Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: lArIQJ2KFq9wC0ahHSV8sET9uwgFE7eOtk/7mg8IvIs=
Subject key identifier: 21:7B:54:E8:11:24:2A:10:C3:61:AD:7D:F0:14:B4:A3:DC:FA:45:C4
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 0198805432EF51EE6814D1045065A1104097
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 0F2E
Signing time: Wed 06 Aug 2025 17:00:58 +0000
Manifest this update: Wed 06 Aug 2025 17:00:58 +0000
Manifest next update: Thu 07 Aug 2025 17:00:58 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: OFQ2jNhI6rrmPRnFQReKKRFW19lVq33dpgmuD5jIWi8=)
2: fvccoh-XRGUydolEQwVKUg__llM.roa (hash: MESTegxG3uX73jrknXUqcZY7a9Gll4oI6clWX78ISS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 17:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:54:32:ef:51:ee:68:14:d1:04:50:65:a1:10:40:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: Aug 6 17:00:58 2025 GMT
Not After : Aug 7 17:00:58 2025 GMT
Subject: CN=217b54e811242a10c361ad7df014b4a3dcfa45c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:86:35:b5:4e:35:e7:c3:0e:5c:51:af:90:53:
4e:7a:d0:45:c1:b7:9f:c6:56:bc:37:b6:24:28:90:
59:74:6b:d6:e8:b0:31:95:8e:eb:bd:b5:03:e2:f9:
7f:1a:23:6a:7f:4a:4e:f0:eb:23:70:7b:c6:21:f3:
4a:61:f3:a0:fd:f1:85:58:38:b9:d0:6e:a8:cc:d7:
61:3d:bf:f6:3a:ff:12:a5:3b:3c:38:c0:5a:a1:3c:
ab:ab:d6:3f:f1:d6:43:b7:43:bd:97:78:3a:b0:ff:
ce:c0:6a:37:fa:cd:a8:ce:e2:f1:03:80:0d:ac:eb:
e4:81:fe:e8:67:cb:3e:bc:40:d2:79:49:b8:ee:03:
22:63:0d:02:8c:91:bb:78:5d:c3:12:dc:dd:cc:7f:
bb:04:7c:d3:dd:a6:73:17:33:a3:c7:a8:44:c5:24:
6c:6b:b5:10:ac:cb:8f:fd:a6:c9:11:19:56:3e:be:
3c:78:c4:00:81:12:e7:f5:b8:10:76:f9:c5:01:42:
9e:32:b0:bf:53:7b:f4:e5:8c:81:77:d3:7c:0d:18:
3d:53:1d:5a:da:34:4a:bc:67:3f:68:b6:99:83:88:
31:a0:08:58:bb:72:5b:2e:85:68:dd:c4:a4:2d:b7:
2c:e0:df:cb:02:28:43:99:a0:70:18:5e:cb:35:0c:
9d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:7B:54:E8:11:24:2A:10:C3:61:AD:7D:F0:14:B4:A3:DC:FA:45:C4
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:14:68:87:97:2c:5f:77:c4:10:63:4f:ee:3d:e3:ae:c7:80:
91:ec:66:6c:08:b7:39:4b:73:36:76:18:c7:0f:15:7d:37:b0:
f0:92:b8:52:b5:ee:04:c3:19:5d:46:ef:a9:23:41:47:72:65:
e5:42:48:7c:0d:54:57:21:fe:f9:d0:41:cf:1e:69:9f:6e:54:
a4:c4:37:d1:07:6b:9c:2f:9e:d4:5d:75:c0:e9:ae:31:e4:49:
d6:9c:fb:f8:1d:7d:1e:b2:27:11:44:10:5c:3e:b1:65:57:43:
f9:1c:5d:fd:2c:4c:0f:65:59:94:00:f0:2b:0c:58:b2:aa:8a:
84:01:14:f1:3b:af:44:93:a2:9c:be:d6:55:e7:5c:f0:63:1a:
6f:b7:bb:cf:2b:8b:9e:0e:02:3d:60:d4:87:da:1f:90:5c:eb:
9f:79:f9:c9:66:1d:b0:cc:b9:6c:83:70:61:02:27:df:bf:f3:
06:f2:0c:66:fc:a5:a4:4e:b6:f5:62:55:4e:5e:0e:1a:ea:fa:
aa:e8:e9:93:fc:97:01:90:72:01:ba:25:f4:2a:3a:7c:10:a8:
76:16:cd:25:95:6f:b9:a9:6d:9d:63:7b:2c:ba:25:91:28:0f:
ec:1f:1e:3a:0b:cc:ea:c8:fa:3e:63:80:30:9e:17:bd:71:29:
3a:68:45:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:15:18 2025 by rpki-client