Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
File: 2lTIIO5UFUMsaLATYZJ1_0xubqU.mft (raw, json)
Hash identifier: gAXmJIYHTx3rAeDLgcbtrQcQy/VmNS6eWvOILZYy788=
Subject key identifier: D2:CB:FB:E3:3E:C4:A4:5D:CD:9D:76:07:84:CA:8A:1F:49:B5:A7:0D
Authority key identifier: DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5
Certificate issuer: /CN=da54c820ee5415432c68b013619275ff4c6e6ea5
Certificate serial: 0198A04DBD8ABF59F59A987109CC4CCF7DEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
Manifest number: 06B2
Signing time: Tue 12 Aug 2025 22:01:45 +0000
Manifest this update: Tue 12 Aug 2025 22:01:45 +0000
Manifest next update: Wed 13 Aug 2025 22:01:45 +0000
Files and hashes: 1: 2lTIIO5UFUMsaLATYZJ1_0xubqU.crl (hash: 7rZdM/D9PlbHDC+1gGVDotdxGQMCrz6wZYt7ZD7Ws/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4d:bd:8a:bf:59:f5:9a:98:71:09:cc:4c:cf:7d:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da54c820ee5415432c68b013619275ff4c6e6ea5
Validity
Not Before: Aug 12 22:01:45 2025 GMT
Not After : Aug 13 22:01:45 2025 GMT
Subject: CN=d2cbfbe33ec4a45dcd9d760784ca8a1f49b5a70d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b1:c1:fc:6d:44:30:8e:dc:ea:f6:f0:04:63:
72:be:13:3c:1e:1e:e3:ee:01:f2:bf:66:b4:ad:87:
7d:84:45:a6:61:ec:51:34:30:71:dc:05:60:33:11:
3c:37:d1:10:63:c4:e1:d8:cd:23:10:5b:5f:50:80:
b2:cd:3c:ed:ac:e1:99:7b:a7:8b:22:24:9d:a0:96:
af:8f:d0:6a:0b:c9:29:ef:75:d5:77:1a:9c:ba:fa:
60:a3:d8:4e:e6:73:2a:6e:3e:2d:90:b9:76:62:06:
c2:1e:27:85:03:c9:d1:91:bb:f2:06:6e:98:3b:c6:
50:d7:6a:ad:29:91:1c:4a:2c:f5:72:e0:bc:f1:79:
fa:7f:da:54:df:c9:ad:84:2a:ea:dc:57:0d:f5:02:
8f:b9:9d:ba:ed:55:3d:4c:12:16:38:cf:76:a7:b2:
5e:0d:25:9b:32:45:d8:85:83:52:19:5f:0e:fd:35:
25:5e:44:2b:46:a9:c3:fa:5a:e6:33:6b:a1:a7:93:
cd:15:c2:47:b6:e2:6a:93:3e:68:75:9e:f7:77:45:
26:be:f9:9f:f6:e1:bd:d4:a6:49:81:b5:0a:ee:b1:
92:d6:29:29:40:a4:58:50:dd:da:ac:39:aa:61:fa:
0e:79:08:89:91:da:9f:c2:ae:7f:be:de:c6:d4:ae:
2a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:CB:FB:E3:3E:C4:A4:5D:CD:9D:76:07:84:CA:8A:1F:49:B5:A7:0D
X509v3 Authority Key Identifier:
keyid:DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:56:ed:b7:90:01:03:4e:59:cb:5d:09:24:ab:60:a1:d6:34:
5a:b1:b0:66:48:2e:2c:37:aa:c1:c1:e7:02:d2:4d:45:0c:d1:
09:25:c6:3f:90:64:a3:02:8e:b7:ad:db:d8:51:dc:d9:d4:e5:
41:44:c2:a2:67:0e:b6:77:67:f6:5d:49:95:67:3b:3d:e1:d3:
74:62:29:94:a3:ff:c5:46:53:d7:15:d2:fe:07:ca:fc:12:0f:
cf:df:28:cb:4a:4c:43:9a:a9:ca:e8:90:26:38:d6:20:d5:89:
cb:a2:b1:69:d8:e6:9c:d1:d8:eb:eb:a9:d1:3a:53:20:e1:97:
68:34:6a:85:da:f4:ad:e0:c1:06:91:bf:0d:a6:e3:9d:61:c9:
a6:6d:36:77:05:f8:8b:31:0b:dc:bb:48:af:63:3e:12:35:fa:
18:88:77:c0:1e:4f:94:ff:e5:d1:85:7b:bc:e8:72:35:74:6d:
1d:89:55:43:19:bf:a0:f1:7f:75:58:1a:11:a8:c6:e4:06:3c:
90:03:33:78:75:57:35:0d:3f:d1:18:83:4b:aa:ee:28:6e:2d:
12:1d:28:a2:ab:6c:73:d5:2c:fb:fb:d9:35:58:48:b7:1d:c5:
c5:ab:91:fa:dc:d9:f0:0e:c5:8d:2b:b7:1f:2f:a5:1e:e5:7b:
01:56:93:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZigTb2Kv1n1mphxCcxMz33qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhNTRjODIwZWU1NDE1NDMyYzY4YjAxMzYxOTI3NWZmNGM2
ZTZlYTUwHhcNMjUwODEyMjIwMTQ1WhcNMjUwODEzMjIwMTQ1WjAzMTEwLwYDVQQD
EyhkMmNiZmJlMzNlYzRhNDVkY2Q5ZDc2MDc4NGNhOGExZjQ5YjVhNzBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7HB/G1EMI7c6vbwBGNyvhM8Hh7j
7gHyv2a0rYd9hEWmYexRNDBx3AVgMxE8N9EQY8Th2M0jEFtfUICyzTztrOGZe6eL
IiSdoJavj9BqC8kp73XVdxqcuvpgo9hO5nMqbj4tkLl2YgbCHieFA8nRkbvyBm6Y
O8ZQ12qtKZEcSiz1cuC88Xn6f9pU38mthCrq3FcN9QKPuZ267VU9TBIWOM92p7Je
DSWbMkXYhYNSGV8O/TUlXkQrRqnD+lrmM2uhp5PNFcJHtuJqkz5odZ73d0Umvvmf
9uG91KZJgbUK7rGS1ikpQKRYUN3arDmqYfoOeQiJkdqfwq5/vt7G1K4qzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNLL++M+xKRdzZ12B4TKih9JtacNMB8GA1UdIwQY
MBaAFNpUyCDuVBVDLGiwE2GSdf9Mbm6lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmxUSUlPNVVGVU1zYUxBVFlaSjFfMHh1YnFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84N2E5ZDktNjY3Zi00MWYzLWFlYzkt
ODA5ODIwNWY4NzJlLzEvMmxUSUlPNVVGVU1zYUxBVFlaSjFfMHh1YnFVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84N2E5ZDktNjY3Zi00MWYzLWFlYzktODA5ODIwNWY4NzJl
LzEvMmxUSUlPNVVGVU1zYUxBVFlaSjFfMHh1YnFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQFbtt5AB
A05Zy10JJKtgodY0WrGwZkguLDeqwcHnAtJNRQzRCSXGP5BkowKOt63b2FHc2dTl
QUTComcOtndn9l1JlWc7PeHTdGIplKP/xUZT1xXS/gfK/BIPz98oy0pMQ5qpyuiQ
JjjWINWJy6KxadjmnNHY6+up0TpTIOGXaDRqhdr0reDBBpG/DabjnWHJpm02dwX4
izEL3LtIr2M+EjX6GIh3wB5PlP/l0YV7vOhyNXRtHYlVQxm/oPF/dVgaEajG5AY8
kAMzeHVXNQ0/0RiDS6ruKG4tEh0ooqtsc9Us+/vZNVhItx3FxauR+tzZ8A7FjSu3
Hy+lHuV7AVaTjA==
-----END CERTIFICATE-----
Generated at Wed Aug 13 05:28:34 2025 by rpki-client