Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
File: 2GucF3igUp7n4jIAPL5cmTw2_ds.mft (raw, json)
Hash identifier: 8ofp5MY4TffPvKh0CY/A0NL+c2E+JQ3Az/G9gW6awV4=
Subject key identifier: ED:CA:BE:D8:E2:65:E5:B6:63:DF:E9:1D:0A:BE:5B:1D:4E:80:98:C4
Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Certificate serial: 01992D7DAC9AD19F3565818E75B52A7FF241
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
Manifest number: 03D7
Signing time: Tue 09 Sep 2025 08:00:34 +0000
Manifest this update: Tue 09 Sep 2025 08:00:34 +0000
Manifest next update: Wed 10 Sep 2025 08:00:34 +0000
Files and hashes: 1: 2GucF3igUp7n4jIAPL5cmTw2_ds.crl (hash: JZzkXeYUBwUsq6aqsAto51aXyl5qaTZveLV63/JPlXE=)
2: xaTFNHvIwGFGt2nvvisSJGJJn1U.roa (hash: dncutlGZCp4ijfHdULe589Ce9+6dKbRvNV71t7mvtSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 07:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2d:7d:ac:9a:d1:9f:35:65:81:8e:75:b5:2a:7f:f2:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Validity
Not Before: Sep 9 08:00:34 2025 GMT
Not After : Sep 10 08:00:34 2025 GMT
Subject: CN=edcabed8e265e5b663dfe91d0abe5b1d4e8098c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:33:d4:5b:d4:06:9a:95:f9:87:be:02:4a:f4:
d7:ae:6b:fa:11:ac:07:b9:47:d9:1b:5b:39:70:55:
a5:67:2c:36:71:d3:f6:3c:14:ba:2e:0e:9c:5c:1b:
35:33:21:3f:27:6b:0e:58:d9:f6:a5:ab:e6:92:9a:
58:49:b7:3b:45:c6:97:7e:f7:49:54:65:bc:30:86:
c4:22:4f:5f:0f:41:9a:d9:3d:ee:99:83:ac:a9:f6:
77:6e:82:4b:a1:ac:39:77:57:8f:80:d9:42:c6:ec:
26:7b:81:58:cc:4a:fa:39:7a:96:77:75:46:85:cf:
dc:9b:b4:af:23:22:c0:cf:2a:7e:67:1e:de:5b:d0:
fa:24:69:68:bd:24:88:b2:74:8a:9a:43:b4:2c:27:
63:92:3e:cf:ab:0d:00:02:7e:31:b3:c7:16:9c:bb:
5d:8e:2f:a8:53:96:cf:01:36:3d:42:22:d9:97:fb:
d3:eb:e3:de:32:74:c0:05:a0:cf:ca:9b:e6:2b:f1:
d0:7e:c6:3c:b8:09:23:fe:6e:a7:60:f7:10:0d:58:
4a:ee:38:8f:d0:f8:7c:60:15:5f:4c:58:ab:2e:c7:
54:0b:f4:6f:23:bf:41:58:18:e6:ab:9c:8e:a1:1d:
ee:55:f4:72:ef:ae:40:28:9e:1d:8f:3f:ec:e2:aa:
25:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:CA:BE:D8:E2:65:E5:B6:63:DF:E9:1D:0A:BE:5B:1D:4E:80:98:C4
X509v3 Authority Key Identifier:
keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:8b:b7:b6:93:17:f8:1b:f4:f4:9c:33:a1:7e:23:12:86:a9:
c8:77:da:2f:51:21:e4:6e:0d:dc:8c:b0:03:48:38:14:d6:f3:
87:25:08:46:d6:e3:88:77:e5:02:64:24:b9:f1:f6:bd:ec:d6:
ca:12:a1:fd:8a:dd:a4:d3:db:c7:68:27:de:77:35:a9:52:99:
a3:60:39:04:f9:95:b2:ee:6a:ab:c0:9e:66:39:28:a0:24:ac:
28:78:a7:91:8b:d4:3a:cd:78:c1:71:c3:b5:38:99:fa:e1:03:
12:a0:6b:f1:4c:52:de:4a:fe:59:fd:92:45:28:d1:81:95:96:
73:c5:b3:5f:dc:d5:66:eb:9b:08:8d:89:e7:0e:24:0c:b9:96:
5f:4c:fa:1c:19:ac:6f:4a:dc:f4:8e:29:20:d7:75:87:4d:d7:
06:63:f3:7f:e5:c6:9d:af:8d:3c:c4:44:60:5a:e3:cd:bf:8d:
2a:df:1e:d7:53:49:3e:70:4e:46:b8:b9:b7:e5:c0:11:01:78:
67:c9:02:be:a1:36:b6:20:6d:e0:73:38:c6:7c:65:80:d9:18:
c3:b2:e0:ec:28:ba:fd:45:7e:33:00:e6:08:e8:55:dd:74:6a:
52:60:07:95:f4:cd:86:9c:4d:db:bb:66:bb:be:bd:48:2f:5c:
1d:9d:be:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 09:39:37 2025 by rpki-client