Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
File: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft (raw, json)
Hash identifier: OSM3Ecbi+vXKjhziPOvFYjoYZLSg+P2W9nUpMszLxhI=
Subject key identifier: E9:97:EF:3D:CE:11:4C:B2:3A:1C:EF:1A:37:68:03:4B:47:44:09:8E
Authority key identifier: D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53
Certificate issuer: /CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753
Certificate serial: 0199228C9B4FCD53736D5BA86418A818A18E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
Manifest number: 047B
Signing time: Sun 07 Sep 2025 05:01:04 +0000
Manifest this update: Sun 07 Sep 2025 05:01:04 +0000
Manifest next update: Mon 08 Sep 2025 05:01:04 +0000
Files and hashes: 1: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl (hash: E240ab60vgeVscvwlGD5W8LYz5+vUTY8riWZzrI3NOs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:9b:4f:cd:53:73:6d:5b:a8:64:18:a8:18:a1:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753
Validity
Not Before: Sep 7 05:01:04 2025 GMT
Not After : Sep 8 05:01:04 2025 GMT
Subject: CN=e997ef3dce114cb23a1cef1a3768034b4744098e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8a:72:2b:cf:12:07:f2:c0:9e:ca:12:17:31:
1c:d0:71:fe:84:47:9f:27:08:81:b8:48:3a:28:bc:
b7:9d:3d:10:00:85:b9:e0:6d:4a:90:b5:e4:1d:48:
b5:af:4a:99:06:0a:c6:4d:00:fd:0e:88:7a:d2:15:
9a:93:c8:09:89:94:3e:55:11:dc:a8:a4:66:85:53:
c9:57:ca:e0:9e:84:b7:89:35:bb:56:48:fb:0f:09:
c3:ca:47:f9:59:a5:38:5c:b8:7b:a6:bf:13:d0:47:
5a:e1:7f:e9:c7:cd:0b:4f:64:ea:e2:54:62:8c:74:
73:eb:57:81:e6:3c:4d:e2:5e:1e:58:29:d0:dd:6c:
6f:9d:ca:b9:e6:de:94:1b:48:36:08:54:e1:ea:cb:
85:7f:83:65:93:c2:38:e7:96:7c:3a:6c:bd:01:1d:
bb:bb:dc:9f:ed:15:9f:25:71:f7:1f:94:e0:d8:23:
55:0e:0d:49:c0:97:ec:e1:c8:62:a5:45:7d:dd:57:
a6:c2:10:c8:9c:38:72:ba:ab:2c:c3:8b:a2:16:6c:
cd:53:f5:67:6b:7c:91:58:d6:cc:be:d1:bb:db:4f:
7d:1e:65:d2:d3:07:9c:7a:d0:40:c4:75:02:47:6f:
1a:e9:a5:d6:51:74:6a:b5:d3:d1:83:c4:0e:0a:6b:
37:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:97:EF:3D:CE:11:4C:B2:3A:1C:EF:1A:37:68:03:4B:47:44:09:8E
X509v3 Authority Key Identifier:
keyid:D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:3c:15:55:06:9f:07:4f:c7:18:f3:1d:a0:7b:2e:c4:ab:0d:
4e:b4:26:68:fc:36:dc:fe:71:07:af:f6:d8:eb:39:dd:89:8a:
48:43:ec:83:f4:72:8e:a5:8a:29:39:f0:0e:da:c3:23:5d:e5:
cc:73:33:c6:16:98:c3:cf:a1:1f:7e:d5:f8:d1:b9:82:1e:be:
96:bd:07:66:29:e1:18:c9:8b:ab:08:6b:6d:8d:ec:8b:e8:fc:
dc:66:fb:af:a9:13:75:39:ac:ca:5a:7d:17:05:cd:b8:7f:73:
ab:c8:eb:1e:e6:cc:92:04:3c:61:68:96:f6:32:5c:fe:da:61:
f1:17:5a:86:f3:b9:49:04:80:d9:3e:7a:d9:82:00:6c:27:8b:
9e:d3:fd:68:8d:c5:fe:da:34:0e:22:5b:e4:db:51:6c:6a:3c:
ed:fa:91:1e:1d:c6:50:12:61:f7:cd:01:ee:59:68:f9:0d:00:
87:68:59:01:2c:07:f8:e3:c1:13:2e:a4:49:86:df:c3:60:e3:
e3:58:c1:1c:13:7a:83:2f:92:27:24:8b:cf:a1:02:5c:3c:d7:
68:94:fa:7f:b0:4b:3b:6d:8d:41:c1:70:e9:72:96:19:8d:18:
1b:5e:09:13:90:6a:f4:39:cb:cb:b1:34:26:ed:97:9b:77:74:
49:62:1c:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:47 2025 by rpki-client