Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
File: 2sTLURUIAqQBjMJWrSn1RyBnXtU.mft (raw, json)
Hash identifier: /D6PNRYRqXZy7GypbUBk7xsvqowmMJxPldvAC/WCz+s=
Subject key identifier: 89:4F:C3:1F:DA:3E:22:A7:E3:82:12:8A:1F:55:50:39:3F:8B:1E:95
Authority key identifier: DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5
Certificate issuer: /CN=dac4cb51150802a4018cc256ad29f54720675ed5
Certificate serial: 019879AD354BCAC59D889AC11D9AE0589B07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
Manifest number: 112D
Signing time: Tue 05 Aug 2025 10:00:51 +0000
Manifest this update: Tue 05 Aug 2025 10:00:51 +0000
Manifest next update: Wed 06 Aug 2025 10:00:51 +0000
Files and hashes: 1: 2sTLURUIAqQBjMJWrSn1RyBnXtU.crl (hash: Nopij8o3cnZEzUKhuhHdhv+5qZ1OcqMJIuPJkCfKL9Q=)
2: 49hgdGQLZzb2UEr0v1DR3B_4G88.roa (hash: ieB3PoGbaENiV1L+4PpT2lhh7W1Z3Cv1HFM+GYljVmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 10:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:ad:35:4b:ca:c5:9d:88:9a:c1:1d:9a:e0:58:9b:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac4cb51150802a4018cc256ad29f54720675ed5
Validity
Not Before: Aug 5 10:00:51 2025 GMT
Not After : Aug 6 10:00:51 2025 GMT
Subject: CN=894fc31fda3e22a7e382128a1f5550393f8b1e95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:07:78:60:53:69:78:d0:ca:6d:15:d2:b0:2c:
b5:86:27:3a:54:0a:a1:fa:72:5f:cf:79:6b:24:11:
e7:3e:40:d9:ef:bd:86:44:ad:4f:6b:78:c5:11:21:
d3:95:f9:18:3c:13:6e:ba:5f:53:ee:76:e1:0e:cb:
18:92:32:43:9b:28:fc:b8:5a:ef:8f:51:6d:74:95:
1e:68:45:21:0a:48:7b:d5:dc:c1:d4:f4:00:a0:04:
38:fe:3b:eb:53:14:9d:de:83:24:bd:f0:4c:30:07:
a2:89:ee:52:3a:47:10:c0:1f:aa:1d:a2:19:20:78:
96:17:d4:96:82:83:51:e1:30:8b:5e:d7:2b:0a:d1:
ca:33:24:50:95:43:da:af:b0:b7:c5:da:fc:01:01:
57:b8:53:4e:04:01:54:70:8b:95:ef:a9:3d:3e:c1:
d4:d6:ac:c3:bd:df:38:6c:09:fc:50:70:6e:67:71:
45:8b:8f:02:8c:da:ad:cd:94:49:9d:e3:52:d0:3d:
7a:0b:03:1e:3d:cb:56:f5:e8:da:61:d3:f8:5a:4d:
fa:d9:88:7b:9f:60:4a:98:5b:71:16:16:83:24:ba:
a9:06:c7:54:aa:c2:c8:00:a3:d9:a8:1c:57:c9:15:
83:11:1c:63:be:db:d7:0e:6b:a9:2c:94:c0:18:17:
1e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:4F:C3:1F:DA:3E:22:A7:E3:82:12:8A:1F:55:50:39:3F:8B:1E:95
X509v3 Authority Key Identifier:
keyid:DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:dd:d1:f3:18:41:14:43:54:11:e5:ef:d4:33:de:1f:7c:8b:
c1:73:c9:91:69:82:d0:52:4d:71:06:7f:bf:c8:94:88:ea:44:
a0:39:ba:d3:a4:a7:f2:b1:f4:ce:e4:3b:66:01:05:89:a7:4c:
94:ae:a8:ec:da:f7:75:07:e7:cb:8b:d4:39:c0:3e:ce:ec:9b:
75:a4:aa:19:d8:f1:49:a4:c1:c9:ed:43:d4:5b:bc:21:f1:ab:
23:13:72:f6:92:31:66:47:41:30:04:fb:38:28:75:cd:13:52:
3d:80:88:b5:6d:c2:31:59:b5:14:2f:ff:5a:4c:b3:d0:48:5f:
1b:38:f8:7c:a8:28:48:1e:4a:60:04:ac:ab:3b:bd:ee:41:80:
c9:66:d4:6c:a8:4d:6d:29:39:00:89:eb:45:cc:92:01:07:ce:
6a:c4:19:84:5c:dd:89:78:a1:66:54:03:dc:b0:bd:de:6e:bc:
76:b6:32:29:90:a2:77:fb:1d:98:d4:59:ad:4f:92:15:31:25:
f7:08:b9:4f:78:55:1f:d9:ca:14:62:7b:06:c1:16:45:ab:d8:
a9:d7:66:4a:19:a8:35:86:38:42:a2:3c:0f:c7:4d:2f:99:2b:
43:43:25:5d:aa:72:8a:0d:82:4c:38:c7:37:ea:fd:e8:2f:59:
f2:69:23:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:20:05 2025 by rpki-client