Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft
File: 2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft (raw, json)
Hash identifier: VhYo2S0UyJgehFmMH/ZKgOPJ49ZXQzJA25SGWC2JYhM=
Subject key identifier: BA:45:D6:9A:96:C9:9B:4C:CD:4C:79:3D:30:56:AF:F6:51:C6:48:36
Authority key identifier: D8:D6:62:DC:C6:FE:3B:81:EF:3D:E2:FC:A3:CF:CE:DC:11:EB:AA:43
Certificate issuer: /CN=d8d662dcc6fe3b81ef3de2fca3cfcedc11ebaa43
Certificate serial: 0198A0F1869CE98104271B7BF351081DCCFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft
Manifest number: 1646
Signing time: Wed 13 Aug 2025 01:00:39 +0000
Manifest this update: Wed 13 Aug 2025 01:00:39 +0000
Manifest next update: Thu 14 Aug 2025 01:00:39 +0000
Files and hashes: 1: 2NZi3Mb-O4HvPeL8o8_O3BHrqkM.crl (hash: VZ+PGp2T/WfVE/NA3L7qr4RErlHxiB4dNyFri3RRWEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:f1:86:9c:e9:81:04:27:1b:7b:f3:51:08:1d:cc:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d662dcc6fe3b81ef3de2fca3cfcedc11ebaa43
Validity
Not Before: Aug 13 01:00:39 2025 GMT
Not After : Aug 14 01:00:39 2025 GMT
Subject: CN=ba45d69a96c99b4ccd4c793d3056aff651c64836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:83:d8:10:15:94:a7:30:a8:95:af:c9:cf:03:
67:e7:a8:c5:dc:98:7e:d3:a7:69:31:d3:39:76:ba:
2e:ca:36:49:21:0c:13:6c:9f:a2:8c:26:9c:d8:ba:
c2:e3:f0:72:ea:7d:cc:6f:38:03:16:b9:83:4e:06:
ff:c9:b9:af:95:a6:59:c6:e4:40:9e:b0:63:7d:72:
d4:11:68:dd:75:cb:68:b9:40:8e:a2:67:77:53:ab:
08:36:97:ad:9f:db:56:4d:02:4a:0c:7d:51:82:cd:
12:05:3b:ac:ca:4f:ae:32:a3:90:66:28:8d:15:27:
f2:21:de:10:48:ef:26:9b:c3:da:82:74:80:0a:81:
79:65:48:2b:c3:13:df:d4:6d:96:81:00:ce:23:96:
4a:49:e0:92:20:f1:da:57:05:77:3a:bc:4c:77:60:
6e:d5:13:e3:f4:0b:52:8b:80:cf:0f:57:6b:8c:1a:
54:ac:8f:cf:91:72:62:67:f8:22:c9:62:e1:14:e4:
af:47:5b:b1:a0:6e:4a:ee:40:e1:0a:5b:3a:da:3f:
dc:2d:ed:21:d0:c4:e3:45:4e:31:29:e7:77:10:3c:
1c:09:f1:50:b6:21:8c:15:e9:c7:55:7e:cf:36:87:
5d:5f:78:3a:92:e9:65:6d:f9:ae:86:42:d0:be:04:
d6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:45:D6:9A:96:C9:9B:4C:CD:4C:79:3D:30:56:AF:F6:51:C6:48:36
X509v3 Authority Key Identifier:
keyid:D8:D6:62:DC:C6:FE:3B:81:EF:3D:E2:FC:A3:CF:CE:DC:11:EB:AA:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:e0:13:9e:cd:8a:40:68:7c:18:6c:b6:77:10:fe:f0:12:52:
08:e6:b4:87:7f:d3:1d:48:de:a9:5c:3a:95:e3:f5:4d:d2:01:
a2:10:ce:93:00:b4:b8:a2:72:73:80:8b:10:27:5f:4f:c0:a2:
65:d4:77:08:ed:6f:ca:91:da:73:8c:07:c6:31:36:40:9b:ad:
88:fc:ca:4e:5f:4e:d3:cd:fa:58:4d:c7:f5:61:fc:05:cc:a5:
8f:d0:4b:67:f8:a4:ec:02:5c:20:a2:50:ba:0f:74:56:9a:20:
8d:1a:ea:c5:f5:87:44:94:b4:aa:60:64:b5:45:04:25:ae:31:
24:fa:09:13:6d:af:17:27:5f:cb:12:5c:16:b4:7b:a5:96:7f:
2f:ff:22:3e:03:40:44:39:b6:3c:6a:07:53:54:b4:60:f9:10:
87:34:f8:84:33:17:1e:07:5a:d9:18:cd:d5:7b:88:a2:61:d7:
a2:56:04:bd:28:6f:35:74:15:3a:43:f2:68:f7:50:00:01:ae:
4e:f2:96:aa:6c:2a:83:58:20:e1:4f:92:36:42:04:1a:08:5d:
ff:24:3d:68:6c:14:d4:44:6d:fb:05:fe:45:75:d7:5a:67:4b:
1c:08:8b:d4:78:4d:aa:90:18:cc:d7:50:dd:07:f7:7e:63:1d:
24:70:63:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 04:24:26 2025 by rpki-client