Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
File: 2PWmbP0hpcrXopuOtc2SqkYDIMM.mft (raw, json)
Hash identifier: ztOwpqo8291CYaipmlOKgmihRLr5Yh81r1ivh2mZsbg=
Subject key identifier: 15:53:A1:26:C4:59:E1:1F:F2:02:A3:ED:87:2A:12:70:1A:3C:B1:CA
Authority key identifier: D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
Certificate issuer: /CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Certificate serial: 01988FC7B9A3357D6C884407E9FA7498B1E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
Manifest number: 1626
Signing time: Sat 09 Aug 2025 17:01:27 +0000
Manifest this update: Sat 09 Aug 2025 17:01:27 +0000
Manifest next update: Sun 10 Aug 2025 17:01:27 +0000
Files and hashes: 1: 2PWmbP0hpcrXopuOtc2SqkYDIMM.crl (hash: VlR2RHc6nXrkDCvRqcug6Num796ypTfMRdJwYZ13ivQ=)
2: 4yhoCs9M-fjQaMlDWlUpC1ERe-g.roa (hash: t+8njXgDpdo9kegDaGKO6tPmuatvzfS0I/p9sqY0v4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:c7:b9:a3:35:7d:6c:88:44:07:e9:fa:74:98:b1:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f5a66cfd21a5cad7a29b8eb5cd92aa460320c3
Validity
Not Before: Aug 9 17:01:27 2025 GMT
Not After : Aug 10 17:01:27 2025 GMT
Subject: CN=1553a126c459e11ff202a3ed872a12701a3cb1ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3a:bf:21:3a:d1:48:94:2c:af:3f:bd:cc:67:
c5:39:13:db:43:e1:7a:c3:43:ea:e0:50:d5:aa:a8:
76:b9:0a:a1:5d:0d:ec:48:38:d0:a9:df:df:05:3c:
e9:ff:9f:11:e0:19:3f:e4:df:dc:9f:8a:32:ee:db:
27:0f:45:07:68:55:d4:eb:38:61:79:23:96:9f:6d:
53:3f:68:b7:51:bf:98:5f:c7:3a:49:4e:7d:07:1e:
c7:cc:1a:1b:d9:a7:66:a4:99:09:bf:76:6b:60:29:
e4:41:38:5e:d4:86:d0:1d:bc:7c:01:f8:ab:19:a7:
c5:2d:1c:87:e7:80:a2:8e:96:dd:72:c6:15:e8:96:
d9:d7:50:0c:ca:23:59:a8:b1:fc:55:d2:c9:dc:63:
71:92:e5:30:6c:f1:0b:3e:67:c5:7e:bd:7e:89:6e:
39:67:61:f5:53:c6:5b:40:e4:a3:87:1b:3c:cf:ee:
1d:ad:47:90:a7:24:b1:79:ef:c2:a4:b4:81:67:a4:
6d:02:4f:2a:66:25:b6:c2:c7:f9:e4:8c:32:a3:6f:
84:d1:6c:4a:4c:6a:32:d0:8f:b1:f9:cf:b2:fc:20:
f6:35:f5:1c:3e:1a:2b:53:32:36:f3:0b:81:2a:95:
f2:d1:81:9b:bb:a5:32:a6:c5:72:bd:b8:71:66:ca:
2c:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:53:A1:26:C4:59:E1:1F:F2:02:A3:ED:87:2A:12:70:1A:3C:B1:CA
X509v3 Authority Key Identifier:
keyid:D8:F5:A6:6C:FD:21:A5:CA:D7:A2:9B:8E:B5:CD:92:AA:46:03:20:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PWmbP0hpcrXopuOtc2SqkYDIMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/fe20ff-6590-4fb0-b657-8210db7049b1/1/2PWmbP0hpcrXopuOtc2SqkYDIMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:9f:ad:17:a2:8f:2f:3c:d5:2f:4e:8f:d8:01:e9:c2:22:ea:
a3:a7:4d:ee:5b:b1:27:a3:50:8b:79:34:28:58:fe:2d:58:91:
92:3f:01:89:ab:ce:3d:85:cb:18:b9:88:f4:27:f4:88:13:99:
ec:24:37:74:f4:fb:8e:18:ed:15:a4:78:4e:d1:4d:cb:c4:78:
ba:76:ed:b8:ec:0c:91:67:1d:da:47:da:ec:8e:9f:73:b6:fb:
d8:ef:89:f5:3d:e9:50:9e:e3:25:e0:dd:bd:21:af:aa:61:e7:
e8:da:79:1e:4b:85:bc:4c:41:5a:4a:51:24:bd:b2:62:10:4c:
74:7a:fe:81:e4:5d:47:6b:64:ec:b2:8e:96:7c:4b:df:f3:34:
11:df:9a:73:c6:94:39:c6:73:3a:3b:fd:5f:15:68:93:6d:bb:
d0:a6:4c:bf:d6:95:c2:e1:66:bd:e6:ad:ac:cd:7f:66:cf:bf:
30:5e:b7:73:29:c1:ad:f9:b9:8a:2a:47:13:5d:9d:04:1a:99:
e1:1a:6c:b8:46:bb:90:25:6f:ca:75:81:da:bd:0d:2b:b8:0f:
ed:f3:98:c1:1b:a9:18:51:02:74:58:2d:c3:2b:a2:ce:3a:df:
38:90:79:a5:23:b6:20:d6:ff:87:6f:63:8c:42:10:d8:26:3f:
be:66:41:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 20:40:18 2025 by rpki-client