Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
File: 2o2nRADHVVq6J8Eon7-5CzO3miI.mft (raw, json)
Hash identifier: 94RajyBKwMGtOrZVvZyrbQknW8S458bJg+e89hqilNA=
Subject key identifier: 23:D8:E3:17:19:CD:0B:78:D5:B8:3B:AD:BE:E0:94:15:0A:73:5E:00
Authority key identifier: DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
Certificate issuer: /CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Certificate serial: 0199240D1C36689F9F09110F4F3A11004FD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
Manifest number: 14FF
Signing time: Sun 07 Sep 2025 12:01:02 +0000
Manifest this update: Sun 07 Sep 2025 12:01:02 +0000
Manifest next update: Mon 08 Sep 2025 12:01:02 +0000
Files and hashes: 1: 2o2nRADHVVq6J8Eon7-5CzO3miI.crl (hash: d2ZYpHGXmqzGMrVe3lpUdPbzFzTt2ucxOE6q+h7t6yQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:0d:1c:36:68:9f:9f:09:11:0f:4f:3a:11:00:4f:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Validity
Not Before: Sep 7 12:01:02 2025 GMT
Not After : Sep 8 12:01:02 2025 GMT
Subject: CN=23d8e31719cd0b78d5b83badbee094150a735e00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:de:5c:42:eb:88:97:f7:11:e2:17:13:22:24:
19:29:ea:bd:1e:81:b6:b8:46:57:d5:45:84:01:8e:
74:c4:06:32:56:e3:62:97:be:79:f7:ed:23:3f:b0:
34:b6:8b:9b:03:93:39:ea:6f:f5:c4:68:18:d0:0e:
fa:d1:78:95:bb:ed:9f:ae:43:52:d2:5f:95:2d:02:
85:05:9e:df:21:4a:95:ca:3a:6c:e4:38:fb:8f:7a:
62:47:24:de:b5:2e:9e:dc:fc:46:3d:3c:d8:f5:6c:
4f:35:e5:d2:c6:03:67:16:e0:4c:d3:5f:84:f8:25:
b7:9d:bf:e6:df:bb:21:75:bd:7e:64:b4:c2:1c:91:
86:76:a0:9e:1f:a0:1b:6e:b4:0d:52:6c:aa:ac:02:
41:a7:4f:f1:fd:b6:e1:70:5e:a7:17:67:29:73:f3:
fc:3d:d7:cd:91:45:c4:34:c3:3d:7f:47:a9:95:8e:
64:f5:10:d8:2b:d4:6a:66:e8:f5:b0:e6:fa:0b:83:
83:b5:e6:7f:4a:de:d8:c7:30:a8:21:c2:aa:3a:9a:
df:d2:a6:50:5f:98:5b:42:69:12:e2:29:ae:c3:17:
a8:74:9f:91:f9:3f:8f:23:7a:41:37:2a:5c:9e:3b:
a5:99:19:71:6f:87:66:f3:5f:d0:a2:7a:ce:c5:32:
69:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D8:E3:17:19:CD:0B:78:D5:B8:3B:AD:BE:E0:94:15:0A:73:5E:00
X509v3 Authority Key Identifier:
keyid:DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:ce:2d:71:95:da:72:91:21:09:d0:15:e7:63:b9:15:c6:eb:
89:ab:fb:f8:1f:e1:aa:0e:89:8a:aa:97:48:a4:fd:1d:d4:5a:
c5:be:9e:89:35:0a:9e:55:2c:34:78:b1:82:29:75:fc:62:d5:
88:1a:38:a5:ef:d8:c4:e2:fa:4d:7f:d4:48:8f:62:2c:28:d7:
41:47:dc:7c:7e:98:29:ea:b9:a8:da:85:53:bc:b1:12:4c:0d:
8d:08:b2:a1:99:c4:b7:4e:b4:32:a9:fa:38:af:81:b0:17:31:
2d:af:05:1b:2d:70:ac:dc:32:84:58:12:d9:0e:d7:0d:d1:59:
67:7c:4c:df:db:dd:e8:b4:52:7c:2f:aa:23:74:27:0d:64:42:
c8:23:9a:10:59:d4:b8:ea:42:19:e7:a4:b2:17:8c:4f:24:74:
df:13:ce:75:fd:70:c4:08:7b:c5:d5:84:05:79:c4:61:8d:a8:
fe:9b:3f:a9:88:ca:1c:a7:b3:d0:a9:3a:3f:d5:49:a0:99:ed:
aa:03:9f:97:a8:d5:7d:c4:3b:c5:b1:f5:3b:4c:66:3d:3c:f9:
13:12:93:b7:81:a1:0e:a1:ef:44:3c:9f:bd:e7:48:0b:b0:45:
70:17:bb:96:cc:50:a2:c6:09:d0:58:11:09:a9:32:e8:89:c1:
88:bc:dc:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:56:57 2025 by rpki-client