Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
File: 2Znl1k5EsXM8YXNzN86CtKaUOkY.mft (raw, json)
Hash identifier: /F4hv8u7KveF+M3G8BWpWv82LZAoS7TJJ+TQ5+PFXxU=
Subject key identifier: 28:66:31:84:0B:7F:72:22:1C:7E:3C:D5:CF:E2:DC:DA:BC:81:E3:84
Authority key identifier: D9:99:E5:D6:4E:44:B1:73:3C:61:73:73:37:CE:82:B4:A6:94:3A:46
Certificate issuer: /CN=d999e5d64e44b1733c61737337ce82b4a6943a46
Certificate serial: 019922FA739DF95F26D6C2E2339DFF5D5E4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
Manifest number: 04B0
Signing time: Sun 07 Sep 2025 07:01:02 +0000
Manifest this update: Sun 07 Sep 2025 07:01:02 +0000
Manifest next update: Mon 08 Sep 2025 07:01:02 +0000
Files and hashes: 1: 2Znl1k5EsXM8YXNzN86CtKaUOkY.crl (hash: ubFrl17BaBKxKgnbWwGv4d1v9e2IOce5vv1o7OrtGcw=)
2: xandp5YxydZR7wlTUWsPRookRQc.roa (hash: TvsdUKw2eDJNV/EQUTSOnGCjImCSLoPXA7kEvQkSjo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:73:9d:f9:5f:26:d6:c2:e2:33:9d:ff:5d:5e:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d999e5d64e44b1733c61737337ce82b4a6943a46
Validity
Not Before: Sep 7 07:01:02 2025 GMT
Not After : Sep 8 07:01:02 2025 GMT
Subject: CN=286631840b7f72221c7e3cd5cfe2dcdabc81e384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7a:68:4b:d2:cd:55:25:77:47:68:67:0f:5c:
16:2e:da:43:ad:24:8b:ed:a6:43:6b:63:6f:4a:0c:
9f:89:5b:96:15:9b:23:3c:52:17:44:27:16:af:82:
d4:c9:a5:61:47:41:d6:87:5f:05:82:be:7b:d3:a7:
00:c3:9c:e7:64:0b:71:97:26:4f:31:a1:af:2e:b6:
99:f4:09:0d:bc:d7:c5:5f:4d:f1:bd:f3:09:50:f2:
5f:14:24:0a:ef:bc:bf:63:f4:40:c3:4f:e8:1c:03:
c7:5a:4c:67:e3:73:64:17:ef:da:67:fa:b5:38:f0:
21:91:e1:09:a0:4f:f6:c3:75:20:f8:f3:88:9c:4d:
56:78:c4:58:f8:01:f6:d6:3a:12:79:98:b2:93:45:
c2:3b:7d:12:60:7f:88:a3:7c:d1:16:10:82:6a:4d:
e6:4d:4d:4d:df:d3:a2:2a:f2:29:63:7e:1d:77:43:
e4:98:bf:65:ed:7d:8f:bb:8e:1e:43:13:51:83:19:
88:41:09:3e:cf:4e:ff:60:9e:ab:bb:1c:19:29:87:
ad:5d:79:90:08:10:0a:d8:71:f5:ba:44:6a:1c:54:
65:aa:01:d6:40:7c:af:5e:33:96:9d:87:74:b4:a1:
2d:18:d4:00:ff:91:da:6f:ea:af:ab:25:c2:56:ac:
4f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:66:31:84:0B:7F:72:22:1C:7E:3C:D5:CF:E2:DC:DA:BC:81:E3:84
X509v3 Authority Key Identifier:
keyid:D9:99:E5:D6:4E:44:B1:73:3C:61:73:73:37:CE:82:B4:A6:94:3A:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:65:8d:93:95:af:95:cb:65:cf:41:74:9d:b1:e4:d7:82:56:
26:a9:41:26:ce:1b:4f:fb:4c:ea:d8:45:b0:9d:f7:3f:86:ef:
8e:49:eb:50:6e:99:68:89:a4:21:7f:5e:66:d1:36:f3:38:8a:
b9:b1:7d:37:42:72:5e:f2:e5:8d:95:0c:d4:3b:03:ec:67:86:
c7:55:51:f7:c3:0f:a4:79:8b:ad:cb:76:5b:94:27:48:1b:8c:
61:ea:47:a8:50:47:5e:9c:38:f1:db:9a:3e:b8:72:9f:40:31:
b9:64:2c:64:5d:25:8d:0a:0e:1a:fd:a9:b8:cf:69:e1:16:9e:
47:12:78:60:59:82:16:33:03:ee:74:37:7d:37:63:33:fe:bf:
e0:2a:2d:77:93:e8:7e:73:de:7c:70:bb:20:51:97:df:af:4a:
7f:5d:0c:81:fe:4d:dc:07:07:de:f9:5c:ad:e2:f1:20:f9:86:
de:39:28:26:df:82:40:74:ee:b5:e8:76:d2:02:79:19:5a:e2:
d2:04:a7:ad:44:b8:bf:46:75:c2:46:4f:33:a2:e2:19:36:a4:
c8:fc:17:4f:20:18:02:a1:ee:8f:c6:4c:de:75:7d:fb:3d:7b:
4a:28:3b:8c:18:a7:2c:0d:c9:b5:31:0e:ac:fc:79:40:c6:04:
4c:9b:58:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:46:39 2025 by rpki-client