
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/44dac0-167a-4993-b9a8-b05cffb187fa/1/2ggpHPxyjQF2DsQngQlqxrTHSl0.mft
File: 2ggpHPxyjQF2DsQngQlqxrTHSl0.mft (raw, json)
Hash identifier: 5Uueah8RNcMEHR91vtCBgZTlEzfjSR+kuPPrQSB8APw=
Subject key identifier: 74:36:C8:56:46:DB:08:25:FE:C7:AD:FF:75:7E:11:45:00:35:64:BA
Authority key identifier: DA:08:29:1C:FC:72:8D:01:76:0E:C4:27:81:09:6A:C6:B4:C7:4A:5D
Certificate issuer: /CN=da08291cfc728d01760ec42781096ac6b4c74a5d
Certificate serial: 01988B0FDD7CCB2EA009A858436552D53CA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ggpHPxyjQF2DsQngQlqxrTHSl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/44dac0-167a-4993-b9a8-b05cffb187fa/1/2ggpHPxyjQF2DsQngQlqxrTHSl0.mft
Manifest number: 1620
Signing time: Fri 08 Aug 2025 19:02:09 +0000
Manifest this update: Fri 08 Aug 2025 19:02:09 +0000
Manifest next update: Sat 09 Aug 2025 19:02:09 +0000
Files and hashes: 1: 2ggpHPxyjQF2DsQngQlqxrTHSl0.crl (hash: Iz5OFILxspDXwaFVsd+y17OI5xy2OsvWrHLTykLt8HY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/44dac0-167a-4993-b9a8-b05cffb187fa/1/2ggpHPxyjQF2DsQngQlqxrTHSl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/44dac0-167a-4993-b9a8-b05cffb187fa/1/2ggpHPxyjQF2DsQngQlqxrTHSl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ggpHPxyjQF2DsQngQlqxrTHSl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:dd:7c:cb:2e:a0:09:a8:58:43:65:52:d5:3c:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da08291cfc728d01760ec42781096ac6b4c74a5d
Validity
Not Before: Aug 8 19:02:09 2025 GMT
Not After : Aug 9 19:02:09 2025 GMT
Subject: CN=7436c85646db0825fec7adff757e1145003564ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6d:18:41:0d:5b:61:1a:ce:1c:fa:fe:ee:5c:
b2:d6:d7:fb:22:72:76:ad:a9:b0:ac:02:5f:b8:7a:
45:15:f5:33:84:af:db:44:41:f0:52:99:c5:48:31:
55:a0:73:e5:31:50:98:ab:ec:a1:79:5b:b2:e6:6f:
ae:12:f1:ed:78:81:e7:bb:f8:02:a1:37:eb:23:74:
0f:7b:5a:2d:00:da:26:c6:c1:8d:14:0b:c3:2f:fe:
6e:06:92:9c:0c:db:88:be:37:3d:78:a3:04:65:f5:
a8:03:64:52:62:e4:44:c0:78:12:4c:24:37:c6:c8:
85:ab:92:94:ef:30:83:44:14:f7:66:55:b8:ad:62:
b6:ae:8e:19:8b:94:66:bd:cd:8d:9f:5c:d1:6a:7b:
bd:ed:d4:d3:f9:94:85:40:9a:5b:0d:23:8d:9f:6f:
bc:e6:45:30:f3:02:11:fb:6e:46:a6:63:82:f1:74:
95:d1:8f:68:9f:0f:89:bb:5d:04:38:64:83:a9:08:
d6:ce:8c:5c:78:81:50:a1:d3:61:d9:a4:00:e0:44:
69:78:38:12:62:e5:05:d4:de:6d:e1:30:a1:93:79:
54:7f:c5:07:a2:bc:f3:ea:41:8b:5e:e4:a7:b7:a6:
fa:bf:cf:9e:69:dd:d7:a7:9d:fa:a3:27:01:e8:7c:
4b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:36:C8:56:46:DB:08:25:FE:C7:AD:FF:75:7E:11:45:00:35:64:BA
X509v3 Authority Key Identifier:
keyid:DA:08:29:1C:FC:72:8D:01:76:0E:C4:27:81:09:6A:C6:B4:C7:4A:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ggpHPxyjQF2DsQngQlqxrTHSl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/44dac0-167a-4993-b9a8-b05cffb187fa/1/2ggpHPxyjQF2DsQngQlqxrTHSl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/44dac0-167a-4993-b9a8-b05cffb187fa/1/2ggpHPxyjQF2DsQngQlqxrTHSl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:a2:27:5b:7d:d1:39:22:10:fd:37:a8:7b:15:ea:8b:a7:32:
aa:58:c1:e3:4f:48:f5:79:ad:cb:d3:de:39:05:08:0e:c2:81:
c5:d2:92:e6:c4:62:a5:12:b8:6c:37:00:09:0e:d6:a5:90:66:
1b:2f:78:60:ac:9b:f9:fb:42:2c:8b:56:3b:7d:ed:8e:cc:de:
b5:0b:39:21:e3:ad:10:96:b9:68:71:d1:2c:a3:1c:d7:e6:2f:
19:39:8b:f1:3a:17:e6:4f:5c:2e:e1:b2:8a:c1:91:2c:f4:06:
c9:f3:eb:cf:14:9a:52:6e:7f:5c:4d:17:86:a9:83:39:38:66:
a8:6a:b0:71:20:ac:cc:68:31:1e:88:10:50:b4:af:8e:74:dd:
7e:8e:6c:92:c6:b8:f7:ea:73:bb:de:6f:80:9a:35:ca:73:56:
86:d0:42:07:7f:a3:69:5f:30:47:7b:be:39:8d:e7:02:e6:58:
d4:12:89:76:c6:37:a3:cc:9d:d2:47:48:43:9a:af:9c:45:3a:
d8:39:a1:27:de:a6:c7:e9:7a:4d:ba:2b:76:f9:65:9c:98:c6:
00:38:e0:9c:bf:5d:33:b7:8c:3d:a0:00:35:9d:55:b0:0c:95:
8d:48:18:f4:29:2a:48:fa:a3:69:2c:a5:0e:33:f4:e1:6c:0d:
0f:37:4c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:48:59 2025 by rpki-client