Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
File: 2KmU2EbLZpboicHMMiheCyOvx3c.mft (raw, json)
Hash identifier: nbw5ph7akU+VPHznH3XEmDyZqwi7PFzQF+axx9LbRvo=
Subject key identifier: 92:5C:8B:A9:B2:25:35:9F:62:9F:23:07:60:BE:B9:DB:FD:29:F9:27
Authority key identifier: D8:A9:94:D8:46:CB:66:96:E8:89:C1:CC:32:28:5E:0B:23:AF:C7:77
Certificate issuer: /CN=d8a994d846cb6696e889c1cc32285e0b23afc777
Certificate serial: 019872CFB097FFB7AF6AC3CAA217D3A8518F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KmU2EbLZpboicHMMiheCyOvx3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
Manifest number: 1500
Signing time: Mon 04 Aug 2025 02:01:10 +0000
Manifest this update: Mon 04 Aug 2025 02:01:10 +0000
Manifest next update: Tue 05 Aug 2025 02:01:10 +0000
Files and hashes: 1: 2KmU2EbLZpboicHMMiheCyOvx3c.crl (hash: hEPQiQ4ZzZSPiOxD9b4pGXW3JOBG2ReLgeAP/E3XyOE=)
2: UHp7t70IbcWp2bwKOGl-4b8ScF4.roa (hash: UvX//cn/2erRwYZHy/h/xPpeIQdcBl4GUvhBbyEANqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KmU2EbLZpboicHMMiheCyOvx3c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:b0:97:ff:b7:af:6a:c3:ca:a2:17:d3:a8:51:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a994d846cb6696e889c1cc32285e0b23afc777
Validity
Not Before: Aug 4 02:01:10 2025 GMT
Not After : Aug 5 02:01:10 2025 GMT
Subject: CN=925c8ba9b225359f629f230760beb9dbfd29f927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bf:74:ff:3e:c4:72:fc:98:be:84:fa:08:e3:
8b:45:01:de:58:4f:be:92:40:0d:1e:ca:e3:9f:aa:
84:2d:75:8f:8b:bf:42:e7:c4:87:f4:40:05:cb:ba:
ac:be:65:b5:dc:ad:3a:11:6a:58:b1:2d:3d:3a:93:
75:7a:69:d3:84:e2:84:eb:dd:9c:a1:66:67:88:ce:
11:1f:e3:d4:08:6f:af:f5:f3:ff:fe:c9:79:0c:0a:
88:3f:23:1e:81:99:9b:7f:65:39:40:3b:6e:3d:2c:
a6:31:21:ae:29:7f:51:f3:f0:4b:89:9d:49:07:44:
ca:c3:01:3e:4b:f9:ac:1f:dc:24:7f:55:3b:db:92:
29:15:43:ca:55:48:51:36:57:13:20:88:38:11:7a:
08:4d:83:1f:71:3b:3f:b4:36:6d:0e:e3:b1:6c:45:
ea:b8:c4:5d:62:0a:60:78:57:52:e8:e8:eb:b0:8f:
92:52:e2:a2:c2:bd:d5:40:90:b9:ab:28:cc:2a:e3:
15:79:19:e9:79:3c:01:39:f4:74:cc:4f:30:9c:91:
0a:01:59:aa:ec:76:fe:07:08:80:87:6e:10:90:57:
f7:95:8c:07:51:3a:77:53:9e:c9:b5:37:ff:08:86:
7a:33:00:ce:d3:23:bf:04:85:71:59:2f:54:6b:21:
80:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:5C:8B:A9:B2:25:35:9F:62:9F:23:07:60:BE:B9:DB:FD:29:F9:27
X509v3 Authority Key Identifier:
keyid:D8:A9:94:D8:46:CB:66:96:E8:89:C1:CC:32:28:5E:0B:23:AF:C7:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KmU2EbLZpboicHMMiheCyOvx3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:3a:7d:fc:1d:22:07:70:4a:d4:d2:42:99:0e:d9:b1:af:87:
17:27:cc:a2:ee:4e:cb:af:71:69:bf:4c:43:48:26:69:03:ac:
80:0d:e3:50:39:76:cd:6f:c4:1a:df:6e:f7:92:eb:4c:32:13:
65:6a:a1:e9:df:67:41:5f:25:19:7f:4c:0e:0b:5f:b7:a4:b1:
da:fe:b8:5f:d8:74:d8:84:ae:20:d9:5c:7c:00:f8:ab:ce:44:
9e:a9:17:ab:91:2c:b2:6d:25:33:d5:e3:18:a2:05:d1:ef:3b:
f0:8c:96:7d:ad:2f:19:03:14:45:9b:ca:2d:f0:1c:cc:39:db:
c7:4e:e4:26:b7:0a:2b:de:2f:57:a9:19:db:f7:1c:82:d7:0d:
2a:38:67:ee:51:d7:68:13:8b:30:a6:51:d5:39:ee:51:2e:97:
4b:17:46:e2:ac:3b:2f:4b:49:c3:ac:a9:0b:e6:07:7f:33:e0:
03:4e:92:4f:14:1a:e1:e4:4b:6f:8e:24:01:cb:63:47:3e:fa:
af:78:6a:5f:c3:84:a2:6f:d8:76:34:b2:e4:7a:4b:95:33:a9:
24:81:69:0a:8b:31:30:45:22:51:b6:58:f9:d3:b6:3b:0e:b3:
b7:31:85:aa:80:a1:cb:21:2b:58:44:01:9b:dc:d1:b4:3c:dc:
5d:d8:30:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhyz7CX/7evasPKohfTqFGPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YTk5NGQ4NDZjYjY2OTZlODg5YzFjYzMyMjg1ZTBiMjNh
ZmM3NzcwHhcNMjUwODA0MDIwMTEwWhcNMjUwODA1MDIwMTEwWjAzMTEwLwYDVQQD
Eyg5MjVjOGJhOWIyMjUzNTlmNjI5ZjIzMDc2MGJlYjlkYmZkMjlmOTI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv790/z7EcvyYvoT6COOLRQHeWE++
kkANHsrjn6qELXWPi79C58SH9EAFy7qsvmW13K06EWpYsS09OpN1emnThOKE692c
oWZniM4RH+PUCG+v9fP//sl5DAqIPyMegZmbf2U5QDtuPSymMSGuKX9R8/BLiZ1J
B0TKwwE+S/msH9wkf1U725IpFUPKVUhRNlcTIIg4EXoITYMfcTs/tDZtDuOxbEXq
uMRdYgpgeFdS6OjrsI+SUuKiwr3VQJC5qyjMKuMVeRnpeTwBOfR0zE8wnJEKAVmq
7Hb+BwiAh24QkFf3lYwHUTp3U57JtTf/CIZ6MwDO0yO/BIVxWS9UayGAgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJJci6myJTWfYp8jB2C+udv9KfknMB8GA1UdIwQY
MBaAFNiplNhGy2aW6InBzDIoXgsjr8d3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkttVTJFYkxacGJvaWNITU1paGVDeU92eDNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9kZDA4ZjctYjZmNC00YjQyLTgxZDct
MjNhYjU5Nzk4NDIxLzEvMkttVTJFYkxacGJvaWNITU1paGVDeU92eDNjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9kZDA4ZjctYjZmNC00YjQyLTgxZDctMjNhYjU5Nzk4NDIx
LzEvMkttVTJFYkxacGJvaWNITU1paGVDeU92eDNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVjp9/B0i
B3BK1NJCmQ7Zsa+HFyfMou5Oy69xab9MQ0gmaQOsgA3jUDl2zW/EGt9u95LrTDIT
ZWqh6d9nQV8lGX9MDgtft6Sx2v64X9h02ISuINlcfAD4q85EnqkXq5Essm0lM9Xj
GKIF0e878IyWfa0vGQMURZvKLfAczDnbx07kJrcKK94vV6kZ2/ccgtcNKjhn7lHX
aBOLMKZR1TnuUS6XSxdG4qw7L0tJw6ypC+YHfzPgA06STxQa4eRLb44kActjRz76
r3hqX8OEom/YdjSy5HpLlTOpJIFpCosxMEUiUbZY+dO2Ow6ztzGFqoChyyErWEQB
m9zRtDzcXdgwwA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:09:19 2025 by rpki-client