Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: u7vSZJZyki1PHSB2DBehpW/CeGbQfvt5SUE7/uEDOf4=
Subject key identifier: C1:BB:C7:21:3A:9F:85:F9:0D:6A:2C:18:5A:FA:2D:BF:57:C8:2F:A8
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 019922FAC6EA4911628B93BD39BBE6FDB4B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 15A0
Signing time: Sun 07 Sep 2025 07:01:24 +0000
Manifest this update: Sun 07 Sep 2025 07:01:24 +0000
Manifest next update: Mon 08 Sep 2025 07:01:24 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: FQIx0PHSkuInxJOByblEY2em1TZc1uf1Xx8ogcQnXyY=)
2: 6R0wvkFPscZQ2uww-ZvwnaXh--0.roa (hash: wyiJ7rZP6x6kzeIfld1VjsLp4nIqzGhNhuxTGdTq1Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:c6:ea:49:11:62:8b:93:bd:39:bb:e6:fd:b4:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: Sep 7 07:01:24 2025 GMT
Not After : Sep 8 07:01:24 2025 GMT
Subject: CN=c1bbc7213a9f85f90d6a2c185afa2dbf57c82fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:79:96:bd:fd:e9:44:a3:e4:1c:29:ef:5a:f6:
65:e6:c3:00:17:51:a7:02:c0:b4:68:9c:78:c4:fb:
6c:17:7e:7a:73:02:f5:60:0b:c1:32:79:46:a1:55:
5c:20:a9:85:8b:d7:ce:21:ca:7a:54:e7:1f:5e:e5:
43:9e:ed:42:06:3a:f6:13:6f:24:9c:88:4a:da:85:
a9:62:9d:35:12:12:75:59:81:06:3c:48:f8:87:0f:
07:5b:86:26:c2:3b:88:b8:f9:c6:00:42:dc:58:c2:
4b:d3:2e:b8:6d:f9:58:e5:6b:d8:f1:29:99:50:4f:
59:c0:40:c4:fc:83:1f:f7:de:d8:db:c9:61:28:56:
97:f2:f2:ab:0b:b5:fe:06:4c:63:6a:57:06:0e:11:
0c:39:16:8b:a5:b9:05:be:28:99:89:7e:5d:27:a3:
10:d8:a5:65:e1:5a:e9:b2:f4:c6:eb:bd:00:66:dc:
cf:91:4d:9e:c9:e9:88:2d:29:0d:d5:fc:28:73:17:
cf:e7:c6:73:69:dd:ec:2e:79:07:c9:27:e0:41:61:
3e:7b:4b:ad:1d:44:16:e6:73:48:e4:77:bf:59:7c:
8d:63:0d:89:7c:86:4c:36:ab:07:a3:19:e5:52:a7:
c5:03:c4:ef:1f:f9:b6:32:e4:7e:3e:b8:61:76:ba:
98:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:BB:C7:21:3A:9F:85:F9:0D:6A:2C:18:5A:FA:2D:BF:57:C8:2F:A8
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:e5:fd:87:8c:e1:66:8c:47:5e:97:45:4e:94:dd:b4:1f:6a:
57:eb:1b:e4:b7:23:29:4e:7a:de:a4:2f:1c:ca:5c:2d:5c:4a:
ce:8d:43:55:83:02:fd:17:ea:03:bc:de:a6:4f:39:eb:0b:71:
28:d1:ce:bc:33:e5:98:3d:fd:f4:c0:00:ca:11:85:ca:5e:8b:
0b:25:2d:f4:67:59:75:86:f2:d2:68:38:a3:f6:1d:94:19:dc:
85:07:9e:a4:80:3b:73:58:5d:38:67:77:fb:66:69:ce:b0:2a:
09:a1:85:8d:4c:88:06:00:0c:bf:cf:7f:64:c5:25:3e:71:22:
d3:5a:78:b6:ff:c7:c5:a8:93:58:b3:2a:a3:10:a6:95:7a:b3:
be:57:88:69:21:c4:54:55:a9:26:e1:13:c4:a7:75:78:76:a1:
63:44:c3:4f:bc:a3:35:75:02:e7:6e:b1:2f:ec:eb:08:1e:ab:
94:ca:95:ad:78:aa:a5:74:36:94:00:08:24:11:a5:21:7f:97:
c4:e1:b4:3a:39:d5:96:11:0b:b5:a7:1d:fc:e3:73:5e:0b:5c:
9e:7d:26:b2:a2:c8:9d:00:ba:3b:99:46:6b:77:38:7f:ab:e0:
82:2c:f3:a3:bf:ed:5f:3c:17:7b:26:80:64:2b:f9:2e:83:fc:
c3:a8:66:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:05:47 2025 by rpki-client