Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft
File: 2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft (raw, json)
Hash identifier: 3p1sSH394BTikAA27zHtzqNBtlCRN3F/YVg3Y+7oDbI=
Subject key identifier: 2A:9F:9E:CF:4B:DD:09:E1:B7:BB:02:8E:13:4B:8C:72:E2:F1:97:DA
Authority key identifier: D9:D7:2B:03:3F:F6:FA:38:BF:23:61:39:AC:DB:77:A7:A0:A0:47:A3
Certificate issuer: /CN=d9d72b033ff6fa38bf236139acdb77a7a0a047a3
Certificate serial: 0199239FB8D3E6CE78C72A32D56C4E371C32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dcrAz_2-ji_I2E5rNt3p6CgR6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft
Manifest number: 166F
Signing time: Sun 07 Sep 2025 10:01:33 +0000
Manifest this update: Sun 07 Sep 2025 10:01:33 +0000
Manifest next update: Mon 08 Sep 2025 10:01:33 +0000
Files and hashes: 1: 2dcrAz_2-ji_I2E5rNt3p6CgR6M.crl (hash: oYm83KsZWNI7KZcUeirZ0aSwoJgYYJYwqZhv0wLr05w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/2dcrAz_2-ji_I2E5rNt3p6CgR6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:b8:d3:e6:ce:78:c7:2a:32:d5:6c:4e:37:1c:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d72b033ff6fa38bf236139acdb77a7a0a047a3
Validity
Not Before: Sep 7 10:01:33 2025 GMT
Not After : Sep 8 10:01:33 2025 GMT
Subject: CN=2a9f9ecf4bdd09e1b7bb028e134b8c72e2f197da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:40:44:8b:a2:b9:44:c6:1f:4d:9e:ca:28:19:
93:49:a3:5d:57:41:49:fb:12:99:f7:7f:fa:3a:9d:
9e:da:61:84:2a:69:64:a1:40:8b:cd:f2:c5:9d:13:
ef:be:ed:a7:b1:74:68:b3:57:3b:a6:1c:50:0b:e2:
67:f1:0f:7c:df:8b:0b:79:39:69:29:21:67:50:a2:
76:54:03:83:ad:b5:54:85:7f:6c:c2:91:7a:ee:c8:
45:ca:0a:7d:56:22:10:5f:16:15:c4:26:24:40:2a:
23:eb:74:9e:cb:4e:b0:a6:dc:68:d3:ff:62:3f:a2:
29:0a:9c:ed:58:fc:1c:36:96:c8:3e:cd:0f:0e:9b:
d9:21:74:b1:63:76:85:93:15:7d:10:93:5f:2f:ba:
5b:43:1e:af:02:8d:21:6a:cb:31:db:d5:b6:52:00:
7d:32:b0:b2:29:14:8d:ab:b6:86:68:7d:29:5e:40:
64:7f:be:91:54:7d:4a:bf:ba:c4:97:95:22:cd:8b:
8e:c3:fd:75:07:0b:24:19:6c:c1:16:40:95:03:fc:
b8:cc:57:c3:48:26:f6:0d:d4:17:82:4b:0b:16:ed:
c7:89:c4:8e:ac:ff:25:90:d5:99:3e:c9:2d:ff:f2:
30:db:32:1b:ce:4d:4a:2e:41:17:69:4f:c8:dd:7a:
20:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:9F:9E:CF:4B:DD:09:E1:B7:BB:02:8E:13:4B:8C:72:E2:F1:97:DA
X509v3 Authority Key Identifier:
keyid:D9:D7:2B:03:3F:F6:FA:38:BF:23:61:39:AC:DB:77:A7:A0:A0:47:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dcrAz_2-ji_I2E5rNt3p6CgR6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:80:9f:fa:71:e1:97:cb:e7:58:ec:ca:c5:c2:fd:67:8f:7b:
ea:af:96:ff:83:b6:7f:7d:76:29:55:e9:57:0b:38:81:dc:ac:
23:16:3d:bc:cc:9a:bd:17:8d:57:c8:a2:8c:20:25:17:bf:f6:
88:87:e4:bb:ab:9d:af:13:92:6e:ff:b2:58:30:f8:19:5f:25:
49:ed:3e:e6:a1:c7:ec:f2:1e:dd:ab:8f:0f:40:cb:89:cc:43:
69:07:8d:88:84:0d:3d:a2:e0:84:7c:91:48:95:52:c9:bd:6c:
1d:fb:2d:27:b6:fd:ac:53:c6:90:4c:29:52:c0:64:14:e4:62:
7d:bc:99:3a:81:61:41:a0:de:cf:5c:11:26:b2:44:f6:e3:1b:
53:8d:08:86:eb:df:21:ff:77:c8:36:b2:b6:02:e7:ca:9f:d7:
0b:7c:c7:0e:d7:a6:59:55:1e:ae:de:0f:e6:5a:1b:61:35:c1:
00:1c:ec:87:5c:c6:34:e8:58:41:dc:df:01:e8:25:b9:12:1d:
bb:d0:f0:3a:b5:b6:cb:28:c0:dc:6e:62:0b:d8:f6:9b:83:b6:
37:32:e8:9f:35:7e:75:2f:00:cf:27:22:fe:19:7d:8c:7c:ad:
74:25:a7:ce:79:18:5c:63:03:9e:af:78:dc:88:81:35:8c:cb:
13:9d:7b:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:20:21 2025 by rpki-client