Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: Gf5PL4aWCxtQ7Ox7NbrhREvNKACGSvQCrc82zgoxgGI=
Subject key identifier: B9:A6:39:F3:74:99:09:E9:F0:92:40:C6:C2:7C:65:29:11:05:81:8C
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 01987487204F9C8D1A3E76D19874C3134284
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 157A
Signing time: Mon 04 Aug 2025 10:01:09 +0000
Manifest this update: Mon 04 Aug 2025 10:01:09 +0000
Manifest next update: Tue 05 Aug 2025 10:01:09 +0000
Files and hashes: 1: WWNEma98vqvt3aWub4KvZrisRPY.roa (hash: 8ej/FxtmoHvT2+4JYPncO9OF+5JwUWMEm2sRynTw/0U=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: 2TPOQTELz9EqAHcnsTUqCrbLgSxRMeNmdrLWxdOl6Zg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 10:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:87:20:4f:9c:8d:1a:3e:76:d1:98:74:c3:13:42:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Aug 4 10:01:09 2025 GMT
Not After : Aug 5 10:01:09 2025 GMT
Subject: CN=b9a639f3749909e9f09240c6c27c65291105818c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d0:2c:a3:dd:a0:84:9c:de:e2:ce:ab:f4:0b:
62:84:3b:0a:85:2c:4b:d8:e6:54:db:de:06:e9:5d:
20:a9:28:5d:aa:c2:d3:14:38:8a:9a:f6:34:c0:4a:
32:fa:57:10:86:12:c1:39:35:8b:54:a6:c3:c8:c3:
91:45:f8:fa:e6:12:9c:c9:bd:00:c9:f3:e8:68:0f:
78:06:0c:07:ec:9c:45:ea:75:77:cd:80:5d:99:07:
62:ad:02:9b:43:db:ec:ff:a5:f2:af:7d:89:b2:d1:
c0:39:c5:14:29:cf:0e:f0:57:4a:5f:fb:41:ac:91:
e0:ce:41:dd:9e:dc:0a:73:87:e1:5e:78:0c:c4:57:
96:43:c3:3f:4f:cd:ec:e2:e4:ba:4a:89:55:30:16:
54:9b:95:fe:7a:8b:c7:d6:b0:7f:51:99:aa:88:6e:
dc:91:1f:47:38:34:42:4a:58:cb:e3:8a:50:78:da:
7a:67:04:cc:a5:7d:b4:61:02:a5:da:e4:f2:fb:79:
37:a8:35:8e:a4:5b:94:f0:e2:33:3d:dc:48:7e:06:
14:00:1f:85:02:59:4f:66:81:87:69:25:a3:c4:4a:
b5:13:7d:87:ed:0e:67:a3:80:ee:3c:ab:51:d0:87:
ae:9c:40:4b:0d:8c:94:e0:ae:9c:9b:9f:2b:e3:8d:
61:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A6:39:F3:74:99:09:E9:F0:92:40:C6:C2:7C:65:29:11:05:81:8C
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:00:d1:a1:6b:23:31:db:33:9a:af:be:a3:e6:6e:f9:71:64:
1e:2c:1c:b6:1f:50:d2:ea:ff:60:3e:53:c4:22:eb:37:df:61:
8a:03:c9:eb:b2:b7:ca:3e:0e:80:e9:16:6f:df:f4:d4:d5:81:
d0:ae:0e:1f:e8:be:9f:8d:e2:8f:c7:e2:77:2e:b0:2d:07:3f:
b1:92:d6:99:fd:14:39:8d:54:a8:ef:5d:71:9a:97:3e:11:08:
07:19:56:1e:bd:db:e4:c5:cd:b1:65:d4:41:f8:26:9f:7e:c2:
4e:78:5d:19:cc:20:ca:9b:b2:52:8b:00:cd:f2:cf:34:cc:d0:
f1:ea:fa:f5:c8:ee:96:41:50:1b:2e:92:f6:47:a9:e2:fc:4f:
9d:3c:ea:4c:14:4c:78:d1:b2:1d:67:b1:99:64:14:30:d9:d8:
97:c4:13:49:91:5f:ec:07:e6:d9:de:b3:35:09:18:7d:8c:0e:
84:4f:76:05:d4:32:56:a6:3b:d4:49:e3:65:cd:92:fb:f6:51:
16:fe:ce:b4:46:dd:72:ab:b0:d6:4e:f5:80:39:ec:89:18:af:
ef:46:23:0b:42:20:63:8f:ed:25:d6:cd:a7:ea:a2:34:f0:07:
9c:e9:89:27:18:af:38:8e:a2:b1:ad:5a:9a:af:92:57:e2:f9:
b3:3c:78:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:37:18 2025 by rpki-client