Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: 73iNoY6tac1GLJtX6iMjfPj4xKiZhfyilpFufOlP8Sk=
Subject key identifier: 32:C5:BA:0C:FA:0D:D0:B0:A0:BE:E8:17:61:23:06:39:95:34:76:DB
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 01987FE67C3FF581070120E3B686225F1F8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 02CB
Signing time: Wed 06 Aug 2025 15:01:08 +0000
Manifest this update: Wed 06 Aug 2025 15:01:08 +0000
Manifest next update: Thu 07 Aug 2025 15:01:08 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: 0LXRq9Ba6xmxAV5HTykJOC1IghFOIQiBjsJT3+MyD1M=)
2: S9_pIBHq75Wq7oGW-jAli5gxMaE.roa (hash: cpq5fUvjVAhKKLO06wh9HRGgk0x/xpun3Cli9g36l8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 14:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7f:e6:7c:3f:f5:81:07:01:20:e3:b6:86:22:5f:1f:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: Aug 6 15:01:08 2025 GMT
Not After : Aug 7 15:01:08 2025 GMT
Subject: CN=32c5ba0cfa0dd0b0a0bee81761230639953476db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:7d:14:d5:aa:d4:e9:3f:6e:17:e7:3f:80:e1:
77:3f:61:ec:80:b0:c4:a5:31:41:fe:d6:24:61:75:
5a:4a:65:7e:08:af:b3:fe:e2:43:b4:b2:67:ef:89:
11:a9:52:7c:30:13:31:05:b7:aa:9d:61:ac:38:1f:
b8:dc:ae:8d:23:ab:0c:e3:7d:73:69:17:58:b9:63:
d2:40:9c:1e:f4:f5:95:a9:ca:11:a6:0e:09:dc:0d:
76:44:16:28:d2:de:bb:8d:f2:eb:87:ef:5b:64:bc:
d6:97:ca:5d:b0:43:3c:71:57:7d:7a:90:7c:4a:67:
a1:61:98:71:95:04:08:61:fc:d1:f6:2e:1c:c6:eb:
e2:03:1c:0d:b1:08:4c:90:8a:69:8a:08:8f:e0:38:
d1:66:38:f2:b2:63:82:98:64:06:3b:11:42:e6:19:
da:d3:0c:c4:37:6c:e8:4d:b7:7e:51:fc:02:e5:54:
f3:fd:26:75:4e:0a:ac:43:35:b2:a4:2b:b2:c7:31:
4c:dc:8d:51:3e:f2:1f:70:db:09:87:10:97:8a:23:
6a:64:01:38:e6:e0:2e:6d:69:65:ac:0a:70:94:17:
12:48:95:fe:17:66:7e:16:45:f0:e2:06:0c:b8:76:
66:f3:64:87:24:35:20:b6:63:27:19:68:71:ff:c2:
cd:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C5:BA:0C:FA:0D:D0:B0:A0:BE:E8:17:61:23:06:39:95:34:76:DB
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:72:16:23:8c:bc:d6:ac:8f:90:99:c9:11:b3:4d:df:0b:fa:
8d:47:65:cf:f7:7c:63:af:80:92:f1:f6:e1:45:2f:98:f3:2b:
45:ca:3a:2b:6c:90:f3:36:19:d7:c7:cb:77:fb:0c:73:db:0c:
ee:bb:81:50:77:85:c2:84:94:ba:3e:0e:0f:11:23:bd:50:93:
5b:ab:a6:80:c2:d4:07:de:f9:b0:9c:f1:0d:7f:f0:09:07:65:
16:a6:c6:99:27:f3:f3:dc:2f:0e:c1:02:2d:ea:01:fb:f8:bb:
1a:4b:20:5d:b0:00:56:eb:c2:b0:54:60:e7:20:aa:7d:07:73:
3d:c8:9c:fb:07:02:f2:12:ce:eb:20:03:4f:19:c7:3a:06:3d:
f3:98:d0:e3:b3:1f:b1:e8:b0:13:3f:f2:f2:4d:dc:88:d1:f1:
9d:29:10:bd:b4:f5:b6:5e:22:66:c6:f4:9b:67:66:48:42:91:
c6:49:72:e2:86:07:f4:c1:56:79:53:f2:fc:34:e6:b3:46:ba:
43:7b:25:d9:1d:a1:f2:f6:8c:4a:9f:d8:9e:81:dc:a6:23:8e:
02:73:bb:29:e4:31:30:39:7f:f4:b6:42:87:73:05:28:5f:b5:
91:22:ff:04:f9:fc:96:64:a6:29:c2:23:1a:3d:7b:12:4d:02:
ea:66:03:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh/5nw/9YEHASDjtoYiXx+LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4OWYxNmY1NzQ5MjQzMzc4ZjgxNGM5NGIyNDAzNGQ3NGIz
OTI3ZGYwHhcNMjUwODA2MTUwMTA4WhcNMjUwODA3MTUwMTA4WjAzMTEwLwYDVQQD
EygzMmM1YmEwY2ZhMGRkMGIwYTBiZWU4MTc2MTIzMDYzOTk1MzQ3NmRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6n0U1arU6T9uF+c/gOF3P2HsgLDE
pTFB/tYkYXVaSmV+CK+z/uJDtLJn74kRqVJ8MBMxBbeqnWGsOB+43K6NI6sM431z
aRdYuWPSQJwe9PWVqcoRpg4J3A12RBYo0t67jfLrh+9bZLzWl8pdsEM8cVd9epB8
SmehYZhxlQQIYfzR9i4cxuviAxwNsQhMkIppigiP4DjRZjjysmOCmGQGOxFC5hna
0wzEN2zoTbd+UfwC5VTz/SZ1TgqsQzWypCuyxzFM3I1RPvIfcNsJhxCXiiNqZAE4
5uAubWllrApwlBcSSJX+F2Z+FkXw4gYMuHZm82SHJDUgtmMnGWhx/8LN0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDLFugz6DdCwoL7oF2EjBjmVNHbbMB8GA1UdIwQY
MBaAFNifFvV0kkM3j4FMlLJANNdLOSffMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMko4VzlYU1NRemVQZ1V5VXNrQTAxMHM1Sjk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi83OTdlNjUtM2RhMC00ZDZlLWI2OTUt
MzQ2YmQ5NzNjODQzLzEvMko4VzlYU1NRemVQZ1V5VXNrQTAxMHM1Sjk4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi83OTdlNjUtM2RhMC00ZDZlLWI2OTUtMzQ2YmQ5NzNjODQz
LzEvMko4VzlYU1NRemVQZ1V5VXNrQTAxMHM1Sjk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa3IWI4y8
1qyPkJnJEbNN3wv6jUdlz/d8Y6+AkvH24UUvmPMrRco6K2yQ8zYZ18fLd/sMc9sM
7ruBUHeFwoSUuj4ODxEjvVCTW6umgMLUB975sJzxDX/wCQdlFqbGmSfz89wvDsEC
LeoB+/i7GksgXbAAVuvCsFRg5yCqfQdzPcic+wcC8hLO6yADTxnHOgY985jQ47Mf
seiwEz/y8k3ciNHxnSkQvbT1tl4iZsb0m2dmSEKRxkly4oYH9MFWeVPy/DTms0a6
Q3sl2R2h8vaMSp/YnoHcpiOOAnO7KeQxMDl/9LZCh3MFKF+1kSL/BPn8lmSmKcIj
Gj17Ek0C6mYD6A==
-----END CERTIFICATE-----
Generated at Wed Aug 6 16:19:05 2025 by rpki-client