Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
File: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft (raw, json)
Hash identifier: q0rNUyEgBnxhpoIN4Ner4y8tx48uKexqOMBpNvgMfzQ=
Subject key identifier: DF:9B:10:B6:A8:39:BC:FF:E9:8B:4D:98:5E:96:61:14:87:D9:24:77
Authority key identifier: D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
Certificate issuer: /CN=d97a77930122879a766470df8d660c98442a9932
Certificate serial: 01988C581CE437C199FB973650D4F4B22AF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
Manifest number: FC
Signing time: Sat 09 Aug 2025 01:00:41 +0000
Manifest this update: Sat 09 Aug 2025 01:00:41 +0000
Manifest next update: Sun 10 Aug 2025 01:00:41 +0000
Files and hashes: 1: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl (hash: ig/eeGEaylSqfy5lQs1jRfhcwIoWpIU6t5O3fXuVcwQ=)
2: HVaoDMotksZf76Ju74TL_0gQqQw.roa (hash: 6Wt6s6Ldu4cKxpBhxwlW4dbeWtmB6JUQE70sEXR7L0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:58:1c:e4:37:c1:99:fb:97:36:50:d4:f4:b2:2a:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d97a77930122879a766470df8d660c98442a9932
Validity
Not Before: Aug 9 01:00:41 2025 GMT
Not After : Aug 10 01:00:41 2025 GMT
Subject: CN=df9b10b6a839bcffe98b4d985e96611487d92477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b6:72:cb:46:52:67:7f:28:ba:e8:67:00:e5:
76:17:18:40:a7:60:56:c0:da:2d:84:37:50:a8:f3:
c3:1a:a5:be:bd:3c:d1:25:3a:44:5f:d5:4e:63:b3:
8c:00:37:db:07:46:b7:3a:d6:16:59:02:b3:44:de:
1a:d5:63:47:e5:0f:44:0f:45:42:bf:7e:88:c4:7d:
2c:35:85:cb:c5:51:85:83:3b:ea:b0:43:94:88:7b:
69:66:9c:72:66:79:b5:27:5b:1f:3f:7d:0a:3a:f4:
9d:38:26:32:4d:ee:b3:c9:31:ba:b0:4b:db:55:18:
8c:e4:10:90:f4:47:da:f4:cb:41:05:72:6b:bf:fa:
7b:c3:37:ad:c5:53:e6:cb:47:02:61:e4:a0:18:41:
2e:9d:07:cf:e3:8d:ff:ff:22:aa:23:50:7d:63:ed:
22:fd:59:8d:97:08:5a:51:52:f2:b9:55:6a:69:2a:
fa:a2:f1:29:da:58:23:1d:a4:64:c4:12:06:35:1b:
70:a0:aa:9c:e3:23:97:4e:f8:04:97:24:a1:ee:7e:
c3:bb:db:5c:c1:16:9a:e8:54:66:c3:c1:4e:60:a5:
de:2d:84:49:92:a1:52:1c:e5:b3:3f:4f:80:17:ef:
52:a7:9c:23:35:6a:c1:e4:d7:71:88:c7:c4:b6:16:
db:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:9B:10:B6:A8:39:BC:FF:E9:8B:4D:98:5E:96:61:14:87:D9:24:77
X509v3 Authority Key Identifier:
keyid:D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:8c:24:35:f4:4b:56:6d:ac:7d:0c:4d:c4:c9:4c:2a:8c:76:
15:e4:a5:ac:35:84:88:d5:8f:02:04:1c:3f:ab:43:9d:c7:cf:
29:68:39:49:f0:dd:40:f0:36:eb:d9:05:ab:63:e5:d1:8d:76:
73:60:3c:a2:23:df:90:38:9f:96:b8:a3:9a:c0:37:1c:52:60:
1f:36:b3:9c:fa:48:79:fb:df:83:25:d2:a1:b9:ce:8b:05:76:
7f:82:1c:4a:85:41:9c:13:7a:00:0f:04:3f:90:53:d8:a7:01:
9c:79:bf:dc:27:59:a8:a1:10:91:77:49:d3:a7:1f:37:2f:9a:
62:92:06:6f:44:63:09:1e:e7:5f:29:e9:79:3e:56:7b:fa:e2:
b5:3f:2b:49:ad:ec:8c:5e:62:da:30:0f:22:64:67:70:ff:c0:
65:c0:b2:77:51:30:a7:07:da:74:25:a2:0f:e7:ff:82:08:79:
26:9d:32:b4:45:c3:36:ce:83:72:c8:19:a2:87:e9:67:86:48:
28:b6:9d:5f:4a:a0:ef:52:e6:45:34:a1:84:ec:57:32:b6:12:
60:f8:dd:bf:47:fd:72:36:a1:79:ed:13:26:d8:87:7d:c7:f9:
53:ea:65:88:01:65:3d:66:99:d5:e5:41:30:21:ad:b4:be:5c:
b3:6c:74:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiMWBzkN8GZ+5c2UNT0sir5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5N2E3NzkzMDEyMjg3OWE3NjY0NzBkZjhkNjYwYzk4NDQy
YTk5MzIwHhcNMjUwODA5MDEwMDQxWhcNMjUwODEwMDEwMDQxWjAzMTEwLwYDVQQD
EyhkZjliMTBiNmE4MzliY2ZmZTk4YjRkOTg1ZTk2NjExNDg3ZDkyNDc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLZyy0ZSZ38ouuhnAOV2FxhAp2BW
wNothDdQqPPDGqW+vTzRJTpEX9VOY7OMADfbB0a3OtYWWQKzRN4a1WNH5Q9ED0VC
v36IxH0sNYXLxVGFgzvqsEOUiHtpZpxyZnm1J1sfP30KOvSdOCYyTe6zyTG6sEvb
VRiM5BCQ9Efa9MtBBXJrv/p7wzetxVPmy0cCYeSgGEEunQfP443//yKqI1B9Y+0i
/VmNlwhaUVLyuVVqaSr6ovEp2lgjHaRkxBIGNRtwoKqc4yOXTvgElySh7n7Du9tc
wRaa6FRmw8FOYKXeLYRJkqFSHOWzP0+AF+9Sp5wjNWrB5NdxiMfEthbbUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN+bELaoObz/6YtNmF6WYRSH2SR3MB8GA1UdIwQY
MBaAFNl6d5MBIoeadmRw341mDJhEKpkyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlhwM2t3RWloNXAyWkhEZmpXWU1tRVFxbVRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8yYTQ5MjItNDM0Yi00N2IxLWIzMDQt
Y2Q0NTlhNjU3MjFiLzEvMlhwM2t3RWloNXAyWkhEZmpXWU1tRVFxbVRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8yYTQ5MjItNDM0Yi00N2IxLWIzMDQtY2Q0NTlhNjU3MjFi
LzEvMlhwM2t3RWloNXAyWkhEZmpXWU1tRVFxbVRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPowkNfRL
Vm2sfQxNxMlMKox2FeSlrDWEiNWPAgQcP6tDncfPKWg5SfDdQPA269kFq2Pl0Y12
c2A8oiPfkDiflrijmsA3HFJgHzaznPpIefvfgyXSobnOiwV2f4IcSoVBnBN6AA8E
P5BT2KcBnHm/3CdZqKEQkXdJ06cfNy+aYpIGb0RjCR7nXynpeT5We/ritT8rSa3s
jF5i2jAPImRncP/AZcCyd1EwpwfadCWiD+f/ggh5Jp0ytEXDNs6DcsgZoofpZ4ZI
KLadX0qg71LmRTShhOxXMrYSYPjdv0f9cjahee0TJtiHfcf5U+pliAFlPWaZ1eVB
MCGttL5cs2x0Hw==
-----END CERTIFICATE-----
Generated at Sat Aug 9 03:03:09 2025 by rpki-client