Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
File: 2gszzdt5m3vPXT3OAE_bqMPoZP8.mft (raw, json)
Hash identifier: LfmOZydkKvcCD8LiymsdwgB2flt7bxtrjx2cRi2ZC1Y=
Subject key identifier: 9D:1E:F4:6E:09:18:9B:53:1E:04:E5:0E:38:78:15:A8:8C:F8:DC:47
Authority key identifier: DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
Certificate issuer: /CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Certificate serial: 01993010B0FAEC24828590D241B5B6D6861B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
Manifest number: 0CE2
Signing time: Tue 09 Sep 2025 20:00:24 +0000
Manifest this update: Tue 09 Sep 2025 20:00:24 +0000
Manifest next update: Wed 10 Sep 2025 20:00:24 +0000
Files and hashes: 1: 17FLk26rZWNpnvEJucbEAG-7zqY.roa (hash: qMmpcRGKwOqOR5+GsVwNkgRbdBAdNorVpaMiale+nXI=)
2: 2gszzdt5m3vPXT3OAE_bqMPoZP8.crl (hash: QMrDw+JNrEPq7T2drZj2zXx8prHjVt0OpcMUFAwqaUQ=)
3: bBGzNd5qGUUIPYH3-5zWMnwwyJg.roa (hash: 290Z2J6Jo9xanYpdqpciKr53wSmtU/PW4k3Qs+NnOTs=)
4: k29cbE30TGhu-1q8rRu7-jpqTg4.roa (hash: 9mQL8HUgIQzEZ7MXmoS/sUavd/K/UaaalJ5/ztoLSTk=)
5: s7mUu7WrVHVPJEBCCdi0H3bHpis.roa (hash: ExGJpFM76OJZURK1GFJNiBKKffY4pIrBrUBBm9tcC8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:30:10:b0:fa:ec:24:82:85:90:d2:41:b5:b6:d6:86:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Validity
Not Before: Sep 9 20:00:24 2025 GMT
Not After : Sep 10 20:00:24 2025 GMT
Subject: CN=9d1ef46e09189b531e04e50e387815a88cf8dc47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:36:47:3d:b1:aa:e0:91:21:de:47:38:f7:72:
c5:98:fb:74:8d:fc:e1:26:fd:a4:a3:f3:4b:87:5e:
7a:cb:f5:72:83:90:ce:0a:51:e3:88:65:7c:47:43:
cb:a3:02:29:45:94:e0:34:98:5a:84:bf:ec:23:a5:
3b:f8:b8:15:9c:30:de:ae:f5:89:fe:17:b5:34:a1:
63:35:2a:d4:21:e0:a7:7b:63:10:a3:f4:a8:c0:31:
c7:ba:db:da:76:33:49:fd:00:a5:8e:e9:9d:ce:09:
86:c2:1e:36:fd:59:6f:17:4b:8b:6c:7f:68:a5:32:
f4:4f:f5:8c:db:76:1c:bc:69:c0:ef:94:6c:b9:98:
0e:6f:80:55:7f:a7:9c:0d:71:25:96:75:d7:21:39:
3f:41:5f:e2:59:03:cd:30:9f:af:40:13:ea:b2:91:
83:e0:43:ef:0b:07:e5:ce:ec:8d:66:ff:b7:75:b3:
71:91:45:1f:b2:60:09:dd:2c:c2:0f:ca:3d:23:0b:
bc:4f:0b:0a:4c:f9:50:52:74:88:48:5f:ad:19:7a:
30:04:a0:4f:fd:5a:6f:17:43:64:67:af:78:25:9c:
d9:d3:59:f9:9b:91:62:7c:72:64:1e:18:21:10:ec:
c9:5e:ef:04:cb:ac:79:73:a5:3a:96:f6:49:87:c2:
b9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:1E:F4:6E:09:18:9B:53:1E:04:E5:0E:38:78:15:A8:8C:F8:DC:47
X509v3 Authority Key Identifier:
keyid:DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:82:6f:09:06:21:67:0b:80:54:18:18:70:c6:75:cc:06:54:
c1:0b:40:aa:92:3a:8d:4a:6f:80:9e:c9:b6:a9:0d:8c:cd:14:
96:c5:95:1a:9e:69:a0:4a:70:3d:b4:81:dc:34:b1:66:0f:9b:
fe:f6:c5:17:97:8f:87:d3:ea:9b:35:7a:7f:4b:75:36:d9:56:
37:b7:7f:fd:d1:49:1a:85:50:11:49:a7:38:a3:f8:9c:c1:e4:
a4:c3:4c:66:93:e4:0c:83:55:c9:13:91:3e:85:69:fd:05:ff:
b6:36:8d:86:96:e5:9f:33:d4:a6:06:8f:ec:37:76:60:51:91:
28:c5:e3:82:0d:66:91:1a:ea:f3:8b:a9:b6:83:f8:3f:04:87:
28:7e:f0:89:69:fb:e3:f8:ed:b8:72:79:fc:9a:20:a3:93:06:
a6:83:f3:ef:73:d0:f2:8b:ce:02:25:52:2c:56:3d:d6:53:09:
21:60:d5:57:f4:89:ff:09:28:09:7e:22:09:b4:f3:a6:08:a9:
22:62:d5:92:72:93:e7:1d:e8:59:54:fd:67:9a:9c:bb:f2:9a:
6d:35:0b:da:58:53:52:d7:1c:7d:5e:16:70:8f:24:11:40:84:
24:75:36:16:a0:37:36:2b:aa:a4:cd:61:23:2e:e1:55:aa:03:
61:0d:e1:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:52:51 2025 by rpki-client