
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
File: 2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft (raw, json)
Hash identifier: Gg8No/LsaD9ECsTP/BsKsC8U16x0UokHr3M2jmLGIpA=
Subject key identifier: 7F:8F:4B:02:66:24:F3:FD:F5:46:D7:A0:F6:2A:D8:1F:47:25:68:8B
Authority key identifier: D8:81:E5:77:7C:CE:99:0C:0B:2B:0F:4C:29:CC:8D:2C:F9:AF:E8:3B
Certificate issuer: /CN=d881e5777cce990c0b2b0f4c29cc8d2cf9afe83b
Certificate serial: 019873E27759F6C8BF74A6F6CA0F06180802
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
Manifest number: 15A8
Signing time: Mon 04 Aug 2025 07:01:18 +0000
Manifest this update: Mon 04 Aug 2025 07:01:18 +0000
Manifest next update: Tue 05 Aug 2025 07:01:18 +0000
Files and hashes: 1: 2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl (hash: IjgWrcV2pMDJJIUSpVn7HBPCThTGxPjVejh0FLO7jB0=)
2: gd86nab0qf28eq3d5pPFq5e9rZo.roa (hash: OleM9BzJjHgCcSMlxVVC1tH0LyJmqbhh/CO/g3APccs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:77:59:f6:c8:bf:74:a6:f6:ca:0f:06:18:08:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d881e5777cce990c0b2b0f4c29cc8d2cf9afe83b
Validity
Not Before: Aug 4 07:01:18 2025 GMT
Not After : Aug 5 07:01:18 2025 GMT
Subject: CN=7f8f4b026624f3fdf546d7a0f62ad81f4725688b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5c:d6:82:93:66:61:27:46:ae:03:c5:2a:39:
61:09:a8:6a:a0:da:9a:3f:8d:07:a6:97:19:5a:24:
1d:d1:71:08:59:8e:98:62:9d:22:e7:2e:0f:46:28:
d5:b2:67:e1:ad:38:ae:4c:f5:5c:10:27:f3:7d:a3:
c3:fa:c3:e9:d9:4d:f2:b3:db:d9:d3:dc:39:1b:f0:
5b:e9:fd:fd:12:13:75:b5:4e:97:5c:6c:84:83:63:
97:92:7d:97:d0:7a:4c:4d:73:0f:5b:13:b4:6b:4e:
7a:d9:2d:1b:0c:26:51:2b:84:03:d5:e9:98:09:8e:
fd:f7:08:3e:ab:5d:9a:6d:ac:68:b3:c2:ab:67:12:
c0:dd:f6:d3:43:34:0d:02:d0:ae:52:19:1e:20:ed:
66:af:3a:b6:71:40:aa:45:4e:41:f5:61:4f:a5:69:
1e:64:b4:87:30:2d:52:d2:31:a1:e0:c2:d5:4d:79:
43:f4:80:f6:05:18:d3:21:91:39:33:6c:65:c3:9f:
50:f4:ec:54:e0:72:01:30:09:7a:df:07:e7:d4:18:
f1:9f:9c:5a:60:9c:70:d9:9f:b6:54:57:3e:5c:7a:
2a:a0:35:ef:19:00:00:15:1a:b2:3d:43:53:1b:f5:
6d:cc:a6:fb:75:f0:36:e4:d6:9e:63:a1:7e:99:75:
0c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:8F:4B:02:66:24:F3:FD:F5:46:D7:A0:F6:2A:D8:1F:47:25:68:8B
X509v3 Authority Key Identifier:
keyid:D8:81:E5:77:7C:CE:99:0C:0B:2B:0F:4C:29:CC:8D:2C:F9:AF:E8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:34:44:ba:cf:ba:d3:16:0b:11:bf:88:1b:d9:aa:96:5b:8a:
7c:22:13:36:69:2a:6f:5c:60:89:08:52:05:18:0d:b5:68:0f:
33:b2:37:4c:19:9c:20:e6:4b:2f:d1:da:cb:d7:1d:65:cd:1c:
67:f2:ca:2d:28:f9:d1:81:24:12:72:82:45:b6:e6:70:80:31:
b7:69:ff:7a:e4:94:e7:2e:e7:f4:92:94:cd:cc:2c:c9:d1:2b:
04:38:82:4f:66:bc:5e:5f:bd:3c:4b:54:fb:bc:b4:cc:32:d3:
3c:16:a8:82:b8:0c:f4:38:a5:5f:cb:ae:a5:7d:c5:8e:42:83:
21:e3:24:cc:e0:9b:25:ee:7a:0a:b0:57:02:df:cc:18:28:53:
62:64:dc:e7:c2:7f:6c:95:c5:7f:d4:0e:37:68:38:19:fc:1a:
46:4e:72:c7:8e:43:a0:86:a5:64:cf:57:78:2d:e1:13:96:64:
09:35:d7:64:62:29:7b:d4:9f:64:b7:0f:9a:ac:14:b8:3f:a6:
49:f8:1b:12:4b:82:69:6a:5b:6a:18:7c:54:1d:16:e4:67:49:
f6:aa:d6:d8:1b:32:e8:e3:dc:e6:75:a9:e5:41:c8:56:46:fd:
46:f8:22:b9:4f:c5:9e:30:fe:2c:42:ac:6e:2c:f7:3d:08:2d:
d7:22:09:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:03:32 2025 by rpki-client