Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
File: 2Hwy4kled0lvwgKzAxZLpAjl0SI.mft (raw, json)
Hash identifier: lZSGu6KahYu2bIJ/od/eroxWiLU237Hl83b8PgLMaYM=
Subject key identifier: B3:47:02:10:BD:36:87:F4:0C:14:D4:7E:AE:03:75:31:73:4E:75:55
Authority key identifier: D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22
Certificate issuer: /CN=d87c32e2495e77496fc202b303164ba408e5d122
Certificate serial: 0199239F7C3B327695BDB53BC7B898717C90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
Manifest number: 156D
Signing time: Sun 07 Sep 2025 10:01:18 +0000
Manifest this update: Sun 07 Sep 2025 10:01:18 +0000
Manifest next update: Mon 08 Sep 2025 10:01:18 +0000
Files and hashes: 1: 2Hwy4kled0lvwgKzAxZLpAjl0SI.crl (hash: qqLn4/7wvO6/jcr+3bheQe8jKOcxPGmXFlnXw9fEQm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:7c:3b:32:76:95:bd:b5:3b:c7:b8:98:71:7c:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87c32e2495e77496fc202b303164ba408e5d122
Validity
Not Before: Sep 7 10:01:18 2025 GMT
Not After : Sep 8 10:01:18 2025 GMT
Subject: CN=b3470210bd3687f40c14d47eae037531734e7555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f1:82:20:64:7c:5c:88:9f:c4:f8:ef:ad:46:
56:7a:9b:a1:e6:d5:28:c3:84:f9:4a:7d:58:36:88:
6d:15:4f:4d:01:43:46:33:1e:d4:05:4c:05:47:c3:
6c:8d:1b:43:87:87:69:0a:d1:fb:f7:aa:7b:54:df:
70:28:32:22:2f:c0:4b:67:5a:63:3a:af:38:34:a2:
3d:90:ef:f2:15:3a:77:22:4f:5a:bc:38:b5:d0:31:
92:ae:ec:3e:b5:1e:87:82:bc:e8:4a:57:31:8b:d3:
d3:9a:f3:76:cc:f1:11:b5:15:00:f4:f3:78:07:14:
a0:62:26:77:73:11:26:e9:4b:9b:dc:a1:93:89:50:
33:51:ee:d3:fd:f7:87:9b:ae:bf:50:3e:31:d7:74:
76:5c:c0:16:04:6e:f2:29:d8:e3:03:b3:cd:a0:1c:
fd:3e:9c:48:eb:bf:14:f3:bb:11:e3:70:13:48:60:
4f:1d:4e:a4:e8:c4:66:9e:1d:f7:f8:87:e2:01:77:
4c:e4:33:61:05:4a:65:bf:62:34:17:d1:73:c9:3a:
81:2e:26:39:23:da:dc:10:e7:37:0b:5c:2f:6d:b5:
7c:20:d4:44:fc:b8:ca:f5:36:86:c9:39:62:90:14:
48:90:37:71:d7:85:f5:b7:98:d0:cb:5f:03:7e:9b:
c5:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:47:02:10:BD:36:87:F4:0C:14:D4:7E:AE:03:75:31:73:4E:75:55
X509v3 Authority Key Identifier:
keyid:D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:58:dc:fd:aa:ea:d7:74:eb:0f:aa:b3:e6:3f:86:5b:e8:a8:
fc:f4:5e:31:28:d9:0f:d4:c1:7a:30:89:56:5c:6e:e2:ce:da:
c6:c5:0d:3a:7a:d0:cc:75:7c:55:b8:79:19:2b:c8:03:b1:20:
63:6e:d8:57:24:36:e1:e9:f6:6b:38:40:ef:0f:f1:9a:44:d3:
b4:29:32:58:f2:2e:07:2c:cc:c3:16:68:fe:9c:e8:65:19:95:
f6:fb:b1:51:65:47:a2:24:d5:1e:df:0c:27:87:59:91:5c:88:
e6:78:6c:cd:b8:64:e0:b8:79:2a:01:f5:61:e8:12:ff:ac:d5:
4b:11:6a:d2:96:f6:1a:47:f9:cb:59:8b:0c:21:2e:24:eb:3b:
1f:14:6a:e2:8c:24:ee:a4:f9:dd:8f:3b:f7:2f:ca:ba:f8:38:
64:2a:4f:70:f2:64:f1:28:06:71:26:4f:34:e9:0d:20:26:a1:
d9:34:8d:b8:99:8d:8d:88:48:fb:5e:6d:46:23:2b:b1:1d:42:
74:1c:ca:48:b0:40:ef:68:19:dc:a8:fb:d4:1c:ef:dd:8a:6d:
27:1a:83:de:5f:50:96:77:c0:a5:49:92:7c:8b:45:e7:c4:e0:
76:52:8d:70:10:4e:f8:ad:d1:cc:a4:e6:21:3c:a4:ad:3e:07:
8a:32:09:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjn3w7MnaVvbU7x7iYcXyQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4N2MzMmUyNDk1ZTc3NDk2ZmMyMDJiMzAzMTY0YmE0MDhl
NWQxMjIwHhcNMjUwOTA3MTAwMTE4WhcNMjUwOTA4MTAwMTE4WjAzMTEwLwYDVQQD
EyhiMzQ3MDIxMGJkMzY4N2Y0MGMxNGQ0N2VhZTAzNzUzMTczNGU3NTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPGCIGR8XIifxPjvrUZWepuh5tUo
w4T5Sn1YNohtFU9NAUNGMx7UBUwFR8NsjRtDh4dpCtH796p7VN9wKDIiL8BLZ1pj
Oq84NKI9kO/yFTp3Ik9avDi10DGSruw+tR6HgrzoSlcxi9PTmvN2zPERtRUA9PN4
BxSgYiZ3cxEm6Uub3KGTiVAzUe7T/feHm66/UD4x13R2XMAWBG7yKdjjA7PNoBz9
PpxI678U87sR43ATSGBPHU6k6MRmnh33+IfiAXdM5DNhBUplv2I0F9FzyTqBLiY5
I9rcEOc3C1wvbbV8INRE/LjK9TaGyTlikBRIkDdx14X1t5jQy18DfpvFuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLNHAhC9Nof0DBTUfq4DdTFzTnVVMB8GA1UdIwQY
MBaAFNh8MuJJXndJb8ICswMWS6QI5dEiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkh3eTRrbGVkMGx2d2dLekF4WkxwQWpsMFNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8xZTE5MWUtMTEzYy00NDMzLWFlZjAt
NzI0M2I5ODRhNjE1LzEvMkh3eTRrbGVkMGx2d2dLekF4WkxwQWpsMFNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy8xZTE5MWUtMTEzYy00NDMzLWFlZjAtNzI0M2I5ODRhNjE1
LzEvMkh3eTRrbGVkMGx2d2dLekF4WkxwQWpsMFNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYFjc/arq
13TrD6qz5j+GW+io/PReMSjZD9TBejCJVlxu4s7axsUNOnrQzHV8Vbh5GSvIA7Eg
Y27YVyQ24en2azhA7w/xmkTTtCkyWPIuByzMwxZo/pzoZRmV9vuxUWVHoiTVHt8M
J4dZkVyI5nhszbhk4Lh5KgH1YegS/6zVSxFq0pb2Gkf5y1mLDCEuJOs7HxRq4owk
7qT53Y879y/Kuvg4ZCpPcPJk8SgGcSZPNOkNICah2TSNuJmNjYhI+15tRiMrsR1C
dBzKSLBA72gZ3Kj71Bzv3YptJxqD3l9QlnfApUmSfItF58TgdlKNcBBO+K3RzKTm
ITykrT4HijIJfg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:07:37 2025 by rpki-client