Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
File: 2pa1va-ygzLa_oR87RT3pfrUXmk.mft (raw, json)
Hash identifier: A9MEdp2Y18+653/t196pctbfw6Y2CEEt54dJlg9mGxM=
Subject key identifier: 04:99:EE:DE:28:AA:AB:F3:87:72:22:27:0D:DA:9B:B5:3F:D7:F6:46
Authority key identifier: DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
Certificate issuer: /CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Certificate serial: 019885452DA516C3AA8EC236C577C490F59D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
Manifest number: 161F
Signing time: Thu 07 Aug 2025 16:02:39 +0000
Manifest this update: Thu 07 Aug 2025 16:02:39 +0000
Manifest next update: Fri 08 Aug 2025 16:02:39 +0000
Files and hashes: 1: 2pa1va-ygzLa_oR87RT3pfrUXmk.crl (hash: KiKZs0NHMLsbLPJ4hnMwl6AEpKX5chK4BnvJ90/h0X0=)
2: 99kZ91L5k4nve2PYsWtipJThPHU.roa (hash: bVtLb94sDBWJmE1C3lJHiBUqgO9xT7zdCZpTZaX8mXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:02:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:85:45:2d:a5:16:c3:aa:8e:c2:36:c5:77:c4:90:f5:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Validity
Not Before: Aug 7 16:02:39 2025 GMT
Not After : Aug 8 16:02:39 2025 GMT
Subject: CN=0499eede28aaabf3877222270dda9bb53fd7f646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:54:b1:84:8e:17:a4:1e:7e:dd:99:1c:1d:fd:
3b:ea:00:bc:71:47:67:63:ff:4e:ee:3c:3d:30:34:
73:08:88:ae:46:73:57:98:d4:ce:58:3c:61:33:de:
17:5f:84:36:12:16:05:0a:a4:06:6d:00:69:84:45:
71:5b:c3:97:9d:17:b3:63:01:71:21:2a:4e:82:10:
cf:c0:45:6e:a5:e6:60:c6:0a:e8:e0:89:47:84:d3:
16:fa:50:11:01:0c:35:05:55:20:ec:07:c1:63:39:
21:54:44:18:24:ff:02:7a:dd:82:74:e7:36:bc:1f:
fc:70:07:92:a8:ba:99:13:f2:d6:99:35:40:13:25:
74:88:d2:69:4a:33:57:6a:46:cf:77:e0:80:2a:02:
84:e1:68:f1:92:1f:6b:8d:e9:4f:dd:57:5a:47:29:
67:8d:4d:3d:53:f6:85:60:dc:4d:fe:63:2c:de:86:
8d:e3:ef:e2:a6:39:55:e1:8c:45:8e:e0:65:da:b4:
fb:b1:5a:47:14:81:f6:f4:92:8f:08:92:87:71:87:
c6:e7:29:86:ea:84:31:22:0f:53:42:57:7a:c6:e4:
05:df:2d:c0:be:14:33:ff:b8:17:51:dd:45:13:c3:
cd:c0:78:4f:7c:8f:6b:26:73:8e:d8:40:49:9d:40:
6d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:99:EE:DE:28:AA:AB:F3:87:72:22:27:0D:DA:9B:B5:3F:D7:F6:46
X509v3 Authority Key Identifier:
keyid:DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:55:30:74:5f:b9:ae:61:c1:93:e0:ea:4e:4d:e1:da:fa:17:
e0:81:7d:bb:21:7b:24:77:a9:89:e9:00:1c:61:3b:24:e1:7b:
40:a1:cf:a9:5a:f7:95:6e:71:62:97:93:88:2d:84:9c:71:8f:
57:67:3e:d2:d6:36:7b:9c:fe:4b:80:8f:2b:e7:7f:39:5f:7e:
d6:22:0e:27:44:b8:07:cb:a1:1e:df:0f:5d:b9:da:39:18:98:
8d:6b:4b:d0:87:bf:da:49:9d:8e:21:db:42:61:99:0e:cf:35:
0b:2d:25:55:71:61:21:f2:fb:df:fc:8a:88:e8:7a:25:96:ef:
b9:09:91:0d:7e:f3:94:10:22:7c:f7:74:24:46:f8:93:98:c8:
c3:b5:14:37:51:e4:09:02:b7:4a:f6:61:44:54:ce:35:27:51:
86:da:23:d2:f7:c8:88:98:37:44:28:65:b6:fe:f2:6c:0d:4f:
e4:c7:07:4e:dd:43:f1:93:c1:12:5c:31:89:de:98:46:38:f3:
bf:07:d5:b4:66:88:d4:30:39:0a:3e:cb:6b:27:97:98:45:72:
56:5a:57:68:8a:5d:60:74:cd:88:83:4e:83:18:cf:c8:e4:de:
d4:2e:31:41:c6:b7:a3:a1:a0:72:5d:55:eb:fc:9d:3a:a2:8e:
91:e7:ce:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 00:07:51 2025 by rpki-client