
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
File: 2o2nRADHVVq6J8Eon7-5CzO3miI.mft (raw, json)
Hash identifier: 5HC4nYfIcBIRMZbEyR8xSV+1SPeNsdQgb90VrsaNSzM=
Subject key identifier: EC:07:56:0B:8D:72:6E:79:0A:AB:CE:3A:4C:F5:ED:A1:3A:B2:95:60
Authority key identifier: DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
Certificate issuer: /CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Certificate serial: 019874505AD0B602B3EFFC6A76AE1DEE9510
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
Manifest number: 14A4
Signing time: Mon 04 Aug 2025 09:01:19 +0000
Manifest this update: Mon 04 Aug 2025 09:01:19 +0000
Manifest next update: Tue 05 Aug 2025 09:01:19 +0000
Files and hashes: 1: 2o2nRADHVVq6J8Eon7-5CzO3miI.crl (hash: +Ar5KMGItMwnzKHPiW7hIeTHbVx4HcH3deujo/iWVRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 09:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:5a:d0:b6:02:b3:ef:fc:6a:76:ae:1d:ee:95:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Validity
Not Before: Aug 4 09:01:19 2025 GMT
Not After : Aug 5 09:01:19 2025 GMT
Subject: CN=ec07560b8d726e790aabce3a4cf5eda13ab29560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a2:37:9b:7f:04:02:25:7b:ce:c2:31:a6:39:
a8:f3:3d:01:9d:10:e4:cb:3e:e6:ce:95:d2:2f:89:
3f:66:f2:94:cd:73:54:fe:96:d2:61:59:ca:1f:22:
ea:d0:d4:95:43:3b:e9:22:54:1d:4c:87:d6:69:73:
94:6a:ec:6d:8c:4b:77:e6:44:97:fc:ce:7c:64:0a:
40:5b:db:5a:ae:e8:de:40:f0:e2:1d:cc:c6:1a:cf:
cc:1a:30:91:c0:4b:86:48:28:92:eb:22:e4:22:16:
14:79:38:fc:e3:40:57:9e:10:c9:de:01:ec:92:20:
0f:74:eb:f8:f5:64:78:40:c1:93:a7:7f:db:74:39:
3d:20:c7:3d:dc:6d:0a:9b:3d:b7:6e:24:b2:8d:3f:
37:3d:1c:d8:91:ed:6b:3f:da:5b:be:89:7c:0b:6b:
91:28:9e:28:75:f2:39:1d:cb:ca:44:4c:ad:95:06:
79:fb:bd:14:75:3b:1e:57:8e:61:b3:ca:d0:be:d5:
7e:12:35:11:c0:95:d8:d7:9d:4e:41:cc:53:65:58:
77:da:3d:63:3b:79:54:47:8d:90:5a:9f:da:31:73:
05:0e:b2:84:70:f3:d1:0f:ab:6c:c1:2c:ba:30:d9:
1b:80:9f:92:f9:22:05:dc:c7:f5:21:e0:89:8c:56:
f0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:07:56:0B:8D:72:6E:79:0A:AB:CE:3A:4C:F5:ED:A1:3A:B2:95:60
X509v3 Authority Key Identifier:
keyid:DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:09:3e:93:b2:ab:48:e8:01:93:dc:b8:b5:78:4b:1c:99:c6:
61:1a:71:9d:62:73:a1:9d:f2:ff:30:77:9e:e1:66:db:c8:71:
ef:75:f5:b9:e8:0d:d2:ce:0b:08:33:3a:48:8e:a0:de:aa:90:
11:30:41:a1:3d:f2:1a:9a:d0:86:fb:07:72:c0:78:85:4f:d2:
eb:35:a6:0b:5e:30:bf:c6:c1:af:53:55:5e:63:9f:0c:56:a2:
18:b5:c0:59:1b:88:53:18:48:34:5d:8d:da:3e:ab:32:4d:c5:
ad:07:43:5b:7f:56:e7:c2:ac:ce:0c:8a:17:de:20:1e:3b:9c:
26:6e:83:b2:f9:6c:96:1e:66:ba:eb:c0:fe:d7:24:c2:e3:54:
e7:01:2a:eb:8a:03:59:f0:0d:ff:0c:e0:84:47:d8:c9:f9:38:
cc:25:79:c5:5a:03:f3:78:4a:02:89:82:e6:5f:0f:2b:25:63:
c3:8b:1b:65:a7:8c:d0:3d:18:67:4f:e2:27:a2:c7:13:28:c6:
56:06:89:f8:42:7e:6b:bd:76:6c:0e:1a:10:58:0e:d5:56:fe:
62:71:e2:8b:f3:6b:d5:a7:54:56:b0:38:87:fb:49:5f:80:e8:
b6:8c:0e:2c:1d:d0:d7:ab:83:ba:31:19:ba:15:70:92:6f:e2:
4f:f9:24:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 19:14:58 2025 by rpki-client