Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
File: 2iHQJGSziv86MckIeNYnI7nHQqY.mft (raw, json)
Hash identifier: 9PD23pmRr6kFG7RDswAyNVEgA289wktkQN4jf0FaXGw=
Subject key identifier: 35:0A:C8:05:AA:EE:86:04:3B:1A:80:A2:2C:22:1F:1F:44:6A:EE:9B
Authority key identifier: DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6
Certificate issuer: /CN=da21d02464b38aff3a31c90878d62723b9c742a6
Certificate serial: 0199228CA33567FD82A54F580350A0CE0C86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
Manifest number: 6B
Signing time: Sun 07 Sep 2025 05:01:06 +0000
Manifest this update: Sun 07 Sep 2025 05:01:06 +0000
Manifest next update: Mon 08 Sep 2025 05:01:06 +0000
Files and hashes: 1: 2iHQJGSziv86MckIeNYnI7nHQqY.crl (hash: BziGPLhzp9L4hJ2ovCag4egrf0Z8+hL0FEhBnJVu8jg=)
2: wbgG1j9R-vhoPqvH0nUMQbXvrx8.roa (hash: xo2u/qdC49lIMc4JdjEDCUm3a6iK3K063v78xvOND8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:a3:35:67:fd:82:a5:4f:58:03:50:a0:ce:0c:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da21d02464b38aff3a31c90878d62723b9c742a6
Validity
Not Before: Sep 7 05:01:06 2025 GMT
Not After : Sep 8 05:01:06 2025 GMT
Subject: CN=350ac805aaee86043b1a80a22c221f1f446aee9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fc:e7:09:a8:3b:b2:f9:f6:98:25:c6:8d:c6:
98:a1:e0:0a:a9:44:d8:6f:b0:c5:8e:f6:b1:d8:45:
21:f4:a7:d4:cd:9e:94:a2:8c:1e:a9:d3:a0:31:9f:
51:c9:c8:6a:ab:2a:20:ca:aa:2b:d7:4d:41:c0:f4:
1f:2c:71:d5:dc:c6:66:d0:af:5b:43:95:1a:fd:37:
b8:64:2f:5a:2d:8e:d7:fe:b5:7d:4d:6c:3b:97:c6:
ff:87:a3:47:14:e3:06:81:ef:2d:23:77:ac:a5:94:
57:44:b8:97:45:8c:57:14:0c:ed:13:9e:55:b1:be:
cb:52:97:25:f3:42:ad:42:44:f9:ab:88:52:07:17:
03:de:e5:b0:6b:eb:e7:f3:e7:fd:d7:27:9f:c6:de:
84:5e:47:0b:9f:e5:80:20:bd:6a:75:8b:37:38:21:
c6:6b:08:a9:d5:7d:d5:4b:e2:af:38:2b:f8:11:e5:
35:f8:54:77:ad:44:e8:98:b4:28:8a:38:03:87:b9:
06:97:1b:bd:9c:74:64:36:36:f7:96:56:37:46:d5:
62:1d:0d:c9:fa:1d:6a:ef:dc:ce:60:cf:5b:1a:df:
0f:e0:43:63:86:7b:1f:d3:58:32:92:d2:75:99:16:
e1:10:e1:e4:fa:0a:ec:dc:c6:ef:6b:f2:cf:74:88:
59:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:0A:C8:05:AA:EE:86:04:3B:1A:80:A2:2C:22:1F:1F:44:6A:EE:9B
X509v3 Authority Key Identifier:
keyid:DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:1d:cc:19:eb:09:86:79:b6:6a:91:6a:57:88:0d:22:af:b1:
7b:33:b9:ff:c7:38:9e:03:20:f6:b3:18:31:13:73:78:10:60:
ec:fa:29:6a:2e:f4:c0:d1:8e:57:61:78:fa:3a:00:05:e6:72:
5e:cb:2d:e8:9d:9c:14:71:9f:09:aa:1f:04:f9:5c:e2:90:58:
f9:fd:ee:e6:e9:28:0a:4d:33:7b:80:cd:00:83:9f:75:ab:e9:
1a:e1:8d:db:b7:b8:4d:db:7a:76:b6:d0:e1:a6:63:42:51:97:
7e:81:18:fd:4a:cc:18:2c:5a:e3:de:3a:0d:1c:b8:68:df:ff:
fe:d2:d1:a8:a0:fd:7a:d7:08:ce:48:96:50:93:fa:48:e6:a1:
90:da:b0:d1:0b:b3:bf:a5:0e:a7:76:ae:13:08:dc:ef:81:ce:
c1:63:35:79:90:31:4b:dd:77:8a:60:1e:fe:9e:ae:7f:3b:1a:
26:99:1d:41:c0:08:7f:b7:a7:3a:d8:8c:29:ad:70:d0:a8:1e:
25:76:6e:68:9e:32:b5:8f:d8:93:21:ba:7e:17:0b:92:d0:58:
89:91:3a:ad:52:0d:81:51:8f:9f:82:82:47:00:ea:a6:d3:0d:
00:37:64:2e:87:f6:2b:ba:2d:59:f0:57:70:2d:08:6b:3c:30:
32:43:25:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:45:00 2025 by rpki-client