Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
File: 2ko-wHuXhY5oNKWh-I64_jG_eyA.mft (raw, json)
Hash identifier: tDlQwehWm3mfBdi5d+rPqXLg4aF9CmYJ3OUFt+SZNiE=
Subject key identifier: 3C:AB:11:1B:D3:E8:76:A2:E1:CA:76:80:73:1A:B1:1A:0C:E5:80:36
Authority key identifier: DA:4A:3E:C0:7B:97:85:8E:68:34:A5:A1:F8:8E:B8:FE:31:BF:7B:20
Certificate issuer: /CN=da4a3ec07b97858e6834a5a1f88eb8fe31bf7b20
Certificate serial: 019922C30EE19B176B25752FCE742EB145EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
Manifest number: 071D
Signing time: Sun 07 Sep 2025 06:00:32 +0000
Manifest this update: Sun 07 Sep 2025 06:00:32 +0000
Manifest next update: Mon 08 Sep 2025 06:00:32 +0000
Files and hashes: 1: 2ko-wHuXhY5oNKWh-I64_jG_eyA.crl (hash: Tdt78esoa5mKjc3tXSuhDqsy33nLm1baARuEz1fX64E=)
2: SKL1Cd8Tn-ZKbcOxgMo9-wJ0gbQ.roa (hash: 4u4TOuVY+peXwBlO4N668GLOAFUf52/Bj870kxpoG3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:0e:e1:9b:17:6b:25:75:2f:ce:74:2e:b1:45:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da4a3ec07b97858e6834a5a1f88eb8fe31bf7b20
Validity
Not Before: Sep 7 06:00:32 2025 GMT
Not After : Sep 8 06:00:32 2025 GMT
Subject: CN=3cab111bd3e876a2e1ca7680731ab11a0ce58036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c2:37:a0:53:bd:6d:7a:31:94:b3:85:3b:a4:
e4:25:92:50:84:52:b7:d3:88:93:d2:9e:9a:0b:e0:
96:c0:62:b8:54:01:ff:8a:08:26:08:66:f4:a6:b9:
ff:61:4e:1a:b4:e9:db:56:3b:8c:50:43:dc:d8:c8:
cf:70:0a:05:9c:ac:f2:26:5a:87:9b:2d:fa:03:b7:
0c:d0:3c:62:3c:f4:7f:35:80:a5:04:f5:21:be:f2:
5d:15:06:a4:f8:b3:6d:c6:74:f7:9a:fa:04:79:f1:
a7:77:bc:82:86:03:00:c0:6e:84:f9:c0:63:d9:61:
18:27:1f:99:eb:b7:72:24:81:15:02:0a:64:60:4c:
e0:ae:d8:23:b9:ed:42:09:83:f4:fc:c4:20:72:c2:
a1:5d:5f:da:1a:2c:0d:ec:fa:88:ae:87:9c:9d:69:
71:f2:91:05:c0:17:48:b2:73:41:e2:31:36:5f:46:
7a:93:72:07:37:10:25:8a:d2:11:f4:ce:f1:5e:60:
df:48:aa:c9:17:af:c6:54:b8:dc:3e:b3:06:ae:14:
4a:58:08:f0:29:36:a5:75:a9:d4:b3:ca:6d:74:9a:
53:a7:2b:a8:28:03:43:6a:a2:c7:e4:04:1c:50:95:
04:12:4c:c9:ba:46:49:c8:94:9b:00:7c:50:2c:95:
38:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:AB:11:1B:D3:E8:76:A2:E1:CA:76:80:73:1A:B1:1A:0C:E5:80:36
X509v3 Authority Key Identifier:
keyid:DA:4A:3E:C0:7B:97:85:8E:68:34:A5:A1:F8:8E:B8:FE:31:BF:7B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ko-wHuXhY5oNKWh-I64_jG_eyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fe0306-af84-4e8e-8885-b84a9819ead6/1/2ko-wHuXhY5oNKWh-I64_jG_eyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:9f:94:6d:9f:00:95:f7:22:12:f0:ab:19:41:8b:75:1f:c7:
6d:94:d1:3a:d3:ca:e2:b8:ca:ae:43:8f:0e:92:94:fa:76:32:
30:fd:01:bf:15:c6:85:9b:e1:88:08:02:df:80:bf:30:c1:75:
ef:7b:9c:2d:a9:3f:3a:0d:e7:11:60:16:27:1f:ea:24:ae:00:
4c:5d:ee:f1:da:87:57:99:07:c1:e9:a0:b1:e7:09:df:2d:f5:
ad:3e:cc:73:28:cd:95:1b:65:9d:d6:77:c8:9d:4f:98:3a:aa:
1e:6c:dd:60:11:eb:2d:d6:19:8a:47:0d:df:d8:17:57:89:e7:
db:0c:37:04:0d:f9:f8:4d:12:09:f7:99:f7:56:05:67:41:c6:
5d:2c:44:82:6c:49:4f:e5:2f:17:ce:df:89:f0:11:8d:ed:54:
fe:d0:22:1f:aa:b5:4f:5b:1c:00:75:a9:76:6f:ea:8a:46:9e:
8b:fe:28:18:91:0b:28:2c:aa:15:e6:8a:75:b6:d8:da:9c:04:
85:8c:30:61:b5:98:29:6b:07:9b:24:e4:fe:98:00:8c:f3:34:
66:4a:04:24:3d:8a:76:27:99:7b:c5:af:62:8e:32:96:d4:74:
65:72:11:f3:41:95:86:20:66:de:40:c1:91:0d:91:3b:47:e0:
8a:b3:29:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:48 2025 by rpki-client