Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: zXpTKqaqOXzMjfite1kNuDWiJa7i2LxQs895nLNpc5o=
Subject key identifier: 3D:46:C4:6C:46:C4:A9:12:23:32:2C:0F:6E:22:5A:77:1E:1E:6A:8B
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 019896A5E71C9A81F9B5C88DDD5F777B96DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 0B81
Signing time: Mon 11 Aug 2025 01:01:51 +0000
Manifest this update: Mon 11 Aug 2025 01:01:51 +0000
Manifest next update: Tue 12 Aug 2025 01:01:51 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: vLWDBGZGTHSYVikhQCxJ1DJXrTwXzNj9wlVxKQ2ka6Y=)
2: YfAgsC_cdxTTdTc3lRuKLUA9Ek4.roa (hash: 6JxCw6QKy553BkYrq5SFqTFyUQePShSh+1QhYyHxmes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a5:e7:1c:9a:81:f9:b5:c8:8d:dd:5f:77:7b:96:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: Aug 11 01:01:51 2025 GMT
Not After : Aug 12 01:01:51 2025 GMT
Subject: CN=3d46c46c46c4a91223322c0f6e225a771e1e6a8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:41:bb:ba:b9:11:6c:64:91:a2:48:5f:bd:4b:
ba:41:17:57:b4:28:1a:09:c2:bd:fe:88:bf:9d:aa:
9c:a8:c7:70:9b:60:54:21:d1:7d:e1:10:d4:57:92:
b6:c1:78:4f:a7:68:32:44:25:ee:e7:cd:27:8c:d6:
b5:6f:62:b5:2b:23:87:c0:6c:20:ec:ae:e6:7d:36:
43:aa:83:0e:aa:1b:89:b0:dd:33:61:28:92:b0:47:
65:7d:ff:c2:9f:21:5f:ee:c1:6b:7f:2c:cf:ff:81:
2a:92:f1:a4:2f:a9:98:1d:5d:f0:3a:0f:16:5c:4e:
d4:f6:b2:af:65:90:31:58:fd:54:88:cd:b0:33:ba:
43:7e:0a:ee:ab:28:85:57:0e:02:a7:e8:bc:e6:41:
76:a6:32:26:4d:d9:5b:92:80:60:53:8e:24:0f:ef:
22:c9:e2:86:15:b9:2e:42:73:c7:64:3e:8a:d4:23:
ba:c9:2f:40:38:57:dd:47:52:5e:8f:e9:8b:9c:48:
20:39:d6:4e:6d:35:09:3f:7e:f5:24:89:e0:61:5e:
d9:ec:1e:ce:d5:d4:4f:e7:7b:24:25:24:77:8e:d7:
e3:8f:7a:c6:c1:52:56:8b:f6:c0:02:c5:75:bf:da:
22:5e:2d:7c:eb:63:9a:44:90:ca:41:77:00:f2:9a:
de:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:46:C4:6C:46:C4:A9:12:23:32:2C:0F:6E:22:5A:77:1E:1E:6A:8B
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:f0:b9:10:17:57:3a:04:1c:98:83:f6:bb:c2:52:65:7d:fa:
0c:47:ad:78:20:83:20:74:dc:bb:58:fb:9d:be:3d:6f:1e:21:
c7:c9:65:fe:b1:18:76:9c:4c:67:0d:55:57:5a:c2:bd:b5:88:
2e:97:7e:ad:93:12:a6:fc:89:17:90:1d:b8:46:13:cf:86:a7:
b9:58:c6:79:af:3b:e8:7b:46:be:28:93:d2:26:41:5d:30:99:
f0:d7:7f:92:7f:a3:42:fe:41:dc:40:9b:d4:2d:79:75:26:d8:
d9:d6:4e:41:05:e9:ef:a0:8c:06:91:f9:0f:a3:93:d8:1d:9d:
8a:d1:fd:09:74:b6:b3:b8:d3:a7:7b:40:69:5c:58:bd:04:02:
ed:53:35:d5:8d:ae:97:4b:ba:26:10:1b:71:a4:5a:d4:2b:34:
0a:f6:61:1c:c4:5f:ed:4b:e8:a9:60:bb:8a:b3:f2:27:b5:83:
57:aa:3d:03:19:9b:1a:bb:c0:cc:46:77:a6:ce:1a:7d:ce:fe:
59:64:d7:ea:b8:38:f1:cf:9b:16:52:2a:2c:65:1f:c3:4e:9c:
e4:17:0b:72:ad:96:43:97:f4:d9:92:b9:6e:3f:a7:30:c4:19:
e5:1c:1f:72:a1:37:97:81:6b:b1:4a:b9:89:2a:d9:f8:96:36:
42:6e:d5:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 05:54:12 2025 by rpki-client