Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
File: 2PuW6jr1HFMtfo_oyUN29R4epAI.mft (raw, json)
Hash identifier: Rz5dibqqG4cqDaLGMImflwgFXZkx5VeCju6WKxuWOCw=
Subject key identifier: 9D:8C:5A:DA:DE:9D:BD:66:7D:EC:9F:8F:61:04:B4:3A:02:79:59:77
Authority key identifier: D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
Certificate issuer: /CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Certificate serial: 01988A69DD27A4A6588573124C5FB2986826
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
Manifest number: 1447
Signing time: Fri 08 Aug 2025 16:00:50 +0000
Manifest this update: Fri 08 Aug 2025 16:00:50 +0000
Manifest next update: Sat 09 Aug 2025 16:00:50 +0000
Files and hashes: 1: 2PuW6jr1HFMtfo_oyUN29R4epAI.crl (hash: Vh25fBGmlaMidf27hpdX4iaAZhEymD2Optl9ZGTTIwc=)
2: qvV18edZ4nG1g9Z6XFGjfB91HGk.roa (hash: xA0FHg4k3qhHIOcw440t6o/vgKfLrTtDa1pgd5bBDMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 16:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:69:dd:27:a4:a6:58:85:73:12:4c:5f:b2:98:68:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8fb96ea3af51c532d7e8fe8c94376f51e1ea402
Validity
Not Before: Aug 8 16:00:50 2025 GMT
Not After : Aug 9 16:00:50 2025 GMT
Subject: CN=9d8c5adade9dbd667dec9f8f6104b43a02795977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c9:c5:45:42:ef:51:47:0e:b8:7e:c2:0f:25:
82:27:5e:ce:30:f5:c8:d8:7b:95:5c:7c:95:de:1c:
18:86:76:04:58:d1:95:48:41:e9:e6:2a:e6:f6:dd:
2a:35:49:3e:c7:92:ed:c7:cd:fb:18:21:b1:30:da:
ea:32:f5:48:8c:01:49:0e:af:f3:81:13:27:5d:72:
e1:16:85:06:06:d2:42:d8:b3:e3:aa:cb:95:91:06:
d4:45:44:33:0c:9a:7a:e5:f1:b9:b9:fa:a5:64:4f:
dd:09:fc:de:52:c7:7e:8f:83:1b:f9:9f:52:1d:9c:
28:06:ac:fe:00:da:31:a3:62:5c:89:78:a1:1b:3c:
14:02:f3:bb:e9:3f:a8:57:6c:f7:d2:31:82:b1:fa:
5c:a9:eb:fe:13:2c:dc:e9:96:ac:d2:8e:4c:3c:c0:
7a:e7:32:b1:cc:87:03:db:8e:99:7c:bc:11:c2:1a:
8e:95:b3:5a:ae:af:5b:62:c3:85:e0:67:5c:ce:81:
cc:fe:00:b2:1a:72:1f:37:91:12:1f:c3:fe:08:87:
bc:a2:66:17:60:16:dc:bd:17:d0:60:23:f8:98:21:
f2:65:56:40:d3:be:98:85:9c:74:4b:5b:59:11:91:
d4:b5:f8:61:6a:31:12:a0:0b:47:37:bd:4a:59:fd:
da:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:8C:5A:DA:DE:9D:BD:66:7D:EC:9F:8F:61:04:B4:3A:02:79:59:77
X509v3 Authority Key Identifier:
keyid:D8:FB:96:EA:3A:F5:1C:53:2D:7E:8F:E8:C9:43:76:F5:1E:1E:A4:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PuW6jr1HFMtfo_oyUN29R4epAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/53ffa0-9060-472c-aac2-8eb85e3283e2/1/2PuW6jr1HFMtfo_oyUN29R4epAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:a4:2a:a9:2e:45:53:d9:dd:68:2a:f6:ec:09:0f:48:05:94:
19:26:27:4d:4e:51:eb:fc:7f:d1:64:c5:96:28:24:a7:a1:24:
3c:66:2c:d8:11:0e:b7:fc:82:c7:88:c2:fc:b1:06:7a:e6:f3:
41:7a:21:97:d4:c5:b3:e3:7c:cb:1b:00:f7:09:9d:2c:d1:07:
73:5f:49:7c:a5:7e:56:35:01:84:99:fd:e7:26:5a:23:1a:62:
f3:11:a6:d6:37:5f:e0:7c:35:cb:5d:1b:3d:8a:6e:a4:6a:c9:
80:c6:67:89:b4:63:88:6d:c7:90:a6:5f:b9:65:f9:c4:a1:f9:
30:61:d2:70:9c:08:a7:f1:3d:57:27:88:2a:aa:cb:a4:33:e3:
80:1f:0a:ca:d0:30:0e:e2:0f:50:77:35:0b:bb:e1:06:b3:39:
b5:49:e1:c5:bb:84:95:5a:79:14:de:34:28:78:43:0a:a4:e6:
81:12:f4:1e:12:bd:5c:86:b0:78:52:fa:33:aa:8a:e4:c9:cc:
eb:75:9e:43:59:22:01:a3:68:96:0b:e5:55:b4:ee:9d:f1:2e:
79:4b:08:ae:05:52:2c:c6:98:2d:d3:34:84:7e:63:58:a7:23:
93:73:46:f9:6b:d4:86:86:53:a5:60:e6:56:2a:89:fe:33:7e:
2b:09:91:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 00:59:46 2025 by rpki-client