Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
File: 2YtaX7E4aD0ajMcBn3iXC65ngig.mft (raw, json)
Hash identifier: D/RXZPiFK8u6ym42/2kpelYP566wxm1zrAJLr/QUfPk=
Subject key identifier: 94:EC:A7:E0:9E:00:C5:78:06:DD:EC:E1:58:04:2E:2A:3A:FB:CA:FE
Authority key identifier: D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
Certificate issuer: /CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Certificate serial: 019922C3A8C217E1A3E843C32A050A40EA5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
Manifest number: 0F9B
Signing time: Sun 07 Sep 2025 06:01:12 +0000
Manifest this update: Sun 07 Sep 2025 06:01:12 +0000
Manifest next update: Mon 08 Sep 2025 06:01:12 +0000
Files and hashes: 1: 2YtaX7E4aD0ajMcBn3iXC65ngig.crl (hash: I3o5RxD7edrmE2/F55W/ya4I2VjVbdaJaKh95Or6SaE=)
2: pGBMbGUVmfmMQKR1-BVF--sKK7U.roa (hash: ayj/a/EtllFNMGD1HzcA6KglHzS5bxHd+NVb8RRWcAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:a8:c2:17:e1:a3:e8:43:c3:2a:05:0a:40:ea:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Validity
Not Before: Sep 7 06:01:12 2025 GMT
Not After : Sep 8 06:01:12 2025 GMT
Subject: CN=94eca7e09e00c57806ddece158042e2a3afbcafe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:01:f6:94:b1:de:12:f1:f9:a8:04:22:59:94:
28:99:71:23:77:0d:b0:2c:c6:bd:63:da:a4:10:18:
b5:34:1c:56:0c:34:14:19:3e:db:6a:2e:68:80:6e:
7c:8b:f0:a4:c6:91:15:86:e7:fe:0d:33:6b:09:e4:
1d:77:51:8c:73:47:c3:28:0e:d9:ee:e9:d2:59:02:
49:5d:83:1e:29:2b:e4:f2:af:b5:c3:68:c8:ca:65:
3c:e9:98:23:a5:94:77:e7:08:0a:36:da:38:4c:f4:
0d:c4:d7:1d:5c:2b:54:22:c6:65:46:40:99:af:d0:
fb:3b:12:31:61:d1:1d:ef:75:4f:cd:26:5b:d3:87:
a3:c7:21:56:90:4c:0a:1f:bd:5f:e7:e2:f7:5d:2a:
cd:17:79:c5:6e:b2:c4:6e:80:f8:6d:5c:4b:ae:4e:
65:c3:fe:10:05:36:ab:e5:f7:b3:66:ab:c4:95:00:
34:37:56:88:78:5d:cd:52:d6:ac:bb:35:71:5f:02:
40:a0:d4:7b:20:ec:5a:90:8c:54:04:24:a7:47:26:
17:fd:7e:bc:47:fc:8c:d8:32:f3:7f:45:b9:66:47:
63:5d:06:09:37:b8:98:f2:3d:95:97:ba:73:b5:f8:
af:77:d6:d5:3f:8f:05:13:7c:62:72:42:7f:a6:6d:
2e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:EC:A7:E0:9E:00:C5:78:06:DD:EC:E1:58:04:2E:2A:3A:FB:CA:FE
X509v3 Authority Key Identifier:
keyid:D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:96:db:37:1b:41:d9:b5:5b:5c:09:42:b1:c1:cf:bc:79:bd:
64:eb:f7:d4:14:52:a6:25:41:13:63:fe:78:44:83:c6:98:e1:
1b:fc:ce:77:bb:81:e2:cd:32:25:40:be:ab:04:e2:31:b0:83:
de:c3:b7:b6:ed:a6:54:71:c4:3a:78:57:74:48:da:ea:71:a5:
32:35:eb:de:62:4f:7a:a0:86:aa:7d:0b:05:4b:21:71:b1:ac:
c8:cd:ee:6b:5f:47:fd:02:36:a3:31:2b:6c:99:8d:63:a2:7a:
dc:d9:75:8c:cb:32:f5:ad:12:f8:bb:26:15:6d:61:01:a7:95:
bb:70:1f:9c:57:5e:f1:ba:a4:d7:cc:46:5f:d1:85:7d:77:3d:
43:4c:8d:c2:24:fc:48:4d:dc:44:d7:ce:bb:75:44:2b:91:89:
8c:ed:bd:7e:53:0b:3d:49:8f:b7:e6:4d:2f:a8:e3:73:85:a4:
62:fb:70:a1:fc:8b:3c:15:59:26:22:b8:b2:c0:cf:fc:1d:54:
19:0a:0f:92:cc:d9:0b:d9:0d:a9:e5:e5:cc:53:03:a6:b1:dc:
e0:3a:42:32:6d:8e:62:a6:92:a0:1c:78:cc:c1:b6:36:a4:b9:
e0:2e:a0:fd:ba:0a:e0:a3:2e:e6:61:a0:ab:ac:aa:d7:82:1a:
c9:40:14:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:36 2025 by rpki-client