Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
File: 2RTaVuGpNGSdoClkrBLro0xcuE8.mft (raw, json)
Hash identifier: ioOaxC5tk+rWX6J008KNH31wNiUyB+kuJ0/NGwYobKA=
Subject key identifier: 43:70:39:27:8A:BD:68:0C:FA:A7:BD:50:E0:B6:4F:22:9F:8C:0D:67
Authority key identifier: D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
Certificate issuer: /CN=d914da56e1a934649da02964ac12eba34c5cb84f
Certificate serial: 01991D9CA256BB4F0700E48F4A9256AC207B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
Manifest number: 03CB
Signing time: Sat 06 Sep 2025 06:00:28 +0000
Manifest this update: Sat 06 Sep 2025 06:00:28 +0000
Manifest next update: Sun 07 Sep 2025 06:00:28 +0000
Files and hashes: 1: 2RTaVuGpNGSdoClkrBLro0xcuE8.crl (hash: zzR7SIwQ6lR8g2JCYAle2bh03nNlcJVfEooCuG3aD0M=)
2: As7V6ZE1xBs1gl2SXAEbNIUHC00.roa (hash: kQVt6PxymkEnwafOS16jS1OEQiU/aYHOchiiJ14/rGk=)
3: PIhsP1al3YizxN861NowDoYoHI0.roa (hash: R9+qOpDwEb0Q5efJFh94SK/9P5J9FFbPDMd4Z1g9adY=)
4: RVfWb6AeQUrXaw0eh9r6r19sjZE.roa (hash: v4r/LVDf839QcMU4tAbsB+argaU/EH+WPkLUSna1SOM=)
5: h2By371OCvj77wNVdyQcqgznsSg.roa (hash: soUA/0DY5+xPnyfK/0AF2K5yBnM6iGB14VNuRKlaQjI=)
6: yP_dwUj9wkpGZraCJm3_QUlcxSc.roa (hash: PpcRyK/zlLSo8ZccoU5Ov6j3mDsKb8kB7dCU9P4KBZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 06:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1d:9c:a2:56:bb:4f:07:00:e4:8f:4a:92:56:ac:20:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d914da56e1a934649da02964ac12eba34c5cb84f
Validity
Not Before: Sep 6 06:00:28 2025 GMT
Not After : Sep 7 06:00:28 2025 GMT
Subject: CN=437039278abd680cfaa7bd50e0b64f229f8c0d67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d5:fa:e3:b4:7e:dd:33:fe:43:cb:aa:9e:66:
aa:0a:f5:f0:65:e7:4b:83:ba:83:51:0b:67:a9:c8:
60:43:7c:13:ad:bc:f6:f5:d9:9e:f9:95:2b:f3:55:
7c:77:7a:e5:af:0f:a2:b8:29:04:94:66:00:83:06:
aa:38:8a:f5:6c:28:72:24:e3:8d:19:bc:6e:9f:0d:
74:32:14:43:24:50:d2:5a:4a:92:ba:a3:ff:d3:df:
eb:75:00:79:e1:68:25:a2:47:79:90:0d:b8:e3:d3:
9f:de:c5:c8:2f:98:37:a5:9f:f9:2c:c5:4f:2a:d5:
c1:6f:2c:f9:37:8b:d4:15:ee:c2:52:bd:83:12:e6:
c0:af:5e:88:69:2e:fe:54:b5:30:61:ea:5e:a2:ba:
a5:9d:96:ba:88:43:b2:87:fb:7a:3a:8d:0c:d1:b5:
12:ee:a5:9a:1a:5d:96:a3:27:f4:1c:8d:36:33:79:
45:cc:19:1d:1a:95:d0:77:80:80:e8:53:43:7c:26:
39:f1:18:71:c6:89:97:06:ff:5e:d0:d2:13:80:35:
da:61:05:c7:f5:05:16:2b:68:00:3f:16:f0:19:88:
d2:cf:ac:c2:37:1e:ae:15:ca:82:b1:45:ef:63:74:
a5:98:b7:ac:45:f0:98:19:f2:68:70:e7:6e:69:60:
6f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:70:39:27:8A:BD:68:0C:FA:A7:BD:50:E0:B6:4F:22:9F:8C:0D:67
X509v3 Authority Key Identifier:
keyid:D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:04:54:a7:76:7d:45:06:0a:60:26:5c:78:ac:41:f5:ac:f6:
31:fe:ca:ce:5d:35:e2:3b:a2:c6:c1:8f:4e:7e:7d:75:3f:61:
2a:a1:88:64:d6:1c:04:95:10:81:ab:4a:7f:8b:b8:39:30:d9:
0a:42:6c:c3:0a:83:be:e0:b7:2b:38:f3:60:65:53:fb:e3:ca:
e0:9f:17:3f:d3:e8:57:e5:65:68:6e:a0:3c:32:d6:02:a4:64:
b7:ce:0d:cb:38:ca:df:c0:05:a2:1b:23:30:79:16:96:06:5b:
d7:16:58:8d:13:35:04:3a:e2:26:20:2f:c0:40:39:e8:83:8b:
0f:6d:68:57:d8:d0:36:a7:30:eb:fd:e6:2e:a7:cf:b1:8a:15:
c8:f9:04:80:fa:d8:e8:db:fb:52:ff:e5:da:4f:63:1b:7f:ca:
6a:8e:8c:17:0b:86:4c:d3:93:9a:80:0c:ab:c7:e9:76:49:49:
60:b3:90:97:3d:32:c8:6d:91:64:78:aa:e3:86:c8:2d:6e:7e:
34:c0:44:99:25:66:b3:24:c5:9a:38:c4:16:5f:92:58:90:e0:
82:dd:92:93:69:28:31:90:b7:8f:be:3e:c8:61:04:a9:70:0e:
d4:71:89:6c:d6:90:58:3c:29:35:81:de:01:d1:e0:cb:4f:ff:
ce:6f:7f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 14:33:34 2025 by rpki-client