Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
File: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft (raw, json)
Hash identifier: BFt3EYs12Z9YEaUX/EZlAG1K1pibovWoWdLMem3MTME=
Subject key identifier: FF:04:78:90:CC:F5:9F:DD:C2:B4:4B:30:22:B1:9A:98:F1:D4:C3:C4
Authority key identifier: D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE
Certificate issuer: /CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de
Certificate serial: 01987B2E1C56CBF1ACA79DFA5CAE2F424582
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
Manifest number: 01FE
Signing time: Tue 05 Aug 2025 17:01:15 +0000
Manifest this update: Tue 05 Aug 2025 17:01:15 +0000
Manifest next update: Wed 06 Aug 2025 17:01:15 +0000
Files and hashes: 1: 1-fKYH7NxhQKRhWFUhdeZIQJCx4I.roa (hash: hiw+Pi/4f+TeDv6TkBewfREUIC+lofxlXNwz+z+uPDE=)
2: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl (hash: 7xhY3qBwgkXx9FbmyIoxTVTFCJd8hLcMvF25ZBTFeFg=)
3: P6mssWX-V0cqAzHy81OLWoJ95tA.roa (hash: 1KxuTLXZ0RpUrBX1EdO6Y3ND8ja5oUQEOKFvppcvKmo=)
4: xb1c81OFtbINdLQq-ZwRav9UWoI.roa (hash: XHYFd0tSE5d2fh7X6gspcN3JIn/ONDCV3VHTC+ocClI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 17:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:2e:1c:56:cb:f1:ac:a7:9d:fa:5c:ae:2f:42:45:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de
Validity
Not Before: Aug 5 17:01:15 2025 GMT
Not After : Aug 6 17:01:15 2025 GMT
Subject: CN=ff047890ccf59fddc2b44b3022b19a98f1d4c3c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:82:1a:59:2f:29:30:86:be:bd:c5:e9:4c:aa:
f5:65:ee:b7:59:dc:d0:57:07:2b:6a:39:05:a8:1c:
7b:08:77:8d:85:43:1f:c1:6e:6f:2e:be:20:58:4c:
79:4b:98:30:27:28:72:14:07:38:12:21:cc:48:30:
87:0b:2e:0e:d3:8e:49:28:55:5b:8f:c1:e9:c4:54:
b9:ff:0f:01:81:9c:9c:fb:71:1a:59:cc:e7:d1:9d:
90:5c:84:27:22:de:87:0f:14:04:1e:44:1b:59:f1:
14:9e:47:d5:d6:6d:1a:db:47:b6:e0:9d:cc:85:e4:
ab:89:22:9a:32:f7:03:31:12:84:e6:02:68:56:3d:
63:b9:18:44:8d:3b:0a:8a:7d:f5:36:9f:1c:3c:56:
76:e3:52:ba:ea:83:85:0d:41:97:1f:a1:97:34:8d:
13:95:3e:3c:c9:39:8d:9c:9b:b4:8c:a3:37:5e:0a:
8a:9e:c1:3c:0b:a9:ff:99:62:64:9d:b0:ea:17:b0:
38:72:e4:bb:15:d4:78:a4:0d:5d:eb:be:8a:8a:84:
11:a2:82:06:8d:92:c3:03:e3:4c:01:c7:ad:ec:00:
69:91:da:21:9b:64:7f:a5:9d:a3:dc:ef:f6:6c:7d:
11:cc:c3:ff:e9:32:44:2c:56:4c:2b:b5:dc:e8:6e:
07:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:04:78:90:CC:F5:9F:DD:C2:B4:4B:30:22:B1:9A:98:F1:D4:C3:C4
X509v3 Authority Key Identifier:
keyid:D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:c6:2f:b3:7f:64:b5:39:ea:4b:7b:fe:d1:b1:d8:99:61:18:
4e:5d:be:c2:14:5e:b3:63:53:e0:a4:14:07:30:30:94:87:b5:
a8:7a:9d:46:fc:9f:2d:ee:73:3f:3b:04:eb:b4:c5:cb:2d:b0:
17:cb:41:7e:f5:ca:d3:b6:f5:99:25:6f:a1:cf:82:99:75:c6:
0d:8f:85:b0:b6:8e:f9:11:71:93:17:b6:1b:eb:3c:1a:3d:2f:
c4:f5:3c:64:17:ac:f8:70:31:cb:b9:d0:82:3a:5c:6a:be:62:
2f:d6:45:12:35:17:c7:57:e2:7b:be:07:dd:14:f0:fd:93:7a:
51:d5:2d:88:8f:b4:a3:1f:87:58:9e:3a:5e:fd:70:55:c6:90:
85:90:68:b9:0d:85:95:77:d1:ba:ec:f0:58:58:4a:17:27:9b:
fb:30:df:87:dc:80:cd:3b:61:ae:63:cc:03:30:05:f9:5e:ce:
e4:21:77:74:24:4f:f3:de:3f:71:ff:1e:9d:74:0c:88:bb:a5:
c1:8f:c9:3b:23:69:9e:8b:11:be:d5:42:23:0b:fa:35:f9:43:
5f:d5:fa:6b:e9:ee:be:a4:88:a8:63:9a:89:20:d2:ef:64:18:
3b:61:b7:b3:ff:2e:ff:a5:80:c8:49:77:19:33:d3:9c:41:e6:
38:88:ea:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:57:18 2025 by rpki-client