Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
File: 2PcA7rBSdLMdwdrzDNfIExCrRS0.mft (raw, json)
Hash identifier: Fzl/2rzqlIs8jXMSe30eRCvIA9lgvpIoswEzYZgKAoI=
Subject key identifier: 89:60:40:B8:33:B2:DF:E1:F5:9B:32:E8:52:1A:D4:CB:72:A1:09:6D
Authority key identifier: D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D
Certificate issuer: /CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d
Certificate serial: 019921B0A8B7E70DCF66E345B6F01352A556
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
Manifest number: 08AD
Signing time: Sun 07 Sep 2025 01:00:49 +0000
Manifest this update: Sun 07 Sep 2025 01:00:49 +0000
Manifest next update: Mon 08 Sep 2025 01:00:49 +0000
Files and hashes: 1: 2PcA7rBSdLMdwdrzDNfIExCrRS0.crl (hash: nQDZhn1nVyyipGqomLob9ft0X7Mv4RPxlkIEp5JE21k=)
2: xZeFO5Zwl5xEF1LyaSp03R5_7jg.roa (hash: IWeEq50Ry3wHX8kf3jXxRipWlWHUzhkegAPH2nDXTxI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:a8:b7:e7:0d:cf:66:e3:45:b6:f0:13:52:a5:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d
Validity
Not Before: Sep 7 01:00:49 2025 GMT
Not After : Sep 8 01:00:49 2025 GMT
Subject: CN=896040b833b2dfe1f59b32e8521ad4cb72a1096d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ef:97:30:af:9c:55:95:6c:8e:a8:fa:eb:f7:
60:a1:96:ca:95:29:98:df:70:f1:10:98:ac:7c:ad:
a0:24:fa:9c:60:36:20:a2:c3:54:ec:c5:1c:a3:fc:
48:0a:0b:6d:ad:82:64:11:4f:36:6b:f5:37:c8:e7:
db:f8:c9:b8:51:aa:53:73:a3:14:d6:43:9d:c9:1f:
87:2e:d3:5e:79:1d:a8:42:4b:b8:79:72:63:8b:7b:
79:d4:cd:72:65:41:7f:29:c7:d1:1c:a2:62:88:5c:
ef:99:8e:01:31:98:1a:4a:48:9e:5e:d4:9f:64:21:
57:e6:97:61:6c:20:d7:df:23:e3:36:da:7e:bc:9f:
ad:b9:f9:09:d9:fb:c7:b5:a7:66:3b:9d:3d:4d:6d:
3c:70:e0:53:15:7f:f9:54:7f:17:3a:ac:69:63:70:
ce:6e:17:0c:91:ab:2a:33:2b:05:4f:7f:71:57:83:
34:81:2c:b2:5f:69:7a:23:a4:b5:96:35:ab:9d:a0:
52:bb:b0:88:12:38:4b:19:39:ad:3e:4e:6f:cf:11:
a9:68:09:c6:bf:fa:1a:33:6a:e6:46:9d:35:3f:6a:
3e:b7:4d:0a:6a:f1:bc:79:32:e5:3c:95:e1:16:d1:
ac:42:5f:22:f1:60:ec:0e:96:be:03:94:fe:08:55:
b5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:60:40:B8:33:B2:DF:E1:F5:9B:32:E8:52:1A:D4:CB:72:A1:09:6D
X509v3 Authority Key Identifier:
keyid:D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:36:ea:89:b6:ee:bf:d2:63:ab:37:21:21:a9:31:e4:36:c2:
35:b4:ad:f6:12:66:1c:c1:c6:cd:2f:d4:8f:4a:68:ce:32:0c:
08:0e:4f:90:25:2d:af:ad:8e:12:53:41:db:cf:3a:40:d2:d5:
fd:2f:8b:ff:3d:08:78:ae:6f:3b:2f:30:4b:50:7a:32:8d:3c:
8e:af:8a:4f:e9:17:15:89:eb:7a:86:7d:33:e3:86:a5:d8:be:
b8:e0:97:95:68:36:ec:62:c1:c5:27:ff:a9:d6:b0:2a:84:37:
53:39:36:20:1a:ce:f3:6e:d7:f8:5d:fb:01:85:0f:81:97:76:
4e:02:06:ac:c1:cf:d5:f9:53:4a:42:ba:60:d1:aa:3a:34:4d:
04:de:cf:34:6e:ed:31:8e:53:06:32:12:56:01:41:8e:f9:07:
a7:f5:7c:05:ec:37:14:76:77:ff:03:2b:55:0a:ba:31:a9:c4:
77:7b:7f:56:89:85:c1:14:02:ef:62:26:89:0a:74:8d:df:ae:
b4:e2:df:b6:75:9a:12:93:67:5b:6d:34:ea:09:85:35:13:5a:
2a:99:89:1c:02:1d:ca:f9:9b:d8:7c:c4:e2:77:cd:79:2e:b3:
9b:81:14:06:17:70:ca:6d:a9:83:ec:21:45:43:7b:7b:9c:e3:
b2:13:fe:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:15:11 2025 by rpki-client