Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.mft
File: 2rsdAWAvFSERMu1IGFqZs2IlEX8.mft (raw, json)
Hash identifier: 2Cid7QV4maEBDSm9SjGm3IjAWOMrcTygoM9DJMYHEhg=
Subject key identifier: 4F:91:C4:19:D0:9C:99:30:13:DC:A1:C9:DA:88:8A:5B:04:E9:B1:5D
Authority key identifier: DA:BB:1D:01:60:2F:15:21:11:32:ED:48:18:5A:99:B3:62:25:11:7F
Certificate issuer: /CN=dabb1d01602f15211132ed48185a99b36225117f
Certificate serial: 019931C83AA0012E50C16F5B1C0CA1B34BD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2rsdAWAvFSERMu1IGFqZs2IlEX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.mft
Manifest number: 0EE4
Signing time: Wed 10 Sep 2025 04:00:29 +0000
Manifest this update: Wed 10 Sep 2025 04:00:29 +0000
Manifest next update: Thu 11 Sep 2025 04:00:29 +0000
Files and hashes: 1: 2rsdAWAvFSERMu1IGFqZs2IlEX8.crl (hash: Am4FvfEciUU2+0Ppfbtu+wbQvduJQBB1cxC9+EhFECQ=)
2: 787WsGeG_PtOH4NifJLvSRcdjKE.roa (hash: LXK7T54I67xPwZvLYoiPIC1z9h7T9ebkz0cAqwvP0HU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2rsdAWAvFSERMu1IGFqZs2IlEX8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:31:c8:3a:a0:01:2e:50:c1:6f:5b:1c:0c:a1:b3:4b:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dabb1d01602f15211132ed48185a99b36225117f
Validity
Not Before: Sep 10 04:00:29 2025 GMT
Not After : Sep 11 04:00:29 2025 GMT
Subject: CN=4f91c419d09c993013dca1c9da888a5b04e9b15d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:02:e8:f0:fe:51:b7:62:ce:64:2f:b6:58:25:
58:47:f3:c6:03:fa:80:89:54:e1:c6:57:c3:83:91:
f4:f0:2d:b0:d4:5e:55:d2:6a:34:26:52:76:ed:1b:
16:96:f8:b8:68:1a:32:df:e6:c3:c5:d6:67:7a:e2:
89:b7:1d:a4:33:c9:c2:41:25:bb:9f:2d:5a:bc:6c:
dd:1e:04:aa:4e:0d:c6:fe:11:7b:36:1e:63:88:18:
d8:c9:92:d4:08:a2:37:5c:02:9f:07:c0:3f:90:b6:
a7:9c:c2:49:97:3d:62:a3:7a:ce:43:8d:e3:be:df:
ab:52:47:91:79:df:46:48:35:9f:cd:1f:90:56:12:
6b:cf:57:d5:b8:ba:d3:83:01:93:17:35:40:b8:7d:
6a:3c:bd:8c:e3:b6:55:83:3d:a0:d1:01:df:3f:67:
73:4d:c6:bf:fc:45:06:b1:87:03:b2:f1:2b:73:c5:
dd:6a:61:e9:cb:01:01:35:52:1c:39:43:05:4c:9c:
69:fe:35:e4:12:50:1b:46:67:ea:7a:aa:2c:5e:c5:
f2:b5:00:ef:25:a3:16:14:3a:f9:3a:1d:ed:e1:b1:
27:57:bb:d4:39:ae:46:0e:79:62:ab:0b:e2:02:42:
cb:7e:1f:80:68:fb:2f:a8:2a:ab:bc:8c:23:a5:7d:
67:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:91:C4:19:D0:9C:99:30:13:DC:A1:C9:DA:88:8A:5B:04:E9:B1:5D
X509v3 Authority Key Identifier:
keyid:DA:BB:1D:01:60:2F:15:21:11:32:ED:48:18:5A:99:B3:62:25:11:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2rsdAWAvFSERMu1IGFqZs2IlEX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/9330bf-ab6c-442c-b3b5-6a39d0ef72c0/1/2rsdAWAvFSERMu1IGFqZs2IlEX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:4a:a4:53:97:08:79:b6:d6:8b:69:5c:f9:c2:38:b1:33:fe:
18:c3:0c:d9:08:0f:c5:6d:a0:b2:25:cc:b5:20:93:94:9d:c4:
3a:2a:17:c3:a7:98:a9:df:a5:ea:f2:05:39:28:1b:53:c6:14:
e6:ea:12:14:ca:e4:43:3e:1e:80:8a:89:56:d0:f8:b0:7e:1e:
0b:95:03:d5:0d:f0:fa:52:a8:d6:29:fa:d3:70:85:65:f9:61:
e8:0d:60:4f:c2:24:72:28:a8:b4:c3:77:8f:fc:4e:6a:3a:b2:
e1:58:d8:a5:3c:ef:b4:9c:01:f7:01:ef:28:0c:36:3e:52:58:
fc:97:d7:3d:7a:b2:a6:6b:e7:75:cf:cf:5c:73:18:42:e0:b2:
68:5f:0b:1f:a7:ce:6d:2c:34:d0:b7:56:fa:17:16:d2:d2:3d:
ad:e4:c0:8e:60:a7:21:e6:6c:c8:f8:0f:26:ef:73:b1:3b:e9:
fe:86:67:4d:6a:14:8e:c1:cf:1c:77:02:27:5b:b2:7b:4d:e4:
12:96:fa:ed:ae:6d:ed:0a:ca:1a:77:f9:0d:c8:cb:ce:2f:79:
c0:11:45:b3:e8:b7:f2:33:82:78:e0:ee:01:67:7d:3d:fd:c9:
e2:54:0d:d6:2f:1f:68:da:a1:6a:85:70:7a:5b:eb:47:fb:43:
1e:74:79:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkxyDqgAS5QwW9bHAyhs0vWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYmIxZDAxNjAyZjE1MjExMTMyZWQ0ODE4NWE5OWIzNjIy
NTExN2YwHhcNMjUwOTEwMDQwMDI5WhcNMjUwOTExMDQwMDI5WjAzMTEwLwYDVQQD
Eyg0ZjkxYzQxOWQwOWM5OTMwMTNkY2ExYzlkYTg4OGE1YjA0ZTliMTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQLo8P5Rt2LOZC+2WCVYR/PGA/qA
iVThxlfDg5H08C2w1F5V0mo0JlJ27RsWlvi4aBoy3+bDxdZneuKJtx2kM8nCQSW7
ny1avGzdHgSqTg3G/hF7Nh5jiBjYyZLUCKI3XAKfB8A/kLannMJJlz1io3rOQ43j
vt+rUkeRed9GSDWfzR+QVhJrz1fVuLrTgwGTFzVAuH1qPL2M47ZVgz2g0QHfP2dz
Tca//EUGsYcDsvErc8XdamHpywEBNVIcOUMFTJxp/jXkElAbRmfqeqosXsXytQDv
JaMWFDr5Oh3t4bEnV7vUOa5GDnliqwviAkLLfh+AaPsvqCqrvIwjpX1nSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE+RxBnQnJkwE9yhydqIilsE6bFdMB8GA1UdIwQY
MBaAFNq7HQFgLxUhETLtSBhambNiJRF/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnJzZEFXQXZGU0VSTXUxSUdGcVpzMklsRVg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS85MzMwYmYtYWI2Yy00NDJjLWIzYjUt
NmEzOWQwZWY3MmMwLzEvMnJzZEFXQXZGU0VSTXUxSUdGcVpzMklsRVg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS85MzMwYmYtYWI2Yy00NDJjLWIzYjUtNmEzOWQwZWY3MmMw
LzEvMnJzZEFXQXZGU0VSTXUxSUdGcVpzMklsRVg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD0qkU5cI
ebbWi2lc+cI4sTP+GMMM2QgPxW2gsiXMtSCTlJ3EOioXw6eYqd+l6vIFOSgbU8YU
5uoSFMrkQz4egIqJVtD4sH4eC5UD1Q3w+lKo1in603CFZflh6A1gT8IkciiotMN3
j/xOajqy4VjYpTzvtJwB9wHvKAw2PlJY/JfXPXqypmvndc/PXHMYQuCyaF8LH6fO
bSw00LdW+hcW0tI9reTAjmCnIeZsyPgPJu9zsTvp/oZnTWoUjsHPHHcCJ1uye03k
Epb67a5t7QrKGnf5DcjLzi95wBFFs+i38jOCeODuAWd9Pf3J4lQN1i8faNqhaoVw
elvrR/tDHnR56Q==
-----END CERTIFICATE-----
Generated at Wed Sep 10 12:28:51 2025 by rpki-client