Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
File: 2wy7NfYw1Aytd1B_2r03_e3BIQM.mft (raw, json)
Hash identifier: mndjoYHVAS1q6Njms8h/8I4s7Ry087KYobgz/vQA3mU=
Subject key identifier: B8:8F:CD:7D:11:1A:5D:D6:A2:E0:A5:CC:FA:A2:7F:90:FF:DC:F0:39
Authority key identifier: DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
Certificate issuer: /CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Certificate serial: 019921B24597C062B528A6D65F43D67449E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
Manifest number: 0125
Signing time: Sun 07 Sep 2025 01:02:35 +0000
Manifest this update: Sun 07 Sep 2025 01:02:35 +0000
Manifest next update: Mon 08 Sep 2025 01:02:35 +0000
Files and hashes: 1: 2wy7NfYw1Aytd1B_2r03_e3BIQM.crl (hash: r68Slrq9UFLjgcX+hJriNlFLvzq5fZi/VS4d2QZVcfA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:45:97:c0:62:b5:28:a6:d6:5f:43:d6:74:49:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Validity
Not Before: Sep 7 01:02:35 2025 GMT
Not After : Sep 8 01:02:35 2025 GMT
Subject: CN=b88fcd7d111a5dd6a2e0a5ccfaa27f90ffdcf039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:91:b6:65:03:11:93:7e:9f:b3:4a:4f:4d:f8:
85:7a:50:16:ee:7a:c7:ae:eb:bb:d1:70:f6:ad:30:
05:b1:97:63:03:5d:c4:02:e4:57:93:b0:d0:40:d6:
1b:c3:a3:08:03:24:bf:e5:73:27:2a:45:a0:21:d8:
f9:d1:b5:50:79:e7:10:2c:e6:1d:b9:47:c3:96:5f:
0b:34:24:ed:c6:69:ee:a8:05:cc:45:f6:bc:68:c9:
35:38:59:c4:cf:43:65:6f:98:fe:ad:a3:66:ac:89:
63:91:1c:93:d8:67:6b:f9:d7:bd:14:7e:1f:19:55:
63:31:2a:37:9d:e5:cc:b9:2a:01:82:86:ee:42:42:
7c:15:56:67:a9:fb:0b:16:b7:2a:63:b2:07:22:64:
c5:fb:ff:b3:ca:80:21:93:48:61:a1:01:44:8b:26:
45:ee:41:01:dc:73:54:9e:9e:5a:0a:a1:74:66:fa:
9a:8b:54:22:d6:0d:d8:8d:81:70:50:38:77:76:2b:
f2:2c:a2:71:b3:04:dc:86:a3:70:ce:19:89:86:29:
3d:d1:94:6f:98:67:20:35:86:b7:e7:1d:54:a5:5e:
64:4c:07:fe:9d:a4:cb:0f:c4:dc:5e:b8:67:59:ed:
d8:b0:f7:9e:c5:a3:de:fc:74:4a:cc:c0:50:7e:73:
3c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:8F:CD:7D:11:1A:5D:D6:A2:E0:A5:CC:FA:A2:7F:90:FF:DC:F0:39
X509v3 Authority Key Identifier:
keyid:DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:2c:30:ec:df:32:c0:dd:1c:b9:d2:79:b1:c0:b1:5e:0c:5c:
d3:a7:e6:e9:54:48:75:d4:93:ae:c1:fe:8d:b2:6c:82:d7:2f:
b6:b1:ff:98:58:da:3b:c7:b0:b0:ec:d9:00:5e:09:75:53:f3:
6b:72:d1:13:f9:77:4a:0f:1f:66:72:14:48:d1:98:0d:3e:20:
ce:aa:6a:bf:0e:e5:d1:2e:39:c1:87:83:3a:60:78:6d:4d:69:
12:30:bf:40:19:3a:0a:92:b8:28:ae:3d:d4:78:fc:22:db:4e:
0e:0a:b9:b2:1f:37:c7:b3:c5:45:8c:77:86:47:ae:fc:82:16:
61:b4:b5:e9:4f:e3:06:6f:7d:7c:a1:be:84:34:d2:70:67:64:
ac:c5:eb:12:ff:0b:ab:41:0a:ac:cc:77:70:d2:d8:3f:e3:f1:
6c:9c:38:9e:f7:60:c6:a2:85:a4:7d:e2:2e:fe:9a:b6:08:eb:
cb:93:eb:e0:f9:01:85:32:6e:02:c1:27:b3:db:f5:c8:fc:c5:
22:09:fd:8e:01:67:0b:8a:5a:62:de:e1:a9:27:2d:75:21:2c:
88:f7:00:5a:95:2f:bb:f8:7b:e3:7c:db:fe:53:f1:40:fd:38:
f9:bc:78:ea:49:9f:73:82:1c:72:56:64:aa:3f:5f:4b:b0:2e:
7f:af:6d:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:33:00 2025 by rpki-client