Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: eRWD9EEEmZ1PjXg8jCu7AkhQ5yNrhXsk45/DH5ccktY=
Subject key identifier: C6:EF:B2:99:F6:E3:78:A3:F0:FF:9A:53:6C:12:D3:01:7F:03:26:1D
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 019921B15551A5C28AC8FE0E057B00C144C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 137E
Signing time: Sun 07 Sep 2025 01:01:33 +0000
Manifest this update: Sun 07 Sep 2025 01:01:33 +0000
Manifest next update: Mon 08 Sep 2025 01:01:33 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: 8XdlnJ4s4foMMB3KbWgRsuL3ADdg4aDs21ocu4E6MVo=)
2: ogQz1j5jLQsKEpzhS2JSyEZnZ6I.roa (hash: B7xqxcI+bkCsaT71C5rhEWIjLfcjAKzC1lxv7kehuvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:55:51:a5:c2:8a:c8:fe:0e:05:7b:00:c1:44:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: Sep 7 01:01:33 2025 GMT
Not After : Sep 8 01:01:33 2025 GMT
Subject: CN=c6efb299f6e378a3f0ff9a536c12d3017f03261d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:07:a4:20:96:d9:40:70:63:e7:ed:64:be:06:
a3:53:90:4e:c4:71:7b:5d:39:c4:09:78:d3:4c:1e:
0c:2c:84:ae:32:86:21:fe:7c:28:c8:47:94:4f:fc:
87:26:7e:b8:3d:72:0b:eb:9e:8f:8c:da:1a:9a:60:
1c:43:41:b3:d3:aa:cb:fb:04:8a:92:5c:00:ac:99:
fc:a2:c9:e7:56:63:de:5d:6c:ab:88:21:08:ad:ea:
1d:4e:07:56:fb:0e:f5:f6:a7:12:2c:71:df:ec:ff:
0a:05:1f:79:2e:fb:10:26:1c:22:53:41:91:bb:56:
cb:1e:c6:66:24:d3:86:d4:de:3c:e3:d0:c7:61:10:
4c:2e:b4:25:d9:bf:38:fb:89:c3:78:81:ec:2a:0e:
ea:5a:7c:96:d3:6e:bc:e6:82:b7:ed:53:e3:a4:50:
1d:48:0d:1a:c5:59:29:92:fb:b7:b9:93:e9:5b:8b:
c7:8c:e2:13:39:3d:67:18:30:26:0f:94:88:0a:5f:
0b:91:b0:aa:57:b4:6b:15:e6:f0:5f:90:cb:a0:6e:
14:fb:f3:49:e0:21:6d:1b:f1:96:80:a3:7b:65:22:
18:56:31:23:4a:d1:12:7c:7b:d2:22:3d:6b:b4:eb:
5f:7f:31:26:ce:34:a6:b4:5f:fb:21:7f:2f:3e:37:
c4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:EF:B2:99:F6:E3:78:A3:F0:FF:9A:53:6C:12:D3:01:7F:03:26:1D
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:ef:be:3b:2e:57:b1:da:d1:56:a8:75:fe:6a:0e:a7:f4:38:
60:a7:72:be:5b:d4:eb:8f:49:b7:f2:b5:b4:2d:5f:2d:59:9a:
e4:c4:7b:c7:18:ff:38:92:5c:78:ce:97:0b:63:27:db:a6:d3:
e8:77:7f:bc:7e:94:fd:0a:51:12:36:15:46:b0:e8:14:69:08:
fc:8f:d4:bf:e0:c8:11:57:c5:53:87:4d:ed:ae:09:ee:de:e8:
80:90:e8:d1:ed:5f:48:67:f0:93:e1:a1:fd:ce:7a:c8:0d:84:
ae:5f:5a:79:3f:70:69:d0:1e:37:c5:09:a3:58:18:3e:a2:b5:
17:11:85:0e:e4:aa:c8:ce:cf:61:f2:f3:98:97:f2:91:71:bb:
4e:cb:5f:7d:a0:f8:5d:7e:44:9c:6d:3a:f3:b8:ba:87:0c:91:
0b:48:e2:8f:2c:53:38:f8:25:0e:10:11:50:c4:12:f7:a0:f6:
76:71:3e:19:37:fb:3e:80:c1:97:63:85:14:45:10:7b:c6:2f:
f1:73:00:0f:41:43:16:34:b9:a6:85:0b:f5:c7:73:29:28:b0:
1a:b3:d1:b7:b1:46:78:1a:23:bc:73:a0:65:64:7c:2c:ba:96:
0e:6d:01:f6:0e:ec:b8:94:b3:b6:3a:16:2e:ec:15:62:3a:1e:
3e:29:44:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:32 2025 by rpki-client