Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
File: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft (raw, json)
Hash identifier: oMH57ZZs5f68QxzeWVmczG4T/oklBLDORzT/DO8xehI=
Subject key identifier: 5F:FA:4A:0A:94:2D:20:EE:C2:72:1A:AC:4C:C0:EE:6E:C7:47:D1:5E
Authority key identifier: DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
Certificate issuer: /CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Certificate serial: 019874BE4377DD25E373995E04476E9FDEC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
Manifest number: 0459
Signing time: Mon 04 Aug 2025 11:01:22 +0000
Manifest this update: Mon 04 Aug 2025 11:01:22 +0000
Manifest next update: Tue 05 Aug 2025 11:01:22 +0000
Files and hashes: 1: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl (hash: gGbmZBRIAa7RRW5M0If+UhvC+Ija+uf6daTcg5Yr0TM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 11:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:be:43:77:dd:25:e3:73:99:5e:04:47:6e:9f:de:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Validity
Not Before: Aug 4 11:01:22 2025 GMT
Not After : Aug 5 11:01:22 2025 GMT
Subject: CN=5ffa4a0a942d20eec2721aac4cc0ee6ec747d15e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:71:d9:a8:bb:2f:c6:35:73:7c:52:c8:80:a0:
2e:a3:95:04:f3:9f:b9:67:0d:e6:a1:a5:08:b9:4d:
6b:5b:4f:4d:ac:c6:75:e8:92:1c:c2:e4:c1:31:bf:
0d:95:e8:f7:60:66:ef:dc:52:62:88:42:2e:ee:ec:
07:7d:6e:89:ab:ca:8b:dc:a8:4c:ec:64:b9:89:61:
ac:3f:8d:fb:9f:57:e5:20:ca:9d:0c:83:11:23:bb:
77:67:b8:db:2d:03:be:0b:cb:df:6f:7f:1b:4a:8e:
90:84:3c:22:4a:af:ff:cc:aa:34:61:35:6d:af:3a:
7c:55:99:82:97:b2:7b:64:35:6c:a0:c3:a4:d0:56:
c0:f1:dd:42:bd:a2:af:e6:4d:85:79:46:6a:0a:0c:
a7:e6:93:59:50:f5:ae:85:71:6f:8e:09:f5:98:d7:
1b:72:31:25:f3:b1:4b:14:43:40:89:2b:ad:e9:eb:
d6:ec:3c:5f:1a:74:0b:04:fd:22:32:72:fb:b0:f9:
bc:b0:7d:db:70:73:8f:6e:11:9c:01:b9:7b:57:5e:
21:7a:f7:0d:d9:dd:48:d0:c9:88:7d:7e:d0:ef:be:
17:d8:48:d4:b5:ea:b4:91:70:78:4c:c1:07:3e:fd:
32:c9:bd:0b:46:f8:03:ef:98:d0:85:91:48:20:7a:
37:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:FA:4A:0A:94:2D:20:EE:C2:72:1A:AC:4C:C0:EE:6E:C7:47:D1:5E
X509v3 Authority Key Identifier:
keyid:DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:2b:5b:cf:8b:7e:69:43:48:0b:a8:34:c8:f3:ab:e8:6d:ec:
44:13:78:79:a1:1d:fb:ae:28:ba:3a:e8:8c:bc:78:05:1b:1e:
55:e3:04:07:9b:f0:7d:f2:1f:17:80:83:2f:f5:a7:b5:68:f3:
4a:b1:37:0e:81:b7:21:85:12:74:49:b5:4d:8d:7e:47:c1:8c:
96:17:e8:e2:52:f4:21:d9:e3:cc:92:33:ac:f7:e2:5e:7c:87:
9b:62:61:75:51:9c:2f:4b:b3:58:58:7d:c3:4a:72:56:85:3c:
2a:80:2d:78:23:a1:47:88:20:4d:1d:97:53:bb:44:23:7f:7a:
65:30:e2:f2:5d:0b:17:28:ad:84:d7:59:fc:d0:ae:a2:5a:73:
d7:9d:7d:44:e7:51:bf:5a:8a:0b:0e:0d:28:0a:07:88:84:ab:
6e:90:7f:26:bb:03:ff:27:1d:f0:38:ab:64:7f:d7:b8:33:ee:
50:44:8a:a6:2a:50:df:70:f4:52:9d:3b:5b:d3:a1:42:46:0c:
2d:6b:20:6f:1f:c2:78:25:2c:6b:25:2f:18:d5:0a:39:48:f5:
e7:d8:c1:44:b1:80:07:ae:14:b9:28:e4:55:d1:4f:cd:90:85:
45:b9:88:75:22:24:99:96:cb:ee:f9:91:c9:9b:ad:ac:eb:e0:
7a:b8:be:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0vkN33SXjc5leBEdun97CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYTY3YzU4YjRhNmZlMjEyZmMyMGZiNzU2OTQ5YWRkYzFh
OWE2MmMwHhcNMjUwODA0MTEwMTIyWhcNMjUwODA1MTEwMTIyWjAzMTEwLwYDVQQD
Eyg1ZmZhNGEwYTk0MmQyMGVlYzI3MjFhYWM0Y2MwZWU2ZWM3NDdkMTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynHZqLsvxjVzfFLIgKAuo5UE85+5
Zw3moaUIuU1rW09NrMZ16JIcwuTBMb8Nlej3YGbv3FJiiEIu7uwHfW6Jq8qL3KhM
7GS5iWGsP437n1flIMqdDIMRI7t3Z7jbLQO+C8vfb38bSo6QhDwiSq//zKo0YTVt
rzp8VZmCl7J7ZDVsoMOk0FbA8d1CvaKv5k2FeUZqCgyn5pNZUPWuhXFvjgn1mNcb
cjEl87FLFENAiSut6evW7DxfGnQLBP0iMnL7sPm8sH3bcHOPbhGcAbl7V14hevcN
2d1I0MmIfX7Q774X2EjUteq0kXB4TMEHPv0yyb0LRvgD75jQhZFIIHo3bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF/6SgqULSDuwnIarEzA7m7HR9FeMB8GA1UdIwQY
MBaAFNqmfFi0pv4hL8IPt1aUmt3BqaYsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnFaOFdMU21faUV2d2ctM1ZwU2EzY0dwcGl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9mMjk1Y2UtODI2ZC00ZjU0LTk3MGYt
NTBmMzRmNDM1ZjAzLzEvMnFaOFdMU21faUV2d2ctM1ZwU2EzY0dwcGl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9mMjk1Y2UtODI2ZC00ZjU0LTk3MGYtNTBmMzRmNDM1ZjAz
LzEvMnFaOFdMU21faUV2d2ctM1ZwU2EzY0dwcGl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcStbz4t+
aUNIC6g0yPOr6G3sRBN4eaEd+64oujrojLx4BRseVeMEB5vwffIfF4CDL/WntWjz
SrE3DoG3IYUSdEm1TY1+R8GMlhfo4lL0IdnjzJIzrPfiXnyHm2JhdVGcL0uzWFh9
w0pyVoU8KoAteCOhR4ggTR2XU7tEI396ZTDi8l0LFyithNdZ/NCuolpz1519ROdR
v1qKCw4NKAoHiISrbpB/JrsD/ycd8DirZH/XuDPuUESKpipQ33D0Up07W9OhQkYM
LWsgbx/CeCUsayUvGNUKOUj159jBRLGAB64UuSjkVdFPzZCFRbmIdSIkmZbL7vmR
yZutrOvgeri+2g==
-----END CERTIFICATE-----
Generated at Mon Aug 4 14:00:09 2025 by rpki-client