Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
File: 2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft (raw, json)
Hash identifier: kMh4T///4wrZpnjXumwwIDkkSVxgPAuCmQTb35artOQ=
Subject key identifier: 0D:06:58:C0:29:6B:2D:32:28:11:4A:E9:1E:A6:AE:C0:F8:EE:82:3E
Authority key identifier: DA:F0:A3:9C:FA:DF:91:0F:6B:13:2A:D2:28:E6:06:56:18:87:A0:6C
Certificate issuer: /CN=daf0a39cfadf910f6b132ad228e606561887a06c
Certificate serial: 019922554FB5EAC09A7D6DCA60AF66A83700
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
Manifest number: 1678
Signing time: Sun 07 Sep 2025 04:00:40 +0000
Manifest this update: Sun 07 Sep 2025 04:00:40 +0000
Manifest next update: Mon 08 Sep 2025 04:00:40 +0000
Files and hashes: 1: 2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl (hash: Srxpy0O9EJyCv7/38+Wi0zN40VcJnoWGoY9LeEspgPU=)
2: bdqrLURz5G694Fm80xmKAo0IogU.roa (hash: hG0r7jG1QmA/uFg4gCQdR2alotLJA0SQybpT8Ey91vY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:4f:b5:ea:c0:9a:7d:6d:ca:60:af:66:a8:37:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daf0a39cfadf910f6b132ad228e606561887a06c
Validity
Not Before: Sep 7 04:00:40 2025 GMT
Not After : Sep 8 04:00:40 2025 GMT
Subject: CN=0d0658c0296b2d3228114ae91ea6aec0f8ee823e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e6:6c:42:f2:0a:1b:b0:06:82:5b:9b:c6:f3:
51:b9:b5:49:32:1f:25:07:53:24:6f:17:cc:c1:f6:
5d:59:ff:40:dd:9e:40:6f:e9:61:45:b9:6e:8b:d1:
85:43:e4:c6:8d:b4:ea:fd:8c:a0:00:5b:89:23:5f:
9a:2f:96:74:56:5f:3e:7b:ed:ad:52:cb:7d:cd:dc:
8b:db:6a:96:0d:fe:e1:28:3a:e6:f5:77:9a:da:e3:
02:b7:93:82:56:0c:c8:23:3e:98:e5:90:8a:59:08:
a3:00:bc:4d:a3:d7:ed:d8:6f:83:57:bb:cd:05:78:
b5:86:2d:a8:91:a0:b5:5c:ed:d5:52:b1:f5:b3:75:
87:be:6d:a2:36:53:64:f9:72:14:03:9a:9c:bc:2f:
0f:82:ed:d0:a1:89:ac:ae:a7:5e:d9:8a:34:a6:e1:
94:97:0d:4c:ec:c7:a1:7a:7a:a0:83:17:00:6e:d3:
cb:9b:45:e8:17:35:38:f5:b9:1b:dd:8e:43:d3:16:
96:3d:73:dc:8b:be:ba:f6:00:85:1b:4b:8d:5a:9a:
6b:b6:7f:ba:fe:ad:58:e0:0e:3d:cb:e9:2b:5e:38:
2d:8f:36:00:0a:18:a3:ef:10:eb:2c:b9:4e:16:3c:
0f:79:5a:49:11:e1:0f:93:2d:f1:b9:4b:28:a2:0c:
db:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:06:58:C0:29:6B:2D:32:28:11:4A:E9:1E:A6:AE:C0:F8:EE:82:3E
X509v3 Authority Key Identifier:
keyid:DA:F0:A3:9C:FA:DF:91:0F:6B:13:2A:D2:28:E6:06:56:18:87:A0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:b4:b4:29:72:5f:a3:41:24:65:a5:00:16:5f:9e:d6:7d:28:
18:3f:57:ae:f0:8d:70:ae:f4:53:14:2d:50:07:55:2f:97:f4:
12:7d:ed:f0:9f:43:1d:b9:45:e4:d0:8a:e5:d4:c9:fe:ca:4c:
d3:e2:99:b2:14:37:dd:06:fd:11:6d:f1:9c:7c:eb:70:9a:ef:
cb:e8:86:a2:52:a0:62:69:b0:d7:f2:ff:92:f6:83:09:7d:19:
56:e0:26:e3:42:09:37:90:70:10:d5:88:a1:65:c7:1d:51:14:
1e:5b:f4:90:02:71:8a:80:e9:39:94:ec:37:fc:2b:2c:04:15:
65:ef:39:bc:58:cd:43:a7:a4:d9:f5:78:0f:8d:81:e8:af:0d:
d2:1b:96:38:dd:76:0b:d3:b2:bb:07:45:07:2c:10:d3:0f:6f:
03:31:cd:01:a3:8d:7b:54:31:38:5c:c3:1a:bf:93:a5:bd:db:
73:19:1f:e3:ca:19:9c:92:52:d4:52:03:b1:c2:82:05:87:94:
38:79:2a:6d:09:9d:6d:91:3d:d5:37:98:cc:a0:d1:25:28:5c:
ce:ea:0f:42:16:ac:fb:4a:77:c6:c2:b4:21:3f:9f:13:4b:52:
e6:7b:e8:04:78:b4:8c:04:76:ef:a3:1c:a8:55:bf:2f:c2:fb:
1b:db:ad:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:07:43 2025 by rpki-client