Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft
File: 2V_Z-7sug4agu3amyEH8aKfD65g.mft (raw, json)
Hash identifier: uLWqXo4fnvagtBg1JbXw7xGRRmjg/EaxR2cBJIKmEFA=
Subject key identifier: 16:F9:D2:A7:90:3D:02:F0:7A:79:2E:9D:9A:39:44:4C:23:0D:AF:81
Authority key identifier: D9:5F:D9:FB:BB:2E:83:86:A0:BB:76:A6:C8:41:FC:68:A7:C3:EB:98
Certificate issuer: /CN=d95fd9fbbb2e8386a0bb76a6c841fc68a7c3eb98
Certificate serial: 01987ABF9C171D795ACF863ED153E0EE771B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft
Manifest number: 026C
Signing time: Tue 05 Aug 2025 15:00:34 +0000
Manifest this update: Tue 05 Aug 2025 15:00:34 +0000
Manifest next update: Wed 06 Aug 2025 15:00:34 +0000
Files and hashes: 1: 2V_Z-7sug4agu3amyEH8aKfD65g.crl (hash: lmZ8L6/hTDzjqNIkYliDT2sx9mVOvT/NZtDtYwl8xvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft
rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:bf:9c:17:1d:79:5a:cf:86:3e:d1:53:e0:ee:77:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d95fd9fbbb2e8386a0bb76a6c841fc68a7c3eb98
Validity
Not Before: Aug 5 15:00:34 2025 GMT
Not After : Aug 6 15:00:34 2025 GMT
Subject: CN=16f9d2a7903d02f07a792e9d9a39444c230daf81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:30:e9:d4:67:b8:29:d1:01:b2:50:d2:38:d0:
6d:27:3f:39:bf:7a:22:78:68:94:30:00:98:68:5b:
c6:0e:fe:46:d0:ca:7b:05:1a:e0:ec:fa:1e:87:f1:
34:da:03:ae:63:d9:bb:65:c4:81:50:b8:20:46:7e:
dc:67:b5:34:36:59:b5:bc:e4:5c:46:7b:dc:88:7d:
0a:01:7a:9b:b8:69:ff:40:7d:90:bb:da:9c:27:ae:
bc:86:28:6f:1f:6c:9f:cb:98:7a:4e:46:92:d3:c4:
f0:47:ae:59:fa:6e:da:a3:67:0c:44:e5:f0:39:d1:
6b:3e:fe:87:da:d4:3b:7c:d7:68:04:da:2a:71:e5:
26:b1:70:de:66:e7:58:7e:d8:a6:14:b4:d0:6c:cf:
90:f6:e2:d4:c8:7b:38:e4:1b:fe:19:37:c0:98:62:
4b:58:12:28:8b:3f:d1:2f:3a:a4:d4:d8:0d:6d:60:
1c:7a:7c:de:a8:14:3f:c0:98:20:cc:e2:86:40:aa:
8b:9e:6d:05:fd:30:ba:f3:88:46:79:cd:ec:ba:4b:
2c:c9:a7:64:8c:83:8c:f0:4e:e7:d4:d9:21:8f:46:
9e:a5:ed:1a:5d:97:89:fa:ad:d7:f7:d5:3c:4b:3d:
67:d7:bd:01:46:92:e1:cb:35:7a:84:5a:b0:e4:2e:
9a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F9:D2:A7:90:3D:02:F0:7A:79:2E:9D:9A:39:44:4C:23:0D:AF:81
X509v3 Authority Key Identifier:
keyid:D9:5F:D9:FB:BB:2E:83:86:A0:BB:76:A6:C8:41:FC:68:A7:C3:EB:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:1f:47:34:46:d2:a8:37:96:c6:d3:12:67:05:15:bb:e8:7d:
17:a9:9d:d6:a1:80:c7:ca:40:6c:76:90:38:2e:84:7d:49:c1:
96:76:19:63:e6:42:91:eb:3b:bc:3e:32:75:1a:82:d0:11:a4:
e5:12:b7:5b:09:a8:c8:f6:cd:10:95:45:af:37:b2:8a:14:f1:
43:d9:ab:44:29:ce:98:90:bf:1a:35:04:1b:49:d1:82:46:01:
b4:c1:13:b0:f1:e9:9f:17:c7:95:b7:ad:8d:21:88:96:e6:e6:
0c:51:5a:4d:c4:bc:c8:d6:c1:1f:1d:67:06:78:3c:d7:c3:5a:
a4:cf:0f:0a:f5:8a:9e:01:af:fa:e7:42:ca:f0:4f:11:cc:e7:
ce:57:cb:64:cb:bc:b2:7c:41:e4:e5:1e:e2:1c:06:99:54:b5:
df:db:fe:5a:fd:be:cb:ca:e1:e9:96:18:dc:58:88:c1:70:d7:
42:50:c9:dd:3d:f3:fc:70:90:a7:6b:14:a0:c6:07:42:a3:bc:
19:62:9d:ec:17:5c:1a:57:81:90:9c:4b:0e:b0:84:ac:9a:4e:
0f:92:a2:7a:0f:0e:80:2c:49:30:62:05:cd:8f:60:ff:ef:c8:
d1:69:6e:a7:8b:e7:03:fa:f9:e2:a9:01:eb:d2:08:4e:65:9d:
24:3f:60:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh6v5wXHXlaz4Y+0VPg7ncbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5NWZkOWZiYmIyZTgzODZhMGJiNzZhNmM4NDFmYzY4YTdj
M2ViOTgwHhcNMjUwODA1MTUwMDM0WhcNMjUwODA2MTUwMDM0WjAzMTEwLwYDVQQD
EygxNmY5ZDJhNzkwM2QwMmYwN2E3OTJlOWQ5YTM5NDQ0YzIzMGRhZjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjDp1Ge4KdEBslDSONBtJz85v3oi
eGiUMACYaFvGDv5G0Mp7BRrg7Poeh/E02gOuY9m7ZcSBULggRn7cZ7U0Nlm1vORc
RnvciH0KAXqbuGn/QH2Qu9qcJ668hihvH2yfy5h6TkaS08TwR65Z+m7ao2cMROXw
OdFrPv6H2tQ7fNdoBNoqceUmsXDeZudYftimFLTQbM+Q9uLUyHs45Bv+GTfAmGJL
WBIoiz/RLzqk1NgNbWAcenzeqBQ/wJggzOKGQKqLnm0F/TC684hGec3sukssyadk
jIOM8E7n1Nkhj0aepe0aXZeJ+q3X99U8Sz1n170BRpLhyzV6hFqw5C6aLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBb50qeQPQLwenkunZo5REwjDa+BMB8GA1UdIwQY
MBaAFNlf2fu7LoOGoLt2pshB/Ginw+uYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlZfWi03c3VnNGFndTNhbXlFSDhhS2ZENjVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9kMzIyMGMtNGQ2Ni00ZDRjLTkzNTgt
MzIwZGYyZWIwZmQyLzEvMlZfWi03c3VnNGFndTNhbXlFSDhhS2ZENjVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9kMzIyMGMtNGQ2Ni00ZDRjLTkzNTgtMzIwZGYyZWIwZmQy
LzEvMlZfWi03c3VnNGFndTNhbXlFSDhhS2ZENjVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmx9HNEbS
qDeWxtMSZwUVu+h9F6md1qGAx8pAbHaQOC6EfUnBlnYZY+ZCkes7vD4ydRqC0BGk
5RK3WwmoyPbNEJVFrzeyihTxQ9mrRCnOmJC/GjUEG0nRgkYBtMETsPHpnxfHlbet
jSGIlubmDFFaTcS8yNbBHx1nBng818NapM8PCvWKngGv+udCyvBPEcznzlfLZMu8
snxB5OUe4hwGmVS139v+Wv2+y8rh6ZYY3FiIwXDXQlDJ3T3z/HCQp2sUoMYHQqO8
GWKd7BdcGleBkJxLDrCErJpOD5Kieg8OgCxJMGIFzY9g/+/I0Wlup4vnA/r54qkB
69IITmWdJD9gUQ==
-----END CERTIFICATE-----
Generated at Tue Aug 5 17:23:42 2025 by rpki-client