Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
File: 2xTnpr6Xzsb1vBpninbqbRYZwwY.mft (raw, json)
Hash identifier: zL2nw8QYs2HxZEi+FiSnhzHsgfL72ska6EVS7FMLeeM=
Subject key identifier: B9:73:C4:F6:C9:10:B4:D1:29:E9:95:4D:B2:84:41:49:3B:08:1D:9A
Authority key identifier: DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
Certificate issuer: /CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Certificate serial: 01989F71391ED468942BAACE5351422176F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
Manifest number: 13F1
Signing time: Tue 12 Aug 2025 18:00:54 +0000
Manifest this update: Tue 12 Aug 2025 18:00:54 +0000
Manifest next update: Wed 13 Aug 2025 18:00:54 +0000
Files and hashes: 1: 2xTnpr6Xzsb1vBpninbqbRYZwwY.crl (hash: QZcMIG4yEQ6xmALrp6ISqN5AV/FPx+/RzBtW1JJRV08=)
2: FjL5MqcK0dv0phSETNIP5t1SBWg.roa (hash: HghvVzu9hsO9wX3NaFq2EgUKtQhDl/MHwAlkrJlofBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:71:39:1e:d4:68:94:2b:aa:ce:53:51:42:21:76:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db14e7a6be97cec6f5bc1a678a76ea6d1619c306
Validity
Not Before: Aug 12 18:00:54 2025 GMT
Not After : Aug 13 18:00:54 2025 GMT
Subject: CN=b973c4f6c910b4d129e9954db28441493b081d9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e9:23:62:38:cb:d9:ce:17:2d:81:89:23:c6:
60:f2:04:ef:1c:e7:d3:cc:28:09:86:15:48:0f:56:
ee:cf:1a:03:7b:bd:ae:a5:d8:61:a3:af:7b:04:25:
d8:02:95:9b:d7:c8:6e:6d:f3:f7:91:d6:10:5e:b8:
41:a3:10:6f:44:cf:38:c3:8b:37:03:41:3c:e4:21:
48:f0:0a:6d:ea:0b:af:ef:dc:c8:bf:54:9a:18:c5:
9e:ae:3d:75:ce:5d:4a:2a:c6:d7:c1:d8:ab:25:8e:
30:4e:ae:4c:bb:f4:5f:4c:15:f6:9a:2f:4a:08:b5:
ce:50:bd:d6:3d:e9:64:23:27:50:ac:cc:c6:21:e5:
74:e5:75:99:40:d4:e7:06:15:a1:8c:0d:bd:7f:ea:
ac:c9:e4:7b:25:e7:b0:0a:1d:f2:23:02:bb:d6:3d:
c0:22:e8:b1:6d:d7:b4:45:1c:a2:69:c2:4d:85:5e:
6a:08:c3:a6:35:88:18:5e:89:da:5b:fd:aa:2c:72:
3c:53:e6:dc:6f:6e:12:b4:6c:97:73:7b:9a:dd:1e:
b9:b8:2f:06:7d:42:a2:86:ba:45:df:1b:74:df:93:
02:77:61:0c:88:97:db:f6:78:4b:2b:6b:cd:ab:20:
9e:72:63:be:cc:a4:b4:59:ee:76:fe:87:15:f0:88:
d6:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:73:C4:F6:C9:10:B4:D1:29:E9:95:4D:B2:84:41:49:3B:08:1D:9A
X509v3 Authority Key Identifier:
keyid:DB:14:E7:A6:BE:97:CE:C6:F5:BC:1A:67:8A:76:EA:6D:16:19:C3:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xTnpr6Xzsb1vBpninbqbRYZwwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/10645d-3542-4e5d-8e70-11f91d0739c9/1/2xTnpr6Xzsb1vBpninbqbRYZwwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:20:54:7f:c0:bb:8f:ff:f5:a8:18:2c:5a:bf:1a:bc:9b:b6:
7b:25:e8:6a:91:e9:01:e2:3c:9e:fe:e3:f6:57:d2:6a:1e:d2:
6d:3a:93:1c:95:54:72:83:2b:fe:8a:b7:af:07:7d:6a:e4:d7:
2f:63:93:86:4d:73:b6:00:80:b7:9e:55:fa:66:0f:2d:19:0c:
57:c7:be:3e:36:3c:8e:af:57:45:14:42:b5:1b:bd:5c:f7:1f:
13:8f:11:51:91:35:0e:ec:aa:7d:64:86:0f:5f:ee:10:a7:e6:
28:35:3f:c6:2c:ef:18:b2:31:40:32:29:af:af:9f:5e:ca:83:
13:8a:c5:1c:d8:97:f9:7e:05:10:d0:75:90:b7:4e:1c:42:a8:
c7:33:03:2e:ee:10:d5:cd:e4:e7:29:ae:df:a9:6a:ae:f3:43:
ca:fe:cd:7b:29:e8:f8:b5:e3:3a:b9:7b:69:ab:ab:93:5e:ec:
29:89:92:63:f2:d9:37:61:2a:c0:1e:47:a4:d6:89:4a:c3:da:
c0:69:65:fd:31:7c:70:e8:0f:36:6e:b9:38:b3:2e:d9:77:14:
c1:ed:3d:07:8e:3e:2c:d4:10:44:47:62:6a:50:76:48:18:ec:
ec:c4:ec:54:49:81:01:c3:92:ef:b5:10:b9:95:a6:52:a2:7e:
94:d4:11:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 12 22:42:13 2025 by rpki-client