Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: uiHtNIo0sCzYgbo1qFoD39V+AeCYEyI1FOBkiFa5D3s=
Subject key identifier: F8:AE:97:7A:7E:C9:D1:AE:6F:AF:1F:05:95:7B:D9:6B:3C:5E:66:8B
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 019892C8740CF3B7F63FEBE7BF5AA58A8780
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 1334
Signing time: Sun 10 Aug 2025 07:01:07 +0000
Manifest this update: Sun 10 Aug 2025 07:01:07 +0000
Manifest next update: Mon 11 Aug 2025 07:01:07 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: Vk2Z7wyrj2L2zcoMqcv10/WgH0HxD2z/UXyJv9XGcPQ=)
2: ogQz1j5jLQsKEpzhS2JSyEZnZ6I.roa (hash: B7xqxcI+bkCsaT71C5rhEWIjLfcjAKzC1lxv7kehuvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:c8:74:0c:f3:b7:f6:3f:eb:e7:bf:5a:a5:8a:87:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: Aug 10 07:01:07 2025 GMT
Not After : Aug 11 07:01:07 2025 GMT
Subject: CN=f8ae977a7ec9d1ae6faf1f05957bd96b3c5e668b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:20:e1:91:99:77:64:45:e7:22:e4:62:20:61:
2d:da:24:29:5d:16:02:5c:98:f2:56:88:a0:13:81:
0f:99:2b:4b:b8:3d:7a:ea:2a:98:0d:d5:d7:8a:bc:
31:1a:5d:46:55:28:ee:3c:be:01:e4:82:3f:e7:35:
db:96:01:ab:b2:54:59:4f:a2:0e:a3:b3:99:2f:07:
d4:0d:be:d3:0b:c2:be:67:33:a2:29:69:c7:6c:7a:
c7:10:08:c9:45:5b:c1:02:15:4c:85:83:6e:2a:60:
ba:5d:ee:55:54:ab:d2:d5:86:62:1e:be:1a:ac:31:
7c:2d:7a:be:a5:57:e2:c1:55:f8:a2:be:f3:41:74:
46:07:90:38:b2:24:8f:56:c1:3a:1d:69:bc:fc:16:
79:b1:0d:76:f5:ef:5a:c7:15:a4:d5:66:84:ca:e1:
51:e7:97:ef:4c:d5:55:89:b8:07:45:7e:f4:9f:c5:
3c:a9:38:d5:c2:4a:ea:7c:d0:aa:f2:c7:0e:c8:ce:
91:05:42:11:5f:29:28:27:0f:11:cb:9a:9e:b7:84:
7b:bc:92:f6:0d:a0:40:43:f1:a7:b4:97:a7:d6:b6:
6d:84:f2:9a:77:78:5d:d8:68:b8:f5:a9:8d:a6:53:
48:7c:dc:ef:bc:da:1f:a2:b2:ea:62:e4:3c:f9:83:
05:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:AE:97:7A:7E:C9:D1:AE:6F:AF:1F:05:95:7B:D9:6B:3C:5E:66:8B
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:4c:41:b1:33:6d:1f:cc:e4:53:cc:21:b8:6d:f6:c4:cd:c1:
ba:b3:fc:89:c2:03:f7:e0:44:65:be:4f:a1:45:d3:f8:0d:c1:
30:04:21:75:33:f2:53:06:e3:e0:6b:03:ae:3f:61:88:7e:4d:
71:38:da:1f:74:fa:8e:36:94:a9:20:63:44:c3:e1:cd:87:7c:
79:74:b3:0e:db:9a:f2:dd:1c:7b:89:90:9d:53:b5:d9:33:18:
9c:ef:be:44:b8:af:f6:bf:8f:c2:42:d6:ca:74:ce:03:d0:45:
71:1c:1c:a7:cf:4f:d1:44:a2:e6:ed:f4:29:0d:6a:b2:2a:5a:
0d:f8:cb:d1:a4:1b:85:73:46:dc:94:46:cd:27:e7:c1:91:9c:
7f:d1:07:01:e2:da:03:6a:e7:c6:b0:e2:07:e0:97:83:00:e3:
b1:72:bd:02:a2:61:32:a1:fc:46:31:2d:c3:1a:21:03:0b:02:
86:92:ab:70:29:b5:2f:b3:08:41:71:fc:44:a0:67:45:ab:cb:
fc:de:c4:2e:4b:a0:d7:95:7c:7c:19:70:e6:e8:e7:73:0a:46:
6a:a4:09:51:8c:2f:05:f1:ca:32:54:ce:10:48:4e:55:db:1b:
90:cf:d5:14:1e:03:08:31:45:68:63:0f:69:ba:2b:e5:a0:1f:
d7:57:01:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 15:58:02 2025 by rpki-client