Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
File: 2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft (raw, json)
Hash identifier: r0a0Q9/Jn5dk+tF84Q1vUv45Jlp0pXlVxNdFPsRdNRQ=
Subject key identifier: 15:EB:1A:D5:12:F4:E0:9A:C0:C9:19:E2:01:FD:90:C5:BE:D7:CD:92
Authority key identifier: D9:93:66:35:D1:2D:6C:E2:32:E1:12:9C:8F:18:CE:DB:83:6E:CD:D7
Certificate issuer: /CN=d9936635d12d6ce232e1129c8f18cedb836ecdd7
Certificate serial: 0198A04D8B2CDF98EA8858CEEC3728C19F14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
Manifest number: 0D0F
Signing time: Tue 12 Aug 2025 22:01:33 +0000
Manifest this update: Tue 12 Aug 2025 22:01:33 +0000
Manifest next update: Wed 13 Aug 2025 22:01:33 +0000
Files and hashes: 1: 2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl (hash: lfFpt6/YNP/PbWCbZu4By2vAkA+36dt46+VkQJJJptE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4d:8b:2c:df:98:ea:88:58:ce:ec:37:28:c1:9f:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9936635d12d6ce232e1129c8f18cedb836ecdd7
Validity
Not Before: Aug 12 22:01:33 2025 GMT
Not After : Aug 13 22:01:33 2025 GMT
Subject: CN=15eb1ad512f4e09ac0c919e201fd90c5bed7cd92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:86:d5:bf:7b:83:5b:12:0d:aa:83:75:53:21:
24:0f:f8:7b:90:6f:c8:24:da:2b:33:c2:31:c6:6e:
fb:de:44:cf:38:d8:a7:1d:ff:f1:7f:9c:bd:49:50:
71:3e:cd:03:19:14:d7:55:a5:82:a3:83:ea:6e:6f:
4a:9c:6b:f9:44:e1:89:d3:91:48:5b:36:83:29:aa:
ae:05:79:06:47:fb:18:83:38:f2:61:83:b5:0f:c1:
1b:a8:9b:b6:35:8e:21:62:19:26:6f:f9:46:0e:72:
b2:97:6b:db:35:d6:90:35:27:89:47:7f:ba:a3:5c:
2f:80:d7:e9:c3:81:ea:e3:2b:f9:6b:2d:57:60:0a:
90:c9:a1:a2:26:b5:c2:9b:a8:be:e0:8c:51:72:af:
f0:da:85:fe:f6:0c:b8:a0:e9:42:b9:8f:31:70:55:
87:69:d8:0a:ed:e9:9f:0a:f0:3c:26:af:55:da:56:
7f:f9:31:c8:8b:78:4d:b6:c6:79:fd:de:d3:0e:a9:
11:47:7e:6e:92:25:de:05:d3:da:71:51:0c:f3:e2:
f8:11:5d:cb:9b:4f:35:03:a1:d8:3d:ef:8c:54:45:
bb:e3:e6:5d:25:bf:64:6e:15:f2:02:eb:38:95:1f:
79:c4:d1:ea:03:b7:e6:a8:98:b7:6d:94:ac:d3:3a:
26:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:EB:1A:D5:12:F4:E0:9A:C0:C9:19:E2:01:FD:90:C5:BE:D7:CD:92
X509v3 Authority Key Identifier:
keyid:D9:93:66:35:D1:2D:6C:E2:32:E1:12:9C:8F:18:CE:DB:83:6E:CD:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:0c:0b:51:69:88:36:bb:09:6c:2d:d3:30:89:fa:82:59:1e:
54:a2:32:25:49:cb:f3:60:04:cd:83:14:cf:27:73:bf:ed:84:
cb:f5:84:de:84:60:d1:24:ea:e8:6b:e1:9b:fd:55:2c:41:ad:
94:84:c2:01:4a:9a:eb:6f:6a:90:8e:68:e2:26:e3:d3:94:dc:
90:2c:e3:f5:d4:34:1c:cc:f2:29:4f:c9:8c:87:5c:18:1b:bc:
ac:29:cb:9a:8d:8c:c5:70:e2:5e:70:26:7c:ee:51:3a:ad:3b:
97:e3:b5:e0:30:2f:12:0d:eb:0e:d6:00:ab:13:33:8d:61:06:
f1:7a:1c:d9:71:d6:8e:5a:48:08:59:5c:92:d7:50:4c:7b:b1:
b4:9d:13:1f:b7:eb:f2:63:36:4a:e8:9d:90:a0:36:e9:4d:d1:
38:f2:3f:4f:8f:b7:4a:84:b8:26:99:b9:69:1c:d9:1a:e0:b0:
89:e2:7f:5c:ef:d5:8a:48:0a:88:63:eb:e4:c6:3e:fa:30:8a:
06:8b:a9:05:6b:7a:bc:2b:6b:c0:ae:1c:b1:fa:10:be:c7:90:
c1:6d:a9:02:23:53:3f:19:7f:6d:07:82:d1:02:8a:67:51:cb:
14:56:df:db:b9:a1:97:17:a7:9e:64:c9:74:da:aa:fc:7f:d1:
ad:75:13:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 05:52:34 2025 by rpki-client