Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
File: 2BFKkiBvChn3M52guJZpxKX-Urk.mft (raw, json)
Hash identifier: QVyg9B72a85eXNNlNoEpM2Ceg1kxznxQIuKYmFLZ2dQ=
Subject key identifier: AD:42:0B:8A:03:68:C8:60:AF:47:DD:CE:89:D4:1B:0D:01:C0:BB:FE
Authority key identifier: D8:11:4A:92:20:6F:0A:19:F7:33:9D:A0:B8:96:69:C4:A5:FE:52:B9
Certificate issuer: /CN=d8114a92206f0a19f7339da0b89669c4a5fe52b9
Certificate serial: 0198936D63739155CFE89C6F563BB893A89E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
Manifest number: 09
Signing time: Sun 10 Aug 2025 10:01:16 +0000
Manifest this update: Sun 10 Aug 2025 10:01:16 +0000
Manifest next update: Mon 11 Aug 2025 10:01:16 +0000
Files and hashes: 1: 2BFKkiBvChn3M52guJZpxKX-Urk.crl (hash: 8EU7Cf1/nBYIDjrIqWhPdKb6iBJ3d5PRsOCwSsCzKQ4=)
2: G9oTd4bBpmlm3pZMn3YyyXAVIyI.roa (hash: XC2pyO3ZNZCKadVf4J0EDWPKrfSqScmOhmM8oMNNkCI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:6d:63:73:91:55:cf:e8:9c:6f:56:3b:b8:93:a8:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8114a92206f0a19f7339da0b89669c4a5fe52b9
Validity
Not Before: Aug 10 10:01:16 2025 GMT
Not After : Aug 11 10:01:16 2025 GMT
Subject: CN=ad420b8a0368c860af47ddce89d41b0d01c0bbfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f4:99:6e:b8:a9:73:a1:9d:11:ad:e4:72:d8:
e4:ac:0e:4b:50:aa:79:a8:6b:35:be:ff:ab:3a:62:
cd:0d:ae:3f:61:c1:4e:a9:6c:b5:05:bd:82:fa:c5:
4b:e1:8c:44:3e:9f:bd:d8:ec:04:1b:09:70:95:61:
1a:af:30:64:01:5d:6d:3d:88:45:d6:ce:2a:19:2f:
d2:ab:68:69:ab:2a:0a:c3:2c:a8:0c:a7:5d:e8:43:
7d:ca:a0:ed:43:6d:52:ab:cd:ed:a4:27:ab:87:71:
0c:6f:27:b5:95:b2:e7:51:06:55:71:47:cf:6a:5a:
2b:ae:f1:e4:d2:65:a9:93:9a:0b:56:c2:2e:c9:0b:
6d:0f:37:d9:18:99:59:e5:a0:13:59:17:b6:ff:b3:
10:2d:5d:68:0b:12:0a:b7:98:8c:c2:53:4f:28:a8:
7c:6b:8d:02:d6:46:71:52:9c:a9:3a:e6:6b:75:33:
a6:54:fb:23:b2:6d:b5:8a:94:4f:5a:dd:16:78:a8:
f4:8b:ea:07:19:85:87:6e:23:03:d6:8d:d9:e4:87:
b0:6e:5f:46:5a:3f:d8:95:d2:87:38:d1:7b:4e:29:
02:47:6c:a2:74:d5:61:62:0a:64:8f:c6:a8:a6:0e:
b1:1e:45:52:d8:ab:09:6b:85:91:03:5c:c6:56:ea:
23:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:42:0B:8A:03:68:C8:60:AF:47:DD:CE:89:D4:1B:0D:01:C0:BB:FE
X509v3 Authority Key Identifier:
keyid:D8:11:4A:92:20:6F:0A:19:F7:33:9D:A0:B8:96:69:C4:A5:FE:52:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BFKkiBvChn3M52guJZpxKX-Urk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/fdace9-8212-4ce1-a999-5208d9854364/1/2BFKkiBvChn3M52guJZpxKX-Urk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:7a:7d:ed:a2:00:ab:ea:af:4f:c3:87:f9:b3:a9:13:a9:8d:
0d:61:49:fb:92:65:1a:73:19:29:5f:38:40:18:de:f4:f7:4d:
b9:5e:83:9c:c4:e9:4b:3f:54:28:98:95:db:80:c7:8a:25:8d:
89:cb:82:98:a9:91:56:63:f6:1f:41:cb:7c:d8:66:3c:fc:58:
cf:ba:39:57:7a:39:80:4a:f9:35:a7:3e:74:ec:25:03:75:72:
76:1a:50:b6:72:bd:e3:3a:95:71:8a:ba:7a:49:85:55:bd:c4:
5f:76:ce:b0:b4:8a:db:14:51:37:be:61:4e:62:6c:bb:af:31:
23:bd:a9:ef:4b:b6:9e:da:2a:e6:9a:ec:3a:26:ae:35:af:6e:
2c:df:f3:1e:75:d1:77:d0:dd:87:67:95:0c:74:08:5b:73:3e:
c9:8e:9a:38:73:c4:a0:dc:4a:2f:b6:cc:73:1f:40:44:ce:bb:
09:53:2a:01:7b:f3:9d:51:2a:ac:f4:61:e8:d4:01:ae:28:d5:
c0:1c:30:50:45:6b:70:f7:ba:43:bc:bf:85:82:07:37:22:a3:
29:ca:3a:22:f8:f0:2d:09:0b:4b:02:82:0e:3d:3e:46:5c:d3:
44:b1:88:48:85:50:96:51:8c:69:f8:e0:27:31:8b:98:fb:9e:
f2:c5:f9:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 15:59:27 2025 by rpki-client