Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
File: 2KzzS-KwTHzO8iIejR_LbKu0FZE.mft (raw, json)
Hash identifier: lsjLBWWSv3/Xk5mHEi0YEGCSwb5X6467r9dBAU/B7FE=
Subject key identifier: 2F:42:64:C1:2C:EC:2E:83:F3:E8:68:E1:67:BD:7F:37:60:D1:B8:1F
Authority key identifier: D8:AC:F3:4B:E2:B0:4C:7C:CE:F2:22:1E:8D:1F:CB:6C:AB:B4:15:91
Certificate issuer: /CN=d8acf34be2b04c7ccef2221e8d1fcb6cabb41591
Certificate serial: 01989411F0F11A36F03BA983D02D314C3324
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KzzS-KwTHzO8iIejR_LbKu0FZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
Manifest number: 1628
Signing time: Sun 10 Aug 2025 13:01:00 +0000
Manifest this update: Sun 10 Aug 2025 13:01:00 +0000
Manifest next update: Mon 11 Aug 2025 13:01:00 +0000
Files and hashes: 1: 2KzzS-KwTHzO8iIejR_LbKu0FZE.crl (hash: 3ljdnHcPMJejqBd14g+5/XJ0RR1W6QUm1/1wZgJE9CE=)
2: tFYWfziNY6T1pgWT96la8X957p4.roa (hash: 08hpQSe8BwmYvsZjvFViF9kdWzrXeHJU+sA3OilF/oE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KzzS-KwTHzO8iIejR_LbKu0FZE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 13:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:11:f0:f1:1a:36:f0:3b:a9:83:d0:2d:31:4c:33:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8acf34be2b04c7ccef2221e8d1fcb6cabb41591
Validity
Not Before: Aug 10 13:01:00 2025 GMT
Not After : Aug 11 13:01:00 2025 GMT
Subject: CN=2f4264c12cec2e83f3e868e167bd7f3760d1b81f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:43:40:b6:8d:7a:b3:4b:3b:7e:5c:da:33:1e:
ac:74:67:2e:64:d0:a8:4a:23:80:05:1e:3a:79:7a:
dd:2b:2a:ff:f5:70:e4:97:9b:58:4d:a9:b3:f2:a9:
4d:c3:d5:0e:42:3f:15:b7:da:d9:a0:8c:cc:41:94:
da:ef:70:98:1d:75:01:b0:7c:af:b3:37:7c:ab:2b:
96:e1:fe:33:0e:63:0c:57:61:a0:91:99:12:d3:1c:
fb:b1:dc:15:92:e5:34:20:2b:79:3d:4c:d7:27:ca:
3b:de:61:21:e2:7b:6d:6c:15:70:bc:ed:49:e0:94:
17:93:4f:90:d7:2f:5e:16:75:fd:2f:2c:ee:77:35:
07:ef:5b:98:a4:7f:c0:b0:0e:28:77:51:ea:2c:ba:
b3:8f:e8:31:e8:f2:75:a0:6f:a4:de:4b:56:77:37:
e7:1e:28:9c:f8:2e:a2:9a:38:cd:e9:a1:c0:7b:0b:
42:27:b3:1d:73:f1:4c:af:1d:1d:62:53:39:9e:76:
92:5f:52:61:ce:a6:fc:91:90:39:e8:54:ce:ae:73:
bf:ac:bf:96:ff:f5:eb:0e:f3:85:67:47:12:a6:04:
b4:3e:ef:73:8b:17:44:e4:9a:be:32:bd:f9:9c:85:
67:34:bc:90:28:35:e3:ab:be:32:22:09:ba:f8:9a:
b7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:42:64:C1:2C:EC:2E:83:F3:E8:68:E1:67:BD:7F:37:60:D1:B8:1F
X509v3 Authority Key Identifier:
keyid:D8:AC:F3:4B:E2:B0:4C:7C:CE:F2:22:1E:8D:1F:CB:6C:AB:B4:15:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KzzS-KwTHzO8iIejR_LbKu0FZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3df341-017c-4660-8cf7-44d64b9da459/1/2KzzS-KwTHzO8iIejR_LbKu0FZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:66:90:36:dc:50:7f:3c:a1:8b:ef:5b:3a:2b:8a:84:eb:37:
0d:64:f6:44:22:d8:49:71:dd:0f:61:a3:76:4f:f1:8d:1b:a4:
c6:1f:1a:8e:79:a3:ee:c2:d0:99:60:bd:c3:79:55:66:34:2b:
d2:4e:43:d3:14:6a:20:63:cd:bf:24:5b:ef:a9:0e:4b:53:ae:
7c:fd:cd:7d:5f:60:73:82:9e:c2:af:46:9c:ba:e9:ba:42:11:
37:e6:7b:d2:fd:f6:a2:d1:e6:26:9a:11:d0:51:ff:8f:92:4c:
3f:5d:cc:fb:9d:8b:c2:de:7a:fd:c1:6b:a1:2a:b5:8f:c8:2b:
b9:07:60:85:29:95:54:f7:9c:cf:09:20:d9:4d:e7:08:e5:83:
ff:dc:b6:8b:b5:82:0c:20:c5:a9:5a:a1:3b:3a:77:53:eb:ed:
14:50:ee:ec:3c:97:9e:fe:d1:bf:4c:79:b0:0e:e9:e7:c0:d5:
8b:f0:81:b2:d1:22:11:0b:8c:f2:59:a6:e6:bf:a2:f6:d9:9c:
5a:32:03:0b:1f:bb:85:7f:01:30:fc:e9:e6:c5:fa:27:5b:03:
9e:70:d0:94:8f:ac:92:41:ea:de:1c:0a:89:79:2e:08:95:eb:
39:83:4d:ae:2b:32:b9:d8:01:f5:19:c5:71:16:07:94:a3:a2:
73:11:c9:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 20:58:36 2025 by rpki-client