0a:3d:a8:33:a3:75:da:a9:
85:2d:b3:74:1e:41:a5:2f:52:46:0f:d6:23:55:1d:
e6:cd:f6:9c:b4:a4:7b:c0:ca:02:4d:20:78:f0:e4:
67:bf:80:ea:e6:11:37:0f:ad:8a:87:2b:a8:6a:f0:
87:86:93:87:6a:1a:5d:ad:49:fc:04:23:22:6a:c9:
33:71:e7:91:ed:7d:84:bc:d7:96:65:71:a8:99:fe:
8b:36:90:c2:f0:f6:6a:9b:9d:54:d0:6d:18:bf:25:
ad:ff:a1:85:90:9e:f0:ca:e0:a9:78:6e:99:9b:c5:
9f:9b:77:26:81:4f:e4:db:98:ba:69:6a:93:61:ac:
ee:8b:9c:e1:34:27:98:0b:01:50:3b:8f:63:32:2f:
d0:ba:00:ed:1b:20:22:96:8a:4d:71:10:79:11:39:
54:26:9e:4a:fe:b1:8c:32:22:b2:67:bc:27:03:30:
a5:8d:e0:37:e8:7e:63:af:62:1b:81:b5:50:fa:22:
30:99:80:51:c6:b9:ae:59:3a:67:63:86:40:a9:ee:
2f:21:57:5b:c6:82:5a:4f:45:11:a0:42:41:ad:ea:
1c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:5F:E2:3E:4B:42:79:DE:D1:4D:B0:6C:86:ED:ED:F2:2F:D7:D8:0C
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:f4:49:be:14:3a:99:12:68:62:7e:f9:e0:c5:b5:d7:8c:03:
18:21:50:d6:0f:7f:9d:e3:d7:64:b5:aa:85:e5:d1:a9:0c:31:
dc:87:17:e6:3a:0e:b0:70:1b:de:ab:13:6a:45:81:6f:d9:60:
70:e5:38:a4:76:e4:ee:f6:95:87:5e:26:cb:c2:54:f9:b0:94:
67:e7:90:f6:f3:8f:69:1f:95:b1:fb:c4:52:98:42:e8:6a:b9:
db:a9:8a:b1:70:82:44:b3:d7:a3:70:41:9a:32:49:c3:b8:70:
8c:21:c4:f1:de:e9:50:5e:db:33:93:de:a3:67:32:39:38:90:
9d:0e:a2:a4:fb:24:08:e0:c0:47:ec:37:6b:73:f3:dd:5b:18:
06:6c:75:e2:55:27:25:a9:e7:e8:28:65:2d:39:65:e3:e8:64:
94:1d:7e:ee:a3:87:65:5c:a0:50:3b:09:be:51:ea:47:42:a9:
d5:74:2c:89:9f:b2:81:82:8e:b6:b1:d7:12:ee:7d:f6:fa:62:
95:48:67:43:fb:af:ba:26:75:50:0b:ce:d6:9d:6c:7f:d0:60:
f2:21:e1:8c:83:7b:b3:e7:de:21:f4:7e:25:6a:fd:12:35:86:
88:ba:af:0a:64:e8:34:45:04:4c:e9:12:cb:f2:a8:5e:da:e8:
0d:e6:1b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 14:14:42 2025 by rpki-client