Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
File: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft (raw, json)
Hash identifier: 2GrXgXsAlQH4Z0efhMljy7aBWNpnTo07sBxxDIqoxcc=
Subject key identifier: 03:AE:87:EF:4E:1C:D9:78:8D:7E:69:C7:81:60:CF:F3:6F:DB:72:70
Authority key identifier: D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
Certificate issuer: /CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Certificate serial: 0199646C2B570A65C04C227FE308E23B58CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
Manifest number: 0D86
Signing time: Sat 20 Sep 2025 00:00:34 +0000
Manifest this update: Sat 20 Sep 2025 00:00:34 +0000
Manifest next update: Sun 21 Sep 2025 00:00:34 +0000
Files and hashes: 1: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl (hash: AcQdSlQLOTkdOuaheZcZyZMYFRT76LjlHCGLFFnhK30=)
2: wUSVu8lDNfoUWdaRO2jsDgRSmsg.roa (hash: A2CVwSparFGjp8/uMP7BcSnzpGUx0FpocYCZqqW30C8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Sep 2025 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:64:6c:2b:57:0a:65:c0:4c:22:7f:e3:08:e2:3b:58:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Validity
Not Before: Sep 20 00:00:34 2025 GMT
Not After : Sep 21 00:00:34 2025 GMT
Subject: CN=03ae87ef4e1cd9788d7e69c78160cff36fdb7270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:55:ba:08:4c:de:6d:72:fa:6b:0a:33:9f:67:
70:33:0d:30:2b:ce:09:08:41:e5:5f:5a:3b:48:c7:
c0:76:49:7f:f3:5c:c7:68:58:aa:63:fc:85:6d:a0:
49:76:73:52:c0:5a:27:34:40:e3:02:09:9d:2d:50:
60:f6:59:5b:82:0c:ca:79:a0:fa:39:da:d8:86:76:
2a:16:e8:98:e8:d7:2a:bc:4e:99:16:2b:78:4c:bc:
1b:5e:27:c3:a2:da:df:d5:4e:85:43:50:51:9f:e6:
e5:e7:f4:cb:a4:dc:88:ab:0d:c5:8f:85:46:b0:7e:
80:b5:9c:1b:9f:a4:79:d3:43:08:1a:2c:c1:91:5a:
24:38:4d:b6:f5:45:19:a3:c3:ca:63:6a:6c:37:3c:
54:00:b8:bd:1b:cc:8e:a8:70:56:4a:3c:ed:bf:82:
aa:91:62:72:c4:2e:1e:56:39:47:62:53:53:46:53:
4f:33:9e:7d:ee:94:61:e2:ec:21:ec:f6:74:81:76:
7a:ac:28:cb:0d:a2:99:72:12:67:f7:e9:d5:6d:40:
73:fd:54:40:e9:e8:d2:0d:9c:97:e1:06:6b:b4:78:
27:40:a7:b8:fe:a1:30:cf:ea:95:9e:29:3a:e0:65:
18:7f:84:be:42:cd:c1:dc:45:d4:fc:41:2b:1c:04:
92:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:AE:87:EF:4E:1C:D9:78:8D:7E:69:C7:81:60:CF:F3:6F:DB:72:70
X509v3 Authority Key Identifier:
keyid:D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:3e:5e:ac:30:02:1f:1c:af:a5:db:87:24:d6:52:75:0f:73:
02:36:6e:dd:7b:aa:16:62:81:f3:cf:e7:20:af:6f:a1:2b:c2:
b0:d4:f2:a4:1d:0f:ca:3e:3a:ee:7d:cf:dd:9a:01:16:0c:e1:
d0:1c:64:9f:4d:5f:7e:36:bc:2b:16:ab:7a:87:12:af:40:45:
65:77:c7:64:ed:ed:6c:99:3e:5a:82:86:ca:dd:e6:2a:79:80:
23:ac:96:31:4d:b8:30:36:87:65:f1:cb:15:a0:58:5f:40:2e:
06:74:3a:2b:58:b4:be:b0:00:91:7a:b8:e4:28:63:c2:fc:c1:
3d:e2:78:32:78:ad:98:63:1b:a1:98:f6:fc:74:77:2b:be:53:
97:a6:61:bd:7f:f5:5a:15:6c:30:22:05:a1:18:f0:c5:dc:e3:
0e:90:df:42:63:4f:48:8c:20:d4:61:8b:34:d2:2e:11:be:e6:
94:71:c9:f6:f3:ac:72:05:f8:e5:ca:c5:ac:e8:12:3d:38:d4:
b2:31:5f:42:b6:98:d4:fe:26:b3:bf:08:56:02:9a:d8:8a:26:
bf:45:cc:67:d0:67:30:af:b9:99:28:87:d8:bf:1f:5d:61:e5:
9d:b5:53:15:a6:88:01:b5:2f:a3:0a:39:b8:b2:cf:79:7f:ea:
ef:a8:88:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 20 04:07:43 2025 by rpki-client