Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
File: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft (raw, json)
Hash identifier: 4DXgOv+kOLN+0V3bfrlCWe26jMS/KQbs1TgLNLIZY/g=
Subject key identifier: 42:F8:1D:8E:57:BF:0A:E0:4F:D9:4B:13:C7:AF:40:83:7A:6E:CF:D6
Authority key identifier: D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
Certificate issuer: /CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Certificate serial: 019879082B6372EEB94E3590E309372E3194
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
Manifest number: 0D3B
Signing time: Tue 05 Aug 2025 07:00:35 +0000
Manifest this update: Tue 05 Aug 2025 07:00:35 +0000
Manifest next update: Wed 06 Aug 2025 07:00:35 +0000
Files and hashes: 1: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl (hash: ylHBo6c8oT+/zMT/NsebhpNJM32eQO0BIifWf2FgLc4=)
2: GhbIbk50hv6g93dh7hGhzK6K_74.roa (hash: nXi3Gj76e6GTyqlSijwexlGEZ4aKaxuj/QihrtfAHS8=)
3: R5r0xeVYQuyhFWywaHju63NvX88.roa (hash: gil6oFrijLp6JqgDOMjfduAOivvAur9Q9eunuVq1Ysg=)
4: TofwY-R4zO7hCFwhNRcFqFccDIA.roa (hash: CO89XYgmv4EUpm6JNaIOn/T7FUsKcLGJGFWRoloHQXo=)
5: kEveC8WkpMXtAhCjQYal_7N8cqU.roa (hash: 36t2IiG5a0ru6GNWxSIKI2twOH4WabuzXbDN7PDUMCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 07:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:08:2b:63:72:ee:b9:4e:35:90:e3:09:37:2e:31:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Validity
Not Before: Aug 5 07:00:35 2025 GMT
Not After : Aug 6 07:00:35 2025 GMT
Subject: CN=42f81d8e57bf0ae04fd94b13c7af40837a6ecfd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:91:5d:60:f7:85:13:cc:9e:e7:86:18:a8:8c:
dd:5a:57:98:f7:ce:ab:73:7d:35:e6:ab:3b:44:d5:
b5:47:96:08:21:4c:ac:95:d2:86:83:7b:b3:1f:7b:
6e:0b:6e:09:5e:87:ac:fd:48:3b:3a:39:6e:9b:75:
88:c1:40:9b:bc:06:70:86:4f:7c:56:64:5e:cc:63:
49:6c:9a:3d:5e:d7:a4:83:6a:21:c6:dd:4c:03:b9:
98:23:18:b7:0c:c2:bd:03:41:40:12:b0:48:6b:7a:
2d:13:72:f6:04:cc:ec:6d:ec:b4:ae:7f:ec:84:93:
e5:f6:71:cd:d0:d0:26:95:af:39:22:36:f6:31:32:
bf:4c:cc:e9:74:6a:fb:83:a8:d1:4b:14:87:93:95:
ea:0f:5f:3b:fb:f2:f5:c9:5a:53:12:29:3a:b7:79:
89:73:05:cb:04:49:06:c9:02:3d:24:93:8d:05:10:
b9:4d:df:ae:89:a9:12:c5:c1:76:5f:c7:b9:5c:37:
4b:02:6d:02:c1:f6:0a:fd:17:43:b9:19:98:e3:c6:
35:e6:bc:d9:9e:a3:63:d1:40:d3:bc:14:77:a8:88:
c0:7d:3e:08:7d:9d:70:3c:13:d0:22:58:aa:44:69:
e4:ef:f4:81:c3:14:6a:7f:ed:28:71:0d:5a:29:a0:
db:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F8:1D:8E:57:BF:0A:E0:4F:D9:4B:13:C7:AF:40:83:7A:6E:CF:D6
X509v3 Authority Key Identifier:
keyid:D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:a5:cd:46:86:f7:67:ec:35:0d:a7:81:e0:4b:69:bc:95:32:
84:ca:2f:0b:8f:dd:6e:cb:3e:cd:52:25:60:1b:33:c0:c6:f5:
20:da:fc:f2:3e:b2:6d:05:aa:aa:7a:c9:f8:78:19:3a:77:66:
77:b8:a8:41:f6:2b:5d:e7:09:d2:77:79:a3:8c:f1:d0:e9:10:
b8:f2:68:46:61:02:cc:67:35:de:84:54:a9:c1:8c:a3:39:1a:
2a:92:33:44:e0:91:82:79:e3:94:b3:ed:8c:9d:65:99:e5:0f:
77:7f:13:9e:6e:4d:91:9a:01:17:e4:3b:dc:da:6f:cb:08:5b:
5b:fa:65:4e:3b:92:bb:e4:e5:c2:7b:33:ca:cc:d5:7a:d9:fb:
30:e9:cd:83:a6:f7:1c:bc:ad:d9:5b:04:50:f9:51:e5:64:73:
f8:ab:c6:3a:5a:38:bb:bb:88:97:1f:d7:db:ab:c4:9a:33:99:
e1:c4:89:ef:fa:75:02:00:33:ba:c0:a9:6a:a6:d5:2f:f0:ef:
e5:09:1e:27:7e:99:74:f5:ff:1a:0e:f8:85:d0:5d:61:a5:bb:
53:c6:a5:dc:87:b9:8d:50:9b:e1:ba:96:2e:3d:59:85:31:55:
87:19:4d:da:29:77:ac:bf:96:5d:50:8f:e6:d1:86:47:db:e1:
f5:52:47:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 17:10:09 2025 by rpki-client