
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
File: 2YhPkq_rWP-rJkh7IyBf4NXaip8.mft (raw, json)
Hash identifier: bkpRxxdS9wwfeLP67WdCpaSYiELpqZWb0PwkhGP4dxo=
Subject key identifier: AA:B3:40:EB:AA:8A:FE:92:A2:63:19:63:4A:19:37:23:1B:07:CF:76
Authority key identifier: D9:88:4F:92:AF:EB:58:FF:AB:26:48:7B:23:20:5F:E0:D5:DA:8A:9F
Certificate issuer: /CN=d9884f92afeb58ffab26487b23205fe0d5da8a9f
Certificate serial: 01988C8F1E21E16B763ACD318B7A8BAB70A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
Manifest number: 0F07
Signing time: Sat 09 Aug 2025 02:00:46 +0000
Manifest this update: Sat 09 Aug 2025 02:00:46 +0000
Manifest next update: Sun 10 Aug 2025 02:00:46 +0000
Files and hashes: 1: 2YhPkq_rWP-rJkh7IyBf4NXaip8.crl (hash: 4zf/Z7QUgNbb7QiE3D3T+1vO1k7Viul4TD2HJ5vpn/o=)
2: CYLgyzMsYi7lgn_Q5Gp7OFp3YLo.roa (hash: KpU4uZLnHzH71nuh4tR8vuJUqVXwmRrydoVr8tnF92Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:8f:1e:21:e1:6b:76:3a:cd:31:8b:7a:8b:ab:70:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9884f92afeb58ffab26487b23205fe0d5da8a9f
Validity
Not Before: Aug 9 02:00:46 2025 GMT
Not After : Aug 10 02:00:46 2025 GMT
Subject: CN=aab340ebaa8afe92a26319634a1937231b07cf76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8c:5a:a5:f0:a7:76:52:01:44:2e:c8:e5:08:
09:af:50:64:fb:f4:37:21:0c:d4:6a:03:73:e2:26:
40:02:37:ef:c7:41:a5:c2:36:6b:b8:f0:b7:32:8a:
ce:25:56:9b:09:1f:45:ad:14:bd:60:2f:7a:94:40:
85:72:1a:8b:1d:14:73:2e:fb:1d:26:e1:d6:18:bf:
da:1d:33:62:b6:b3:ae:ed:c3:f2:c7:d4:f2:a5:a6:
70:3b:32:d8:85:bb:d0:d9:74:4a:df:b1:85:85:62:
cc:76:e9:4a:31:d0:30:97:1b:dc:0f:9d:03:3b:a0:
40:cb:89:9b:92:a3:17:3f:15:d2:74:b1:d8:8f:a6:
80:3b:8d:f2:cf:35:60:5e:27:5a:d8:7d:24:05:04:
e2:32:fa:8e:18:3a:03:08:88:66:5a:dd:01:6a:aa:
6b:b1:45:48:33:1b:0c:01:47:02:6c:7c:d6:0c:51:
f9:88:cf:b0:ef:39:10:b7:56:a7:a9:48:87:e1:31:
8e:56:48:23:a8:f8:62:cc:5a:5f:3c:c1:3b:de:a6:
15:35:c7:47:44:dc:c8:e0:20:a2:28:31:78:9a:d0:
0c:71:45:df:37:e4:bb:ca:2f:07:ec:54:d5:9f:1b:
0e:ae:e3:f5:6d:99:e3:be:6d:06:8a:b7:6a:7a:39:
a5:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B3:40:EB:AA:8A:FE:92:A2:63:19:63:4A:19:37:23:1B:07:CF:76
X509v3 Authority Key Identifier:
keyid:D9:88:4F:92:AF:EB:58:FF:AB:26:48:7B:23:20:5F:E0:D5:DA:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YhPkq_rWP-rJkh7IyBf4NXaip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/7cc3f8-008b-407c-beef-76533245f2be/1/2YhPkq_rWP-rJkh7IyBf4NXaip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:4b:a5:48:2f:5c:d1:e4:de:5d:e4:08:38:a0:02:37:42:7f:
5f:cf:67:ea:cb:92:cb:09:03:40:88:73:db:51:57:51:1e:3d:
83:73:5d:5f:32:61:17:a3:a3:e8:9d:22:9a:0f:74:ac:08:72:
e5:5d:f1:95:cf:81:f8:0c:2c:6a:b2:1e:95:1a:d6:7f:e1:33:
d6:fb:2f:75:fc:db:47:29:9e:a5:ca:ab:3c:2a:b6:2d:bf:16:
0f:d2:f0:55:db:00:9a:cd:33:83:2e:35:61:5d:c2:3f:46:58:
19:54:7a:c9:fa:cf:a7:7a:7c:b7:6d:22:69:31:45:30:36:9f:
e0:33:92:c0:82:c7:8a:f5:7a:a0:72:45:c1:a8:0f:a9:85:f3:
41:42:80:a6:90:aa:99:25:f4:f4:85:22:f6:f8:ce:90:54:ff:
ee:d9:43:2e:f1:f0:82:37:e7:6f:06:3b:c2:f6:5a:da:8c:99:
69:57:fe:d0:b1:30:43:ed:47:39:49:87:90:48:4e:be:37:44:
06:1c:3b:df:b2:e7:01:c4:e2:2d:5e:6f:7a:01:bb:36:39:f7:
57:67:81:57:17:cf:61:cb:5c:aa:a7:5c:a3:e3:db:e3:de:57:
a9:f8:6a:ae:37:dd:9b:39:4e:0c:7d:6a:bc:79:8a:fb:98:db:
95:39:64:37
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiMjx4h4Wt2Os0xi3qLq3ChMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ODg0ZjkyYWZlYjU4ZmZhYjI2NDg3YjIzMjA1ZmUwZDVk
YThhOWYwHhcNMjUwODA5MDIwMDQ2WhcNMjUwODEwMDIwMDQ2WjAzMTEwLwYDVQQD
EyhhYWIzNDBlYmFhOGFmZTkyYTI2MzE5NjM0YTE5MzcyMzFiMDdjZjc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoIxapfCndlIBRC7I5QgJr1Bk+/Q3
IQzUagNz4iZAAjfvx0GlwjZruPC3MorOJVabCR9FrRS9YC96lECFchqLHRRzLvsd
JuHWGL/aHTNitrOu7cPyx9TypaZwOzLYhbvQ2XRK37GFhWLMdulKMdAwlxvcD50D
O6BAy4mbkqMXPxXSdLHYj6aAO43yzzVgXida2H0kBQTiMvqOGDoDCIhmWt0Baqpr
sUVIMxsMAUcCbHzWDFH5iM+w7zkQt1anqUiH4TGOVkgjqPhizFpfPME73qYVNcdH
RNzI4CCiKDF4mtAMcUXfN+S7yi8H7FTVnxsOruP1bZnjvm0GirdqejmlKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKqzQOuqiv6SomMZY0oZNyMbB892MB8GA1UdIwQY
MBaAFNmIT5Kv61j/qyZIeyMgX+DV2oqfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlloUGtxX3JXUC1ySmtoN0l5QmY0TlhhaXA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS83Y2MzZjgtMDA4Yi00MDdjLWJlZWYt
NzY1MzMyNDVmMmJlLzEvMlloUGtxX3JXUC1ySmtoN0l5QmY0TlhhaXA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS83Y2MzZjgtMDA4Yi00MDdjLWJlZWYtNzY1MzMyNDVmMmJl
LzEvMlloUGtxX3JXUC1ySmtoN0l5QmY0TlhhaXA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT0ulSC9c
0eTeXeQIOKACN0J/X89n6suSywkDQIhz21FXUR49g3NdXzJhF6Oj6J0img90rAhy
5V3xlc+B+AwsarIelRrWf+Ez1vsvdfzbRymepcqrPCq2Lb8WD9LwVdsAms0zgy41
YV3CP0ZYGVR6yfrPp3p8t20iaTFFMDaf4DOSwILHivV6oHJFwagPqYXzQUKAppCq
mSX09IUi9vjOkFT/7tlDLvHwgjfnbwY7wvZa2oyZaVf+0LEwQ+1HOUmHkEhOvjdE
Bhw737LnAcTiLV5vegG7Njn3V2eBVxfPYctcqqdco+Pb495XqfhqrjfdmzlODH1q
vHmK+5jblTlkNw==
-----END CERTIFICATE-----
Generated at Sat Aug 9 05:49:43 2025 by rpki-client