Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: KBcEB0MCLyagsMvjpf5Oe7cTodvqCnR0LlUv/8izK8k=
Subject key identifier: C3:0E:FF:D5:19:B4:2C:06:FC:F9:58:3D:ED:C5:D8:A7:16:9D:A9:C4
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 01988C8F43555936FB6384B31A5DBF204E6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 11F1
Signing time: Sat 09 Aug 2025 02:00:55 +0000
Manifest this update: Sat 09 Aug 2025 02:00:55 +0000
Manifest next update: Sun 10 Aug 2025 02:00:55 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: t6y0DLWGlF2G6KXtlrHjnUn3QW/5jWZ+TMMB+ipAG1M=)
2: B9-JyKOh9vcA8Yt248kp1OHsLjE.roa (hash: IbF0FRhBYEIf5hZ2KcvfEljtf1YgGGazPG/5I71dHJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 02:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:8f:43:55:59:36:fb:63:84:b3:1a:5d:bf:20:4e:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Aug 9 02:00:55 2025 GMT
Not After : Aug 10 02:00:55 2025 GMT
Subject: CN=c30effd519b42c06fcf9583dedc5d8a7169da9c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e9:68:55:eb:1e:3c:b4:84:c9:90:03:66:d1:
cf:8a:c0:69:d3:d6:55:b7:4b:07:ba:c2:27:b6:35:
15:65:ba:63:ae:99:91:0f:ea:4a:27:0b:04:49:db:
25:b3:6d:e9:80:08:37:0c:97:80:30:2d:5f:53:c6:
63:7a:08:5f:f7:93:73:95:58:3e:a6:50:9a:13:fa:
0c:53:db:d3:93:75:d1:cf:84:b8:f2:bf:cb:81:d4:
85:07:1d:3f:fb:4f:89:67:66:e5:ec:9d:a7:75:74:
d9:07:cc:b5:c7:57:97:e8:5c:eb:6c:b3:29:05:1e:
0b:13:34:23:ae:94:83:b7:21:1b:96:5c:db:0a:3a:
ae:98:6e:b5:71:eb:01:83:b3:c5:e1:5f:f5:4b:bd:
d3:a4:74:8e:b1:84:c6:86:06:bb:da:a2:2a:42:56:
d1:3c:79:ef:4b:e5:ac:f7:14:e1:5e:ee:7b:2b:34:
ba:be:38:c5:e7:75:d6:66:4f:3e:37:5d:f5:3a:d0:
ce:04:e2:e0:4c:d5:52:b8:c1:c7:b0:5c:c0:08:53:
d0:4f:9a:53:2a:ba:86:b2:77:b7:9e:51:59:3a:98:
69:7a:df:f7:e3:1f:33:66:8d:bb:04:ca:d9:28:0f:
3b:22:29:72:0e:cc:59:ca:45:5d:49:56:0e:77:77:
e3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0E:FF:D5:19:B4:2C:06:FC:F9:58:3D:ED:C5:D8:A7:16:9D:A9:C4
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:eb:94:6b:49:bc:18:22:10:29:91:31:c1:5c:57:49:35:31:
e5:a9:08:82:56:54:6e:50:70:62:8a:7d:eb:1e:73:99:fa:a5:
85:8d:e8:f4:c2:df:8c:f1:56:0e:b0:75:cb:28:71:dd:65:99:
66:0d:6d:dd:8f:66:26:11:49:0d:b5:2d:cc:df:9f:81:da:d3:
0a:d5:d5:96:d9:41:60:43:6e:3d:35:a6:ce:d7:42:5d:2e:06:
9d:f7:8e:21:7e:71:69:0e:53:75:b9:a2:9b:0c:43:26:be:58:
c7:2d:dd:9d:b3:ce:6e:b2:bb:e4:30:bc:f6:d5:02:6c:6f:51:
6c:03:77:d8:9f:7d:48:80:56:01:57:14:2d:76:24:56:3f:86:
c5:f2:c1:85:fd:73:2a:61:d5:00:f7:a4:8e:f3:01:10:49:74:
bf:b3:a0:37:da:06:2b:e6:13:c5:ca:49:96:dc:bb:7d:31:c7:
10:31:5a:93:4c:b4:86:e4:f9:03:ac:85:a8:ae:6c:e8:1c:02:
2d:0a:1e:16:50:c4:cd:e8:b2:fa:71:7c:19:86:43:33:fb:ba:
3f:72:00:4f:5f:2e:02:c7:6e:05:69:b8:45:4c:03:df:7e:f0:
07:0a:96:0c:7b:bf:e3:f6:d9:0b:6a:ee:e6:86:11:f9:e9:35:
fe:b1:5a:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiMj0NVWTb7Y4SzGl2/IE5rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ZjE5ZjA1Y2NmMjIyMTM5ODQ2OWMwYmU4ZGRjMDRjZTE0
ZTEzNWEwHhcNMjUwODA5MDIwMDU1WhcNMjUwODEwMDIwMDU1WjAzMTEwLwYDVQQD
EyhjMzBlZmZkNTE5YjQyYzA2ZmNmOTU4M2RlZGM1ZDhhNzE2OWRhOWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+loVesePLSEyZADZtHPisBp09ZV
t0sHusIntjUVZbpjrpmRD+pKJwsESdsls23pgAg3DJeAMC1fU8Zjeghf95NzlVg+
plCaE/oMU9vTk3XRz4S48r/LgdSFBx0/+0+JZ2bl7J2ndXTZB8y1x1eX6FzrbLMp
BR4LEzQjrpSDtyEbllzbCjqumG61cesBg7PF4V/1S73TpHSOsYTGhga72qIqQlbR
PHnvS+Ws9xThXu57KzS6vjjF53XWZk8+N131OtDOBOLgTNVSuMHHsFzACFPQT5pT
KrqGsne3nlFZOphpet/34x8zZo27BMrZKA87IilyDsxZykVdSVYOd3fjKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMMO/9UZtCwG/PlYPe3F2KcWnanEMB8GA1UdIwQY
MBaAFNnxnwXM8iITmEacC+jdwEzhThNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmZHZkJjenlJaE9ZUnB3TDZOM0FUT0ZPRTFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS82ZTMyNDYtZmJhNi00ZTFkLTgwODkt
NGZmMzMzMzgzNjFlLzEvMmZHZkJjenlJaE9ZUnB3TDZOM0FUT0ZPRTFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS82ZTMyNDYtZmJhNi00ZTFkLTgwODktNGZmMzMzMzgzNjFl
LzEvMmZHZkJjenlJaE9ZUnB3TDZOM0FUT0ZPRTFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeOuUa0m8
GCIQKZExwVxXSTUx5akIglZUblBwYop96x5zmfqlhY3o9MLfjPFWDrB1yyhx3WWZ
Zg1t3Y9mJhFJDbUtzN+fgdrTCtXVltlBYENuPTWmztdCXS4GnfeOIX5xaQ5Tdbmi
mwxDJr5Yxy3dnbPObrK75DC89tUCbG9RbAN32J99SIBWAVcULXYkVj+GxfLBhf1z
KmHVAPekjvMBEEl0v7OgN9oGK+YTxcpJlty7fTHHEDFak0y0huT5A6yFqK5s6BwC
LQoeFlDEzeiy+nF8GYZDM/u6P3IAT18uAsduBWm4RUwD337wBwqWDHu/4/bZC2ru
5oYR+ek1/rFazw==
-----END CERTIFICATE-----
Generated at Sat Aug 9 10:43:43 2025 by rpki-client