Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft
File: 2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft (raw, json)
Hash identifier: jb0H85ZuGCPGK6je9/uJ0GQ+gDyFJUEV76H64mCl+8k=
Subject key identifier: AE:DE:90:1D:37:90:32:24:10:6F:43:EC:37:E7:2D:80:91:BC:43:34
Authority key identifier: DA:3D:25:80:C5:49:80:CA:B3:DB:13:56:18:2E:D8:CC:81:9F:FC:07
Certificate issuer: /CN=da3d2580c54980cab3db1356182ed8cc819ffc07
Certificate serial: 0199368122D49F812FA147212057A84D83A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft
Manifest number: 1678
Signing time: Thu 11 Sep 2025 02:00:56 +0000
Manifest this update: Thu 11 Sep 2025 02:00:56 +0000
Manifest next update: Fri 12 Sep 2025 02:00:56 +0000
Files and hashes: 1: 2j0lgMVJgMqz2xNWGC7YzIGf_Ac.crl (hash: lbbYF0+PS4qLrT7ePT6Kig7u8pBWkmqvLBzm2kieEPc=)
2: aVrm11uPiyldKPviAWZVNw7mX_s.roa (hash: +aUpO78+V+9JLiQkkmCO8C80eoccRFxUM2jJ9r7mFkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft
rsync://rpki.ripe.net/repository/DEFAULT/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 20:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:36:81:22:d4:9f:81:2f:a1:47:21:20:57:a8:4d:83:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da3d2580c54980cab3db1356182ed8cc819ffc07
Validity
Not Before: Sep 11 02:00:56 2025 GMT
Not After : Sep 12 02:00:56 2025 GMT
Subject: CN=aede901d37903224106f43ec37e72d8091bc4334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:98:16:3c:7a:26:36:5e:f5:4e:9d:32:b9:fb:
a7:7c:b7:67:3c:87:c7:e6:e9:4d:19:e4:bc:7f:da:
94:14:d0:c8:18:63:40:c6:a1:90:5e:48:c6:5c:09:
1a:31:ec:0c:7a:ea:af:a8:24:5a:ff:a7:c0:30:56:
50:4e:ea:33:d3:03:67:b7:47:0b:b0:d3:68:19:7a:
53:29:5b:06:b6:ed:4b:ab:45:90:5c:23:1a:94:dc:
68:e5:ba:f0:95:0f:82:e2:12:00:b8:79:98:39:69:
94:d5:fd:ef:81:13:2f:b7:58:a3:6c:9b:61:f0:ac:
4d:5d:12:0f:a5:64:9c:fc:d8:5e:53:60:e5:49:db:
80:c7:4f:9b:6d:76:9d:77:f8:65:f1:12:bd:3b:f2:
da:85:a1:93:81:9e:fa:cb:cd:4a:b0:e3:48:0b:88:
ca:69:22:28:d5:06:1a:3d:7b:f9:ee:76:d3:f0:99:
44:59:73:38:0e:5a:47:4d:5d:dc:da:17:de:aa:91:
d8:d6:a1:5b:0f:38:c1:1f:fb:6d:fc:09:67:02:88:
a2:9c:1c:39:29:9b:40:03:83:bc:9e:07:da:40:af:
de:05:9b:84:e1:0e:a2:ac:9a:98:b9:54:81:a4:53:
6c:34:73:78:6d:56:63:a7:cf:f5:e2:4e:48:9c:14:
3e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:DE:90:1D:37:90:32:24:10:6F:43:EC:37:E7:2D:80:91:BC:43:34
X509v3 Authority Key Identifier:
keyid:DA:3D:25:80:C5:49:80:CA:B3:DB:13:56:18:2E:D8:CC:81:9F:FC:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:6d:bd:3c:d9:49:cf:ff:d3:0c:83:6e:84:ea:02:af:18:f7:
13:7c:78:02:26:cf:ba:6f:5b:d5:32:a9:54:1d:1b:6b:2e:11:
e3:0a:49:28:55:cd:9f:99:5e:80:3e:5b:8e:b0:a9:f9:d5:fc:
33:9c:6e:fd:53:4f:10:f8:a9:40:6f:de:5c:0d:c6:c9:eb:af:
a6:c4:8d:e7:d9:8b:cb:06:83:fd:fa:74:b1:be:88:7c:77:00:
6c:46:4b:dc:3d:8e:a9:e9:81:a2:e1:60:6d:ef:7e:a3:63:5d:
8d:d9:65:1c:5e:82:1c:65:b7:e4:fb:5e:35:37:ca:7b:3c:b0:
a8:9d:6d:1b:82:ee:c6:33:0f:3a:26:d5:d9:e0:cb:ec:42:d4:
08:96:30:e3:46:c4:52:61:57:dc:0f:4b:97:82:5f:1a:83:07:
7f:78:41:fc:eb:0b:da:9b:fc:9f:bc:5f:ec:e9:84:68:9b:f8:
a5:1a:4c:36:9b:09:26:c9:ef:be:e0:1e:5c:29:9d:33:c0:b1:
ab:2f:f0:25:f3:34:50:b7:20:d3:1e:c3:06:40:24:c8:61:38:
e8:1b:14:95:91:c2:9f:c2:dc:e0:e9:e8:d8:ac:92:2d:78:83:
c4:4a:66:9e:57:4a:4c:f8:90:46:f2:f6:17:16:46:5a:b1:8a:
87:90:f0:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk2gSLUn4EvoUchIFeoTYOjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhM2QyNTgwYzU0OTgwY2FiM2RiMTM1NjE4MmVkOGNjODE5
ZmZjMDcwHhcNMjUwOTExMDIwMDU2WhcNMjUwOTEyMDIwMDU2WjAzMTEwLwYDVQQD
EyhhZWRlOTAxZDM3OTAzMjI0MTA2ZjQzZWMzN2U3MmQ4MDkxYmM0MzM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZgWPHomNl71Tp0yufunfLdnPIfH
5ulNGeS8f9qUFNDIGGNAxqGQXkjGXAkaMewMeuqvqCRa/6fAMFZQTuoz0wNnt0cL
sNNoGXpTKVsGtu1Lq0WQXCMalNxo5brwlQ+C4hIAuHmYOWmU1f3vgRMvt1ijbJth
8KxNXRIPpWSc/NheU2DlSduAx0+bbXadd/hl8RK9O/LahaGTgZ76y81KsONIC4jK
aSIo1QYaPXv57nbT8JlEWXM4DlpHTV3c2hfeqpHY1qFbDzjBH/tt/AlnAoiinBw5
KZtAA4O8ngfaQK/eBZuE4Q6irJqYuVSBpFNsNHN4bVZjp8/14k5InBQ+cwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK7ekB03kDIkEG9D7DfnLYCRvEM0MB8GA1UdIwQY
MBaAFNo9JYDFSYDKs9sTVhgu2MyBn/wHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmowbGdNVkpnTXF6MnhOV0dDN1l6SUdmX0FjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi81N2U2MjctYTQ1YS00NjczLTg2ZDIt
NmYyZjViNGRlNjVkLzEvMmowbGdNVkpnTXF6MnhOV0dDN1l6SUdmX0FjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi81N2U2MjctYTQ1YS00NjczLTg2ZDItNmYyZjViNGRlNjVk
LzEvMmowbGdNVkpnTXF6MnhOV0dDN1l6SUdmX0FjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbG29PNlJ
z//TDINuhOoCrxj3E3x4AibPum9b1TKpVB0bay4R4wpJKFXNn5legD5bjrCp+dX8
M5xu/VNPEPipQG/eXA3GyeuvpsSN59mLywaD/fp0sb6IfHcAbEZL3D2OqemBouFg
be9+o2NdjdllHF6CHGW35PteNTfKezywqJ1tG4LuxjMPOibV2eDL7ELUCJYw40bE
UmFX3A9Ll4JfGoMHf3hB/OsL2pv8n7xf7OmEaJv4pRpMNpsJJsnvvuAeXCmdM8Cx
qy/wJfM0ULcg0x7DBkAkyGE46BsUlZHCn8Lc4Ono2KySLXiDxEpmnldKTPiQRvL2
FxZGWrGKh5DwcQ==
-----END CERTIFICATE-----
Generated at Thu Sep 11 03:51:04 2025 by rpki-client