Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft
File: 2VSrlORZUZTSw5sdP-aokfHrkrw.mft (raw, json)
Hash identifier: SV24yU67c2kkjtVOIPVWI5Kk50Q2Zxl8zssu4iqyn0E=
Subject key identifier: 48:D8:54:41:D0:ED:07:11:EE:30:E7:9C:57:85:85:7C:87:B2:CC:E8
Authority key identifier: D9:54:AB:94:E4:59:51:94:D2:C3:9B:1D:3F:E6:A8:91:F1:EB:92:BC
Certificate issuer: /CN=d954ab94e4595194d2c39b1d3fe6a891f1eb92bc
Certificate serial: 01988B7D466CF8F420A5938FF9A0177C7A1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft
Manifest number: 0782
Signing time: Fri 08 Aug 2025 21:01:39 +0000
Manifest this update: Fri 08 Aug 2025 21:01:39 +0000
Manifest next update: Sat 09 Aug 2025 21:01:39 +0000
Files and hashes: 1: 2VSrlORZUZTSw5sdP-aokfHrkrw.crl (hash: v0ZoeJ/OZbVs+wlkqcn9bvt7RaII9SyHQY78bapTZ5c=)
2: ExuO0wU2-ClJDZRwWSRuAs7W0gk.roa (hash: 2j3+sZIfGB/S0w3o+OLoSghT+pM132gfjkW2EjpJ9JQ=)
3: aedVSgDzPN8NSNc0AWT5LWxB0ME.roa (hash: dpDe6aIbJvexkIC5o0dZBz+eF8xcPh7l66sRiS3ImZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:7d:46:6c:f8:f4:20:a5:93:8f:f9:a0:17:7c:7a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d954ab94e4595194d2c39b1d3fe6a891f1eb92bc
Validity
Not Before: Aug 8 21:01:39 2025 GMT
Not After : Aug 9 21:01:39 2025 GMT
Subject: CN=48d85441d0ed0711ee30e79c5785857c87b2cce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:54:de:bf:92:fe:38:e9:0c:eb:79:85:be:bb:
13:4f:ab:d7:ec:e8:69:bc:60:56:10:36:a1:a2:f7:
0e:47:4c:6f:d6:4e:1d:23:54:b2:cf:d4:de:f4:0b:
15:a2:64:25:1c:59:b5:60:c5:3e:1a:80:d0:3b:fa:
9a:a9:27:a5:47:cf:9f:d8:59:78:ca:fc:7a:1e:89:
15:4c:8b:9c:3d:49:24:76:61:d3:2a:a4:35:fe:45:
98:9b:40:a0:b0:fc:e1:df:c9:92:f6:89:32:08:4e:
4d:cb:6e:94:43:62:04:e1:8d:c9:3e:7b:fa:fd:e6:
46:f7:3b:b9:36:f9:50:53:96:18:8d:00:05:d0:bb:
a9:12:54:29:13:98:45:b6:93:a8:54:2c:14:69:98:
45:cb:79:96:c8:aa:35:79:af:e2:e1:a1:96:17:85:
09:20:f9:2f:9f:dd:92:8c:45:3a:69:33:13:39:11:
a9:88:f4:8a:c5:08:62:82:c4:bb:de:9b:3f:8f:bc:
7e:38:0b:60:f4:eb:5a:4d:81:b4:00:ae:30:45:29:
b3:be:a3:43:49:8d:4f:b0:db:27:96:a0:e4:75:83:
bf:20:39:b3:01:d5:cc:98:ee:f2:91:bc:d4:6e:c7:
c7:db:e1:e7:0a:d9:fc:7f:54:3f:49:8d:ff:2f:1d:
b8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D8:54:41:D0:ED:07:11:EE:30:E7:9C:57:85:85:7C:87:B2:CC:E8
X509v3 Authority Key Identifier:
keyid:D9:54:AB:94:E4:59:51:94:D2:C3:9B:1D:3F:E6:A8:91:F1:EB:92:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:15:68:49:bc:15:4c:ed:47:c8:e8:c4:ef:5f:e2:63:c9:42:
98:c0:86:ce:d8:91:05:14:dc:e6:9d:b3:e7:d5:90:9f:b9:cd:
09:d3:51:f8:70:21:b7:08:38:12:93:15:99:a4:92:04:5a:99:
ef:8c:c1:66:c1:a1:91:2b:71:ac:92:11:00:cf:bc:37:87:e5:
75:34:f9:82:a7:69:3c:67:dc:b7:5c:71:5f:cc:09:e7:dd:ac:
60:1b:9d:4c:12:a8:85:d4:cb:10:af:58:7b:4d:6c:92:ce:6f:
64:d6:23:08:35:54:f1:e4:82:9c:f5:1f:6d:d7:9f:33:25:3d:
ad:fd:22:34:7f:d9:22:59:54:c8:38:7a:ed:3b:dd:65:7a:b3:
1e:ad:b3:f0:88:1c:f4:b8:93:55:e4:21:8a:dc:f3:0a:3f:3c:
0c:77:1c:64:82:90:ea:75:1b:7c:dd:c1:b3:f2:39:7d:09:5c:
11:75:e1:fb:d9:59:e1:6c:45:2d:11:c4:c5:cc:38:a8:a8:f3:
9b:e5:17:6a:8b:06:97:29:55:a7:3d:90:95:de:f8:09:e3:e7:
f7:50:39:ea:51:ee:e3:d7:00:c9:a7:e4:b0:d0:60:3f:98:cc:
08:ce:ae:37:7a:e8:f2:da:76:40:96:92:c6:a2:ef:60:a7:7a:
87:38:4a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:06:48 2025 by rpki-client