Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: t2KdfDCEqN1BKL1rqU6xWE9gShqrC+hHXNViryDFCdQ=
Subject key identifier: 74:B3:39:33:39:62:2E:1C:48:59:DD:7F:FA:42:65:D9:F0:69:14:AA
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 019922557BEC75F85684B101A632C78E7A9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 04:00:51 +0000
Manifest this update: Sun 07 Sep 2025 04:00:51 +0000
Manifest next update: Mon 08 Sep 2025 04:00:51 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: 3UZncxac/+uOapoYjrz+eNXBhhnv3AxGG3bQmHCHXao=)
2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=)
3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:7b:ec:75:f8:56:84:b1:01:a6:32:c7:8e:7a:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Sep 7 04:00:51 2025 GMT
Not After : Sep 8 04:00:51 2025 GMT
Subject: CN=74b3393339622e1c4859dd7ffa4265d9f06914aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:13:46:37:5d:6b:92:69:58:2a:ed:26:76:53:
48:cb:39:9f:2d:24:41:c8:04:1c:a8:01:19:5a:ff:
cf:31:c2:74:d1:ee:2d:91:1c:32:e7:68:13:1c:49:
be:3e:19:5d:5a:02:34:08:80:91:f7:e9:0c:0a:83:
a4:2a:a2:2a:a6:ec:42:c3:47:53:de:ba:ac:6e:26:
ae:45:f2:98:0f:73:65:92:88:2e:19:18:58:95:ff:
12:b1:e7:2b:9a:35:65:b8:b5:b4:6c:90:a4:8a:66:
fa:ce:9d:56:94:a9:7c:92:c9:53:56:97:61:7b:60:
3b:3b:4d:98:2f:4e:29:71:d2:34:77:2d:d8:c3:33:
3a:58:08:98:09:df:d2:b9:cf:52:a2:0d:a2:29:a9:
9a:31:e2:5b:fa:6a:19:62:19:1c:29:af:37:dd:c4:
ec:8e:96:f3:f2:fa:8e:2e:05:0e:19:4d:95:cd:4c:
32:dd:12:c1:6d:94:30:66:da:ba:57:79:94:fb:13:
92:2e:31:3a:bf:fd:96:3b:d9:b0:27:d8:89:9e:b6:
f5:ae:a4:b5:d4:7f:7a:33:70:76:e5:29:a7:60:43:
5e:6d:26:c5:46:68:66:84:ec:2a:7e:0e:d3:68:c9:
59:b5:4c:06:de:75:dd:8c:ee:3e:88:4b:8c:99:c4:
f1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B3:39:33:39:62:2E:1C:48:59:DD:7F:FA:42:65:D9:F0:69:14:AA
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:28:50:7d:94:a5:a4:dc:3e:9b:2d:1d:59:e9:ce:a9:eb:68:
b9:7a:9e:15:02:16:c7:51:b0:bf:8b:d2:9e:77:c7:08:0a:3f:
37:37:cb:93:59:05:ca:bb:87:75:d7:64:96:e4:2e:b7:d8:c5:
80:0c:b9:e4:84:72:c3:36:34:dc:da:c3:1e:52:a5:55:bb:d6:
8c:15:81:ff:03:fb:ad:e5:c7:7c:3d:af:05:09:33:7d:73:b9:
6d:59:af:19:32:a8:ee:3e:29:0a:11:91:6f:8c:66:bc:19:8b:
c3:2d:09:9b:a1:ba:ea:0e:23:82:b1:ca:50:aa:43:04:01:40:
ca:b5:e8:fd:36:8d:4f:66:81:a5:b1:4d:55:19:21:11:cd:d7:
1d:31:28:8b:53:ba:1b:b1:75:8c:af:68:13:4e:fd:49:b8:4c:
75:64:75:5e:18:e1:da:92:ab:b8:67:82:16:e2:8f:74:5a:a9:
4b:cf:39:e1:85:7a:05:d4:3c:16:87:e1:d7:2c:4d:81:93:7c:
96:dc:44:b3:b4:0d:97:3c:30:ab:49:b5:5c:0d:57:f3:c0:9d:
2d:be:c5:00:5f:53:af:4d:d5:b6:b6:7c:a7:9d:25:58:76:d3:
eb:d2:d4:1b:ab:1c:29:86:e2:b3:be:66:f2:98:0f:84:41:80:
54:9b:ee:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:48:38 2025 by rpki-client