Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
File: 2AtJfVG9n0e4T2k9aH--jPbP-3U.mft (raw, json)
Hash identifier: t8+AdWKoTVcjngaNPPiVM3u9mqAiV+C0OQLsovLhb9I=
Subject key identifier: 7A:92:48:48:6B:67:C2:BE:A1:07:4D:96:AF:46:94:3C:21:28:78:6B
Authority key identifier: D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75
Certificate issuer: /CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75
Certificate serial: 01987562C77728CF9159CE8704FED23E503A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
Manifest number: 0727
Signing time: Mon 04 Aug 2025 14:01:04 +0000
Manifest this update: Mon 04 Aug 2025 14:01:04 +0000
Manifest next update: Tue 05 Aug 2025 14:01:04 +0000
Files and hashes: 1: 2AtJfVG9n0e4T2k9aH--jPbP-3U.crl (hash: gfSeaIbHtBG9K7gOJmpE6LY+4VGH75fGlmNCO7A6AfE=)
2: hdAMTn4jDkrD2hHAq0_eM98drDA.roa (hash: tBnX0T05qx7IyB4+d81WJZpMceoIZZmZdpDJiqlpcEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:62:c7:77:28:cf:91:59:ce:87:04:fe:d2:3e:50:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d80b497d51bd9f47b84f693d687fbe8cf6cffb75
Validity
Not Before: Aug 4 14:01:04 2025 GMT
Not After : Aug 5 14:01:04 2025 GMT
Subject: CN=7a9248486b67c2bea1074d96af46943c2128786b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:63:33:7b:6d:6d:b3:10:eb:ef:81:f4:31:63:
9a:14:37:ec:ae:d2:e1:4d:ab:48:ef:a4:e8:4d:2c:
9b:fa:3f:ff:5a:3e:d1:43:4b:2d:4b:1f:21:a0:a3:
ba:2d:08:24:57:d9:a5:d7:3d:46:96:67:28:99:2c:
32:8e:19:fe:ed:e1:6f:ea:f7:8b:eb:56:ea:9a:02:
d7:ff:0d:c9:fb:f3:9c:f8:2d:c5:20:dc:78:8f:76:
e0:ef:16:5a:1f:57:f6:73:61:b7:20:2c:94:f7:8b:
c1:8f:76:bc:fa:20:84:2d:38:02:43:f4:06:4b:c1:
f6:bf:e9:f5:00:45:f3:56:8a:87:6a:6d:3f:a6:cc:
4d:e3:de:37:63:a4:af:f8:c5:c8:77:2c:26:ae:69:
aa:d5:45:2a:bf:0a:d7:8d:fc:c0:82:55:d1:84:88:
de:51:b5:95:59:1c:b6:b4:a7:11:1a:1e:e6:a0:fd:
3d:12:89:66:65:c8:da:3d:e2:0e:17:ce:bc:a0:9e:
87:1d:66:4d:89:6b:e2:ec:52:4e:9b:fc:e0:0f:78:
11:3f:e9:69:bf:5e:11:43:31:d9:44:8e:3c:a0:e1:
25:82:fc:18:c7:bf:a6:2c:49:99:95:df:ed:f5:eb:
70:4d:c4:df:3b:39:bb:ff:f5:55:69:f8:05:3a:1f:
5d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:92:48:48:6B:67:C2:BE:A1:07:4D:96:AF:46:94:3C:21:28:78:6B
X509v3 Authority Key Identifier:
keyid:D8:0B:49:7D:51:BD:9F:47:B8:4F:69:3D:68:7F:BE:8C:F6:CF:FB:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2AtJfVG9n0e4T2k9aH--jPbP-3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/920dc4-cd3c-4cac-acfc-4c85445a036a/1/2AtJfVG9n0e4T2k9aH--jPbP-3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:bf:50:a0:e5:f3:7d:7f:11:a9:33:b5:ea:78:3c:23:69:29:
f8:f6:87:97:34:ca:9d:4f:f3:d8:0b:ac:a7:57:3d:ee:62:3c:
c3:70:c9:26:c3:ac:73:f6:93:bd:db:01:98:c7:39:a5:ca:8d:
12:e8:ab:ab:96:ff:34:26:8d:dc:f7:c8:20:f1:70:f4:0b:59:
79:33:04:73:f1:e1:f5:77:6c:f9:46:c9:bf:54:02:6d:89:a2:
71:ab:15:d6:21:9f:d2:0e:c0:e0:be:47:9c:7b:3f:dd:1a:12:
d9:ea:a6:9c:ce:88:72:e3:1a:66:7b:0f:03:bc:72:f0:c4:38:
a5:db:ce:e9:2b:ff:83:06:89:db:97:93:36:bd:1d:82:0d:52:
44:a8:69:c4:1e:8a:51:77:1f:bc:90:35:95:d4:2d:48:28:2b:
02:86:f8:52:d9:00:2d:4e:50:8a:2a:2e:ea:ee:b1:46:50:5a:
45:59:b9:ab:69:89:cb:d5:e4:fc:90:f0:d1:44:2d:76:a4:f6:
9f:42:92:9e:38:18:8e:ca:c9:1f:4a:42:e5:b9:28:16:46:1a:
61:81:33:91:24:e2:80:d2:ef:42:ef:07:50:fd:86:c3:46:52:
8d:ee:74:49:f9:c3:0a:02:39:d7:7f:09:a3:56:07:92:26:ab:
06:66:63:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh1Ysd3KM+RWc6HBP7SPlA6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MGI0OTdkNTFiZDlmNDdiODRmNjkzZDY4N2ZiZThjZjZj
ZmZiNzUwHhcNMjUwODA0MTQwMTA0WhcNMjUwODA1MTQwMTA0WjAzMTEwLwYDVQQD
Eyg3YTkyNDg0ODZiNjdjMmJlYTEwNzRkOTZhZjQ2OTQzYzIxMjg3ODZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5mMze21tsxDr74H0MWOaFDfsrtLh
TatI76ToTSyb+j//Wj7RQ0stSx8hoKO6LQgkV9ml1z1GlmcomSwyjhn+7eFv6veL
61bqmgLX/w3J+/Oc+C3FINx4j3bg7xZaH1f2c2G3ICyU94vBj3a8+iCELTgCQ/QG
S8H2v+n1AEXzVoqHam0/psxN4943Y6Sv+MXIdywmrmmq1UUqvwrXjfzAglXRhIje
UbWVWRy2tKcRGh7moP09EolmZcjaPeIOF868oJ6HHWZNiWvi7FJOm/zgD3gRP+lp
v14RQzHZRI48oOElgvwYx7+mLEmZld/t9etwTcTfOzm7//VVafgFOh9dTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHqSSEhrZ8K+oQdNlq9GlDwhKHhrMB8GA1UdIwQY
MBaAFNgLSX1RvZ9HuE9pPWh/voz2z/t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkF0SmZWRzluMGU0VDJrOWFILS1qUGJQLTNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy85MjBkYzQtY2QzYy00Y2FjLWFjZmMt
NGM4NTQ0NWEwMzZhLzEvMkF0SmZWRzluMGU0VDJrOWFILS1qUGJQLTNVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy85MjBkYzQtY2QzYy00Y2FjLWFjZmMtNGM4NTQ0NWEwMzZh
LzEvMkF0SmZWRzluMGU0VDJrOWFILS1qUGJQLTNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyL9QoOXz
fX8RqTO16ng8I2kp+PaHlzTKnU/z2Ausp1c97mI8w3DJJsOsc/aTvdsBmMc5pcqN
Euirq5b/NCaN3PfIIPFw9AtZeTMEc/Hh9Xds+UbJv1QCbYmicasV1iGf0g7A4L5H
nHs/3RoS2eqmnM6IcuMaZnsPA7xy8MQ4pdvO6Sv/gwaJ25eTNr0dgg1SRKhpxB6K
UXcfvJA1ldQtSCgrAob4UtkALU5Qiiou6u6xRlBaRVm5q2mJy9Xk/JDw0UQtdqT2
n0KSnjgYjsrJH0pC5bkoFkYaYYEzkSTigNLvQu8HUP2Gw0ZSje50SfnDCgI5138J
o1YHkiarBmZjug==
-----END CERTIFICATE-----
Generated at Mon Aug 4 18:37:00 2025 by rpki-client