Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: YrEUCEhnFkAq41CqzkrIyfdQWAtDnACaiU2iaQT+jRE=
Subject key identifier: FB:F9:79:8A:E9:EE:4A:D6:A2:88:17:5E:F3:3F:3B:8D:0A:E1:D6:70
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 019882B0445EF773CEDF76D4015435AEAE21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 154D
Signing time: Thu 07 Aug 2025 04:00:46 +0000
Manifest this update: Thu 07 Aug 2025 04:00:46 +0000
Manifest next update: Fri 08 Aug 2025 04:00:46 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: F77Ssd4JmthSk8oWDY/m2Gi++SJlsxABHlHsz+Qe2b0=)
2: 6R0wvkFPscZQ2uww-ZvwnaXh--0.roa (hash: wyiJ7rZP6x6kzeIfld1VjsLp4nIqzGhNhuxTGdTq1Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:b0:44:5e:f7:73:ce:df:76:d4:01:54:35:ae:ae:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: Aug 7 04:00:46 2025 GMT
Not After : Aug 8 04:00:46 2025 GMT
Subject: CN=fbf9798ae9ee4ad6a288175ef33f3b8d0ae1d670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:37:8c:c5:8e:27:05:a3:b6:33:74:55:52:6b:
b4:09:f9:ce:31:ec:81:0e:a8:d0:4d:23:97:21:ae:
f9:70:57:15:24:cb:01:a7:d7:98:68:df:e6:f6:d5:
53:f4:39:b2:ad:f5:23:25:06:18:c5:b3:0b:8a:48:
58:fe:81:c3:ae:6c:d4:49:24:68:07:a2:94:45:ee:
66:9b:a8:c1:5d:5b:b3:1c:09:0c:47:74:7c:10:bf:
5d:0d:99:c4:09:43:cd:5b:84:06:88:e4:f9:4f:d6:
a0:50:17:75:6a:48:3d:15:5e:a2:0f:6a:36:0b:8c:
0a:3f:1e:91:57:af:c9:c6:e0:9a:be:f4:90:24:74:
60:70:0e:88:8a:cd:7d:af:48:0d:91:7a:19:67:66:
bf:20:f5:17:05:a2:a2:c4:55:47:1f:21:77:d1:63:
d9:41:d2:80:e8:67:b1:01:8e:d4:50:08:f8:28:72:
a7:3f:75:15:9b:b6:3f:c2:03:c3:d9:2e:d0:4a:4a:
39:73:a6:fc:25:ef:29:0a:d6:e4:d9:2d:99:b0:4e:
9c:ce:96:27:a1:0e:75:1f:96:f6:eb:55:fa:8f:ae:
28:bd:49:18:d0:de:8a:8d:ca:d8:d8:73:2a:61:db:
bf:f8:81:4f:b9:ca:a8:e6:de:39:2e:b5:4b:1f:30:
11:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:F9:79:8A:E9:EE:4A:D6:A2:88:17:5E:F3:3F:3B:8D:0A:E1:D6:70
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:e4:ad:c3:79:d4:3d:33:56:38:38:3c:55:a1:94:26:6b:cb:
4c:a5:79:82:98:68:e5:6b:6c:61:61:8f:1c:d6:bb:c7:26:05:
c8:5c:13:d2:63:33:f4:bd:26:45:f6:e1:bf:64:05:bb:28:7c:
64:76:c6:3a:c3:f5:d4:b1:a3:a7:e6:cb:83:cb:c8:2c:bc:67:
1f:a0:d3:be:72:47:3c:fc:44:e3:06:69:dc:c5:b1:8a:60:e9:
31:48:fa:77:71:b9:64:55:22:3d:8e:2f:96:0d:7b:65:08:cc:
a3:91:93:f5:f4:8d:2c:75:fb:95:23:a8:55:1b:e5:08:39:45:
d7:fa:5c:47:6a:c6:48:f3:c4:ca:e6:63:15:31:f5:17:8f:bf:
44:30:f2:36:39:9d:f5:dc:8b:e5:1a:e3:ec:b5:e0:7a:5a:52:
13:78:50:f1:82:49:24:e1:2e:4a:a6:bb:a7:e0:62:cd:ec:e7:
02:c7:4b:34:bb:ad:f4:e6:9e:3a:62:74:b3:c8:37:d7:d0:06:
21:c5:97:82:c4:9e:db:a3:c1:d0:fe:d7:a5:dc:18:e4:42:62:
64:41:ec:46:33:9f:7a:fc:69:16:cc:e6:fc:4d:41:4e:18:b0:
c0:30:5c:64:30:90:d5:ad:d4:bb:ca:db:a9:39:67:f4:88:c6:
cc:65:a5:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 13:10:02 2025 by rpki-client