Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
File: 2hvwCCS2KL9iY7t03ndK3fmZD8k.mft (raw, json)
Hash identifier: NkZbED3NEyqp7Jujh35WXt/SlXwKe8Zc3bjQvovpGhI=
Subject key identifier: FC:36:41:75:25:A4:D3:25:20:9B:B8:DF:50:3C:A0:3C:E0:56:FB:E9
Authority key identifier: DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
Certificate issuer: /CN=da1bf00824b628bf6263bb74de774addf9990fc9
Certificate serial: 019922FA3A6419A494C2C37333EAA599CD78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
Manifest number: 13F5
Signing time: Sun 07 Sep 2025 07:00:48 +0000
Manifest this update: Sun 07 Sep 2025 07:00:48 +0000
Manifest next update: Mon 08 Sep 2025 07:00:48 +0000
Files and hashes: 1: 2hvwCCS2KL9iY7t03ndK3fmZD8k.crl (hash: zuErvm8oRvfg9gOPzMNVXfFPblKPoHr0KaMxHWfBpB0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:3a:64:19:a4:94:c2:c3:73:33:ea:a5:99:cd:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1bf00824b628bf6263bb74de774addf9990fc9
Validity
Not Before: Sep 7 07:00:48 2025 GMT
Not After : Sep 8 07:00:48 2025 GMT
Subject: CN=fc36417525a4d325209bb8df503ca03ce056fbe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:89:d6:78:ce:b6:e3:64:92:3b:37:f8:df:b7:
07:4f:7e:fb:8c:0e:8f:cf:20:67:17:4b:c9:f3:82:
c3:c6:94:6f:f2:9d:83:32:7c:b3:53:70:4d:d6:05:
ef:c1:6f:ae:52:d6:b1:bc:de:d8:75:e2:45:98:f5:
3a:ef:37:b4:3d:a3:78:d4:88:4d:5c:52:df:30:08:
ad:79:24:0d:3f:ae:82:aa:53:f8:e2:4e:90:8a:1c:
61:f0:f6:de:2e:c4:cb:0d:6a:a0:ee:8f:21:22:42:
b3:bd:59:84:57:a8:45:a2:6d:7a:e4:c4:68:12:5e:
5e:be:6c:e6:59:fe:d9:97:64:22:22:e8:9c:fe:92:
fe:b0:23:33:50:ea:d0:57:e7:f3:98:07:8b:cf:7d:
11:e9:d4:1a:09:ad:55:76:6a:b9:2f:a4:e1:f5:bd:
f0:1d:8b:1d:cb:62:87:82:1b:67:a5:d7:83:bb:b6:
b4:e2:12:8a:2b:f4:9c:c6:1f:b0:61:77:4c:f7:70:
af:c1:c3:69:f3:fd:b4:17:b3:cf:a3:3f:9c:13:b2:
4f:75:a1:84:2c:17:17:6d:f4:ff:d2:67:1b:77:f2:
46:73:1f:70:b9:fe:10:1d:4a:51:7c:98:fe:f5:49:
fd:c1:e4:1d:e4:f6:01:fb:d3:6b:3b:d4:54:1b:46:
61:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:36:41:75:25:A4:D3:25:20:9B:B8:DF:50:3C:A0:3C:E0:56:FB:E9
X509v3 Authority Key Identifier:
keyid:DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:51:4a:2f:d1:c4:01:11:58:6f:d8:8e:30:71:ff:7a:2c:e0:
0b:9c:4b:7a:02:b5:90:95:6c:00:7c:96:27:9f:13:e3:ae:bb:
cb:82:0f:cb:a3:87:51:35:8b:2f:e5:66:17:68:d8:0e:81:fd:
f0:b6:2a:43:44:ea:e9:dc:53:f9:88:46:cb:ce:41:57:43:d2:
c1:4c:60:4a:c3:ed:99:71:96:9e:cc:d8:93:29:c8:98:40:b5:
45:77:89:cb:35:86:ec:49:2b:ad:5c:66:c9:67:63:1b:07:f9:
f4:09:78:4d:36:d6:da:6e:cc:74:3d:10:c6:1d:d1:f9:77:d3:
5e:e8:1f:f5:6a:6f:33:ae:02:ff:9d:bc:53:4b:43:17:4a:0a:
dd:71:5e:2c:a8:49:7b:53:f3:9e:b0:06:bd:66:64:11:a6:26:
fa:00:db:07:e4:86:e7:e1:c0:4c:08:f9:18:fc:29:1f:8d:a1:
11:06:af:68:4d:83:a2:9e:63:9e:9b:b5:b5:c5:62:e4:2a:bb:
2d:6e:70:24:82:08:69:d1:24:e7:7e:a9:9d:8e:83:75:34:3c:
6c:03:20:64:fc:67:51:ec:98:61:b3:cc:ef:14:f1:45:25:34:
d7:4c:95:26:9b:51:37:a8:73:7c:25:09:07:18:85:f0:17:8b:
91:c4:d7:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:38:09 2025 by rpki-client