Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
File: 2AtWXXc2dT2-f2YkvfHSvBiW98A.mft (raw, json)
Hash identifier: 1GSOCNBwyba7iztP/PF4s/xEoophiQfTPypC0VOJ2+M=
Subject key identifier: C6:34:1B:AE:74:B3:1F:74:6C:CB:68:73:CB:3D:2F:D2:DD:7F:2E:A3
Authority key identifier: D8:0B:56:5D:77:36:75:3D:BE:7F:66:24:BD:F1:D2:BC:18:96:F7:C0
Certificate issuer: /CN=d80b565d7736753dbe7f6624bdf1d2bc1896f7c0
Certificate serial: 019923A0D78C4A9DA7C0DFA2A23E5AD1790F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
Manifest number: 0FCD
Signing time: Sun 07 Sep 2025 10:02:47 +0000
Manifest this update: Sun 07 Sep 2025 10:02:47 +0000
Manifest next update: Mon 08 Sep 2025 10:02:47 +0000
Files and hashes: 1: 2AtWXXc2dT2-f2YkvfHSvBiW98A.crl (hash: S5i/mjZL1Hmocq700Imj28JEr0vt1lCQvSzzV9Y+ag4=)
2: wpUZVReQHXzsn_DPk2ck08lBo6E.roa (hash: uqt9xMeCs/4H5VzlZsIDbAr0gO/Vsft4k85bkU/+qVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:d7:8c:4a:9d:a7:c0:df:a2:a2:3e:5a:d1:79:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d80b565d7736753dbe7f6624bdf1d2bc1896f7c0
Validity
Not Before: Sep 7 10:02:47 2025 GMT
Not After : Sep 8 10:02:47 2025 GMT
Subject: CN=c6341bae74b31f746ccb6873cb3d2fd2dd7f2ea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b7:2c:3f:80:32:c5:39:59:d7:a7:39:4d:a2:
f7:af:40:d0:ee:31:31:ad:dd:43:76:56:4e:87:61:
de:cc:5f:a7:0d:63:5d:aa:d7:23:62:78:36:93:ed:
1e:a7:2a:96:10:c5:a7:f9:d2:76:4e:84:ab:9a:73:
6c:c2:7c:29:13:fc:2a:c5:d4:f0:fc:13:c5:84:12:
e3:16:19:04:55:1a:28:70:b3:84:06:6c:94:ce:22:
c6:74:29:d2:10:ea:50:0e:d8:e6:d1:4f:b1:c7:6e:
52:fd:0b:c4:3e:95:4b:8e:ce:10:75:2d:90:84:96:
67:38:7b:b5:4e:60:bb:13:c3:9e:b0:b6:34:f3:c1:
61:d0:a9:0a:61:fb:1f:af:f9:cc:07:10:31:d5:4d:
9a:00:b5:90:26:c0:34:33:fd:33:7e:c2:b4:6f:68:
ea:7b:17:c5:b9:9f:ef:9a:ae:90:9f:c9:cc:cf:2f:
9f:94:a2:11:6e:d9:01:b8:19:94:a3:6a:19:67:c9:
c3:37:90:45:5a:4b:0f:c6:b9:3c:03:51:4e:66:c9:
f8:e5:37:f1:94:20:12:ca:2f:e9:c8:3c:52:6f:7b:
98:cd:46:2e:be:1e:d3:29:53:e9:78:60:15:17:ac:
af:2f:b5:ec:ec:34:b7:46:d1:85:12:00:e0:19:a7:
a9:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:34:1B:AE:74:B3:1F:74:6C:CB:68:73:CB:3D:2F:D2:DD:7F:2E:A3
X509v3 Authority Key Identifier:
keyid:D8:0B:56:5D:77:36:75:3D:BE:7F:66:24:BD:F1:D2:BC:18:96:F7:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AtWXXc2dT2-f2YkvfHSvBiW98A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f76339-1714-403b-9927-23277822fefa/1/2AtWXXc2dT2-f2YkvfHSvBiW98A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:a2:d6:3c:a4:12:fc:67:e0:3e:06:93:0f:64:d1:f7:d1:a8:
4b:e5:bd:ec:6b:0c:1b:c8:d1:f6:b0:18:7d:37:a0:57:83:28:
03:f3:2e:da:0f:87:03:fd:d1:9e:82:6b:bf:c9:9a:cf:ce:b4:
76:2d:20:43:d5:be:fa:3d:2b:f0:e7:8d:9c:3c:85:85:38:ef:
e6:0a:7f:21:ba:51:b1:22:bf:98:76:86:38:88:f2:0b:f5:2c:
ac:11:57:25:9f:64:78:a8:10:57:3d:bb:d5:75:ea:59:ad:c1:
a3:7e:3a:6c:81:f8:94:48:5b:2a:ca:4d:13:36:1f:dd:08:f4:
54:1e:07:9d:66:42:cc:52:71:10:46:bc:c2:a1:15:47:79:d8:
00:dd:26:b8:d6:62:17:e7:ea:76:71:9c:08:ef:ef:cf:d1:49:
9a:0b:2e:e4:2d:9a:50:12:ce:f0:50:16:48:ac:44:ea:61:0f:
40:30:98:bb:29:7c:0e:ff:9f:c5:c0:a8:82:2e:a9:c3:be:d7:
90:ab:78:b2:8a:40:8b:f7:29:99:e0:d0:b0:15:89:7b:ac:e6:
05:60:18:0c:8d:40:5e:1b:a1:5a:92:bc:82:0d:a6:c6:b5:81:
75:b3:bf:99:38:97:bc:ac:33:75:5f:52:14:53:df:4e:fb:8d:
fd:27:90:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:32:56 2025 by rpki-client