Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: OwNrxmip23PVGvpmiwKXJ2KQeCDJJYAY7xi8t7hwX2U=
Subject key identifier: 47:E3:1E:FF:C1:81:74:7B:22:89:57:ED:AC:82:FF:92:08:80:5A:AE
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 01988B7C93221E8BEF6E0B58BFF1D6BA3801
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 1624
Signing time: Fri 08 Aug 2025 21:00:53 +0000
Manifest this update: Fri 08 Aug 2025 21:00:53 +0000
Manifest next update: Sat 09 Aug 2025 21:00:53 +0000
Files and hashes: 1: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: GCqhAJP6bTupyxqoqNHok7vdqiFkqU18ZUvpaA2B6Sw=)
2: Lr1Je63vs8PyvkKI1_N9un3D4qE.roa (hash: hbRmpQBdQ4b6GdZPWppZ6a4wJHdosMiH1PY+13rdPiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:7c:93:22:1e:8b:ef:6e:0b:58:bf:f1:d6:ba:38:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Aug 8 21:00:53 2025 GMT
Not After : Aug 9 21:00:53 2025 GMT
Subject: CN=47e31effc181747b228957edac82ff9208805aae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:68:eb:f6:18:e4:d9:7a:74:89:5b:28:ff:50:
9e:61:66:37:f7:fb:4a:08:ff:a8:1d:07:9c:45:6a:
b6:c2:bc:c5:6b:a3:56:57:70:b8:72:25:16:eb:82:
d9:71:5c:b7:8b:53:82:aa:d5:3a:2d:f2:dc:28:95:
f4:0b:4f:a8:f7:8a:e1:cc:63:a0:24:1b:14:52:91:
22:e3:af:2c:ec:0a:8d:29:b0:80:4e:69:e0:22:bc:
2f:9b:b3:75:d4:e1:2a:23:d8:19:9b:7e:f7:97:b2:
e5:28:0a:5a:7c:ac:c9:9c:b0:ea:98:14:93:a7:10:
a8:64:dc:15:46:32:26:17:11:b1:7d:0d:66:8e:dc:
f7:d9:33:3d:1e:cc:33:d2:53:2b:05:0d:12:77:2f:
12:7c:5b:32:e4:34:41:bb:47:70:87:b1:b6:09:45:
92:5f:9e:ed:76:71:5f:a7:21:95:ae:75:96:ed:6a:
0a:27:92:39:12:5f:9c:5f:b0:fc:6a:fc:9a:ac:6d:
21:da:3f:40:ee:fc:78:7a:a6:d4:78:da:64:02:8e:
74:1a:db:c6:24:a0:d0:4e:43:1c:71:0d:e8:2a:be:
3a:67:fd:62:a5:2e:09:38:67:c4:3a:44:0a:d3:fc:
ed:5d:b0:be:31:52:a8:3b:74:cb:c7:cf:49:3e:a7:
d2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E3:1E:FF:C1:81:74:7B:22:89:57:ED:AC:82:FF:92:08:80:5A:AE
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:04:9a:6f:76:2c:ef:45:e5:75:cb:d2:49:76:f1:57:b5:cb:
5c:64:34:4f:6f:61:3e:56:57:4e:9d:7c:09:cb:19:0b:f2:4f:
f3:90:25:33:7b:1a:43:1a:d0:d5:59:d9:85:b8:a5:a1:bd:7a:
0a:89:de:fd:6c:8c:51:15:c9:ca:98:99:40:32:7c:52:ba:2e:
10:4d:b2:39:bb:bf:c8:b3:e1:2a:03:f2:ec:f6:e0:83:25:24:
c1:93:42:6d:93:ba:59:25:22:ee:fd:b2:0b:99:17:8f:22:31:
c1:09:d2:5a:f7:bc:37:31:24:0f:5b:80:b0:5b:d8:23:6d:18:
df:9f:c7:49:6f:02:b3:02:41:11:3a:2d:77:d1:25:37:4c:6e:
54:db:c6:24:94:9f:00:f8:2c:e5:7a:86:8d:31:5c:51:3b:ee:
0e:74:29:fa:73:d2:b9:0c:bc:cf:e1:20:d9:47:df:08:fe:07:
93:c0:46:69:a8:bb:3d:bd:16:37:a7:fe:95:f9:bd:c3:5a:d0:
2e:1e:f4:6f:3b:9f:bb:3e:e6:83:af:7c:e8:56:2d:6d:4c:1d:
4c:79:5e:b3:95:70:a5:c7:07:6c:ed:27:7d:b9:88:fa:2b:a3:
f0:56:c8:71:32:4c:ce:6d:14:33:06:14:e8:b5:86:2a:a1:1f:
e3:49:08:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 03:02:03 2025 by rpki-client