Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
File: 2JFWCWVvCPeijSS3xLqbY5ygsAk.mft (raw, json)
Hash identifier: 4b+ag379ICr2KX51t2+XtU4rRPeIENFWxdszImZsz8w=
Subject key identifier: D3:84:8B:E4:A5:4A:E2:2E:FC:48:14:13:1D:9D:D6:4B:4B:ED:B9:BA
Authority key identifier: D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
Certificate issuer: /CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Certificate serial: 01987BD297F6CB3C4450CF4A3364C0D3ED5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
Manifest number: 1080
Signing time: Tue 05 Aug 2025 20:00:55 +0000
Manifest this update: Tue 05 Aug 2025 20:00:55 +0000
Manifest next update: Wed 06 Aug 2025 20:00:55 +0000
Files and hashes: 1: 2JFWCWVvCPeijSS3xLqbY5ygsAk.crl (hash: mWtxspMzBWC6Sxj2mEDLvdeoiydxSAaHXsK+14oV/Tc=)
2: Wi60RxjWIlDPb3_szVmN-Gl0qoE.roa (hash: IAjzw2r7E4lx4vW0Aq4BO6OsCC7MgvRuI1axCmQxfb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 20:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:d2:97:f6:cb:3c:44:50:cf:4a:33:64:c0:d3:ed:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Validity
Not Before: Aug 5 20:00:55 2025 GMT
Not After : Aug 6 20:00:55 2025 GMT
Subject: CN=d3848be4a54ae22efc4814131d9dd64b4bedb9ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d5:3c:e3:f9:c3:06:43:85:23:89:f6:a2:4b:
08:da:07:a5:d0:ff:7a:8c:ac:f1:ba:52:6b:e6:11:
e7:36:68:36:43:13:4d:2e:aa:2f:4d:c6:08:87:14:
bf:11:3f:7d:4e:5f:0b:f3:4a:e9:5f:4d:5f:c1:ef:
a9:3f:75:0a:e7:b0:a2:9a:be:3e:28:3a:a8:9d:a7:
eb:84:f7:5a:8d:5a:c7:1c:84:3b:84:b6:dd:54:77:
71:4a:80:43:e2:b6:e5:38:77:bf:13:a4:6c:f3:7e:
a3:7e:d8:de:22:a4:ca:27:d4:27:c1:42:d0:c4:4a:
cd:91:3c:16:5d:27:d2:3a:d0:e1:82:23:10:6c:1b:
99:26:60:b5:e0:22:d8:c0:99:cd:88:54:32:ec:cc:
82:ad:d6:7f:21:0f:d5:95:f2:9d:f4:68:dd:fc:34:
ef:85:a0:23:87:f0:ee:9a:a7:7f:3f:d1:cf:d0:fa:
db:63:d2:fe:40:0a:19:69:22:c9:65:e7:ec:8c:48:
ba:c1:97:8b:08:0e:cb:84:39:e0:26:be:e4:16:82:
81:6f:d6:64:cd:d6:f9:f0:a4:f8:aa:3b:af:88:cc:
d7:d1:d5:66:26:3b:f0:70:d2:61:55:da:72:2a:3a:
b4:cd:3a:58:ca:c1:2a:e8:97:96:10:ad:5b:13:c7:
dd:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:84:8B:E4:A5:4A:E2:2E:FC:48:14:13:1D:9D:D6:4B:4B:ED:B9:BA
X509v3 Authority Key Identifier:
keyid:D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:8d:a1:ee:c4:e4:42:4f:ab:3b:8e:09:16:0d:db:e1:e0:19:
67:eb:cd:70:c1:38:4a:da:c2:d2:7c:a5:f1:5d:4a:39:39:07:
04:c9:ba:c2:98:21:3a:89:f8:df:62:94:d8:06:dd:9c:40:bc:
4e:d5:d9:20:35:80:b6:6a:7b:47:a2:07:f2:e0:6e:bf:40:4c:
ad:4c:1f:7d:a9:ce:0d:b6:52:45:a1:72:56:e1:70:5e:8c:2d:
4c:02:eb:bd:a1:5e:7c:3e:f6:17:13:3b:37:47:29:1e:44:b1:
ab:71:a5:6c:55:7b:e3:3c:7c:ad:18:47:75:20:aa:ee:ce:c8:
73:a1:b7:72:ef:65:0f:a8:34:9b:38:ac:78:49:35:ba:33:62:
d5:c9:a2:d0:1d:e9:c1:32:54:71:48:db:26:6a:ed:1e:05:cf:
eb:9c:ed:de:52:32:1a:6d:de:46:f8:53:d1:fe:51:27:05:13:
29:89:a2:df:df:c3:f3:b1:4b:f1:a7:54:83:8d:0c:9c:77:3a:
aa:1b:75:9d:b1:ca:98:67:a8:73:47:d8:c6:5f:a3:5c:df:b2:
6e:e7:3f:2d:d3:55:f3:5b:8e:bd:cf:5e:a7:f0:71:21:5f:d6:
df:80:be:9f:53:b4:36:09:77:9e:97:bd:e9:2c:44:e1:d1:b4:
a1:e1:c6:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:55:05 2025 by rpki-client