Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
File: 2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft (raw, json)
Hash identifier: KfVpMcibw24+up4G3TTN0S9ZBb3s71VpYUh/Wd/AoIE=
Subject key identifier: 1D:03:7A:10:47:C6:99:97:A3:8D:88:CF:AA:E8:8C:06:E8:99:74:6B
Authority key identifier: D8:7D:81:50:D1:18:23:85:C4:61:B5:80:D5:63:8A:57:0C:2B:C0:BF
Certificate issuer: /CN=d87d8150d1182385c461b580d5638a570c2bc0bf
Certificate serial: 0198914856DB86ACD0D05F94B88B30B68B94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
Manifest number: 1622
Signing time: Sun 10 Aug 2025 00:01:33 +0000
Manifest this update: Sun 10 Aug 2025 00:01:33 +0000
Manifest next update: Mon 11 Aug 2025 00:01:33 +0000
Files and hashes: 1: 2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl (hash: NHlkt0DNzhmeQ8G7WmZVOcDzjMxO5Wi4RdcjFfJLrnc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:91:48:56:db:86:ac:d0:d0:5f:94:b8:8b:30:b6:8b:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87d8150d1182385c461b580d5638a570c2bc0bf
Validity
Not Before: Aug 10 00:01:33 2025 GMT
Not After : Aug 11 00:01:33 2025 GMT
Subject: CN=1d037a1047c69997a38d88cfaae88c06e899746b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c3:74:74:24:96:23:03:fd:af:0e:9e:7f:d8:
2d:32:5b:a8:da:6a:c4:58:62:f7:3c:85:06:52:b7:
a8:04:09:4a:52:89:a8:50:9b:45:03:7b:30:4c:67:
7b:f2:26:25:a7:f0:9d:5a:e7:dd:83:08:41:5c:ad:
42:c4:fa:68:7a:8d:f6:36:28:6c:43:c3:f5:92:e9:
3e:7a:d5:e4:cc:bf:74:22:95:11:97:31:00:52:37:
7f:5b:60:75:48:0f:65:e0:48:e7:63:e3:58:e5:6e:
2b:00:55:83:ab:8b:f0:e3:8b:f4:1a:98:86:d1:30:
36:c1:31:6c:72:2a:f5:f9:cc:29:fd:ff:c6:aa:31:
6a:10:76:96:57:41:58:01:ad:0a:4f:a6:81:63:15:
bf:6b:9a:6d:85:b0:f9:c6:34:8c:b5:fe:42:98:d3:
d3:fd:c3:ff:40:29:b3:a6:22:97:28:92:fe:e1:39:
f6:91:ec:97:be:e7:f8:bd:68:3b:07:8a:92:9b:ad:
29:57:66:e0:76:63:6d:56:b3:1c:01:f9:d9:5d:b0:
e3:0d:f2:ef:88:2a:42:42:88:8c:d1:87:ea:d4:ed:
a8:69:89:96:02:95:06:45:09:f6:ff:dc:e6:d4:6f:
d4:56:e5:63:bf:71:9a:a4:81:04:cb:c3:c0:76:d7:
18:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:03:7A:10:47:C6:99:97:A3:8D:88:CF:AA:E8:8C:06:E8:99:74:6B
X509v3 Authority Key Identifier:
keyid:D8:7D:81:50:D1:18:23:85:C4:61:B5:80:D5:63:8A:57:0C:2B:C0:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:33:6d:7a:27:25:96:d7:83:5e:d9:ea:28:dd:c8:50:46:c4:
6e:bf:01:34:22:34:97:e0:13:5d:87:ea:44:88:2d:a0:14:62:
ff:ef:7e:ed:3a:42:fa:e0:eb:ec:ee:09:5d:f5:ac:c3:d5:36:
24:97:7b:67:0d:a5:e9:30:6a:66:9e:95:b9:1a:df:6f:74:9a:
2f:13:e7:49:04:47:15:35:45:d4:ae:4e:f3:e7:9c:da:f4:7b:
18:e8:b1:4d:97:34:26:5a:ba:f1:0c:e8:42:f1:61:7b:2a:3b:
e1:f1:4a:ad:23:b8:1c:e3:9a:e9:35:d7:1b:ae:2c:3c:23:3b:
5f:0a:02:ce:ec:e5:68:43:57:f9:b0:bb:a5:a2:05:f0:00:c1:
2b:f4:d9:68:91:24:04:71:7b:34:b4:fd:99:a6:26:0e:4d:b2:
7f:69:a8:3d:a2:8c:84:f9:41:e3:a3:8c:28:5c:04:dd:00:fb:
3f:0b:33:b3:a2:55:08:fe:26:a1:13:7e:ed:3f:5a:61:dc:ee:
5c:8c:67:2a:29:a3:4b:b1:8a:a7:e0:a4:ee:f1:5c:c9:54:93:
de:73:f1:23:fe:4e:de:78:1b:29:e6:2d:c7:6a:da:b3:58:77:
53:da:0a:33:3e:cf:0b:fc:d8:b4:2d:b4:0b:6c:9b:6c:9a:d1:
e4:d6:83:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:27:24 2025 by rpki-client