Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json)
Hash identifier: xEb7J68eub0yUaKdkB6bKcKobXa9oFEmq/7+sPEz0R0=
Subject key identifier: 76:52:67:DF:88:A5:EF:AE:BA:37:AF:CE:10:F0:E4:0C:4A:64:39:4C
Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac
Certificate serial: 01988B10112E7E8FB0687D1088A0C13D11DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
Manifest number: 0BBC
Signing time: Fri 08 Aug 2025 19:02:22 +0000
Manifest this update: Fri 08 Aug 2025 19:02:22 +0000
Manifest next update: Sat 09 Aug 2025 19:02:22 +0000
Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: W5if1jNzvEkj08LrGUpDAZvCJnzDoXtgcXi6ZkBqm3c=)
2: x6hLDer_XW1q_iEu4GXkzkZyC4s.roa (hash: WqVvea5/LNqbNIIZsdml33Mg9/QcNbUM12u8YdmaIWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:10:11:2e:7e:8f:b0:68:7d:10:88:a0:c1:3d:11:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac
Validity
Not Before: Aug 8 19:02:22 2025 GMT
Not After : Aug 9 19:02:22 2025 GMT
Subject: CN=765267df88a5efaeba37afce10f0e40c4a64394c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:dd:d8:20:b0:3e:bb:17:2f:89:0f:49:23:85:
9b:94:93:ea:ac:e9:6e:de:44:5b:ba:8a:f2:cd:a3:
19:12:a7:d4:83:15:87:48:04:e6:e6:19:c2:a8:cb:
c0:60:76:d0:81:a0:b0:0f:59:70:1b:4c:45:5a:63:
f0:4a:d6:a9:ac:1f:4e:e3:6d:18:b5:27:b6:6a:6d:
59:aa:d2:ea:07:45:71:67:69:5a:2f:23:88:44:6f:
21:23:38:75:66:5c:f7:71:ed:e2:0a:9f:05:91:94:
90:59:9f:72:49:1a:7d:5d:d5:86:42:f1:18:18:a4:
b8:9d:68:7b:5f:e6:6f:f6:e3:0f:f7:7f:b2:a2:50:
f2:0e:e7:57:b0:8d:03:07:06:50:64:9b:0a:6b:c6:
3c:c3:ac:0f:44:29:62:dc:b2:d4:41:ad:d4:c3:c4:
13:a4:24:21:13:27:26:0f:82:d0:8d:18:41:e3:d7:
50:4d:e1:9b:2a:d6:2e:13:e8:7f:6e:f3:73:0c:eb:
b8:5f:c6:64:60:cc:b4:6d:e8:55:b7:92:11:ac:68:
83:04:98:00:fd:9b:3b:14:70:fc:da:c9:3f:fd:5d:
54:42:cc:d1:3c:85:77:c2:b4:36:d9:48:0b:31:67:
13:46:1c:15:82:19:77:b5:61:cc:ac:0c:c8:c2:5d:
89:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:52:67:DF:88:A5:EF:AE:BA:37:AF:CE:10:F0:E4:0C:4A:64:39:4C
X509v3 Authority Key Identifier:
keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:4f:aa:04:62:4b:c7:09:75:3f:83:b7:4f:d7:7a:7d:9a:c6:
d7:f1:56:a3:c0:a2:42:99:e0:00:b6:c2:95:12:2b:0d:82:11:
6b:52:83:ed:7e:58:97:c9:2c:55:d0:e8:d4:7f:e5:58:ac:28:
d7:f4:6a:64:c9:5c:27:83:ad:1c:34:24:99:89:f8:96:c4:65:
fb:26:50:a9:fc:94:ca:2a:a1:16:0a:3f:8e:f4:b2:4f:fb:df:
ec:9b:86:fd:43:33:c9:9c:f0:d6:46:c6:6e:36:82:3e:e1:7b:
5b:71:97:90:d4:26:a4:6d:49:a9:ed:4e:6c:ee:09:a6:d4:3a:
b8:5c:8f:c1:ce:9a:84:6d:0e:12:e9:e3:e4:44:9b:3c:86:d1:
a9:45:be:23:3f:d6:bf:bd:fc:7a:82:cd:53:ce:b0:3f:3c:0c:
01:b0:1e:77:f6:d6:3e:fd:a4:03:3d:d1:f1:d8:2b:74:99:21:
53:38:b0:1e:5d:30:67:9e:c3:b0:74:04:fa:d5:f0:38:a9:39:
98:b1:38:4c:2d:b8:fa:33:8d:53:df:61:a1:c4:1d:71:3b:af:
e8:8b:38:ac:c5:76:af:d4:d0:08:ce:5c:63:e7:d7:e1:81:0d:
a4:c0:84:5a:c1:ab:e2:ac:a5:a8:c1:41:66:67:e4:97:8e:a2:
2c:f4:5e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:02:59 2025 by rpki-client