Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
File: 2ZaAKfEkCW6rlV35t6gciMszOgU.mft (raw, json)
Hash identifier: gTqtOrYG/k/GjyvSCouE998BKNn6ixXMzxraBW/45qw=
Subject key identifier: 2C:AA:EA:73:75:48:D6:8E:D0:58:FD:AB:CD:25:AD:DC:E5:3B:B2:4C
Authority key identifier: D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
Certificate issuer: /CN=d9968029f124096eab955df9b7a81c88cb333a05
Certificate serial: 01987C094A48E2D911AEA8334187F58F7CFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
Manifest number: 0DCF
Signing time: Tue 05 Aug 2025 21:00:40 +0000
Manifest this update: Tue 05 Aug 2025 21:00:40 +0000
Manifest next update: Wed 06 Aug 2025 21:00:40 +0000
Files and hashes: 1: 2ZaAKfEkCW6rlV35t6gciMszOgU.crl (hash: OU8s3rfXBzhzCY01f0JzbT1lyT9gzkGnhmbNdZnMs7o=)
2: anoG2QxpBajiR81r5Nnqj0baENo.roa (hash: KO9yPbtejqfpWJpsarLnmq3okmJ48dSkW7G2+vLUOFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 21:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:09:4a:48:e2:d9:11:ae:a8:33:41:87:f5:8f:7c:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9968029f124096eab955df9b7a81c88cb333a05
Validity
Not Before: Aug 5 21:00:40 2025 GMT
Not After : Aug 6 21:00:40 2025 GMT
Subject: CN=2caaea737548d68ed058fdabcd25addce53bb24c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e3:df:5d:75:cf:97:e7:e4:67:52:43:73:36:
88:a1:45:15:36:ae:43:0b:19:37:1e:0f:a9:4f:09:
a0:e2:4b:ca:a0:5e:14:82:3f:31:e4:2a:b6:c0:20:
a7:3c:62:a1:db:49:9a:ee:aa:99:db:53:9b:e0:5d:
b9:85:7b:92:e8:3a:88:b3:f8:3d:2c:bb:aa:c2:6e:
c3:d7:5f:ac:e3:3f:c6:21:13:4d:a6:f9:f0:6d:df:
7a:a8:76:d3:57:d8:6e:44:a9:f5:fd:00:3d:f7:a5:
76:f0:03:7d:27:3f:d7:c9:cb:fe:f6:f3:f2:24:0f:
e7:89:92:6f:17:ab:ef:95:0c:13:d1:bb:48:d1:31:
a1:fd:84:f1:6a:d0:33:b0:43:a9:7f:e2:98:b5:bf:
7e:09:d4:22:b9:5b:60:3d:1a:ed:fe:00:e5:fe:45:
e8:49:49:e3:5a:ff:0c:fd:5e:22:64:e9:cf:1c:74:
d3:18:1f:4d:e1:d1:d6:d9:ee:1c:46:9a:a4:8e:bc:
c0:1f:54:07:42:83:dd:4c:dd:6e:38:5d:6b:27:06:
07:ef:d3:ca:32:b9:f6:fe:e9:2c:63:82:45:ef:f5:
37:17:9b:07:a7:44:f0:4d:c6:e1:ae:4b:3a:e0:4b:
08:96:2c:4c:de:34:da:7c:b0:b3:4b:db:46:a6:14:
5f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:AA:EA:73:75:48:D6:8E:D0:58:FD:AB:CD:25:AD:DC:E5:3B:B2:4C
X509v3 Authority Key Identifier:
keyid:D9:96:80:29:F1:24:09:6E:AB:95:5D:F9:B7:A8:1C:88:CB:33:3A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZaAKfEkCW6rlV35t6gciMszOgU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/27a1bc-b258-405f-9f93-6eea12205720/1/2ZaAKfEkCW6rlV35t6gciMszOgU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:5b:78:bb:89:27:7e:61:28:77:b9:21:62:bc:43:4b:be:b8:
3f:79:b8:16:e9:a1:62:f0:e2:2e:6f:7b:9a:93:b9:c2:5d:e1:
7d:eb:0b:1f:c0:9d:2c:c1:dd:6c:5c:be:bf:16:d6:e2:be:97:
43:88:23:2c:e9:31:d9:bb:3d:62:78:d7:0c:89:bf:f4:f4:7d:
4f:e7:86:fb:eb:25:2d:bc:6d:67:67:62:0a:a0:29:90:c0:01:
1e:82:c9:68:08:b6:48:ab:c7:1a:0b:b7:21:4e:fb:da:d7:9e:
14:46:e5:39:ec:df:20:38:77:68:31:a0:00:01:fb:8a:56:de:
57:ee:2c:3e:96:57:52:22:05:b8:b7:42:b8:76:14:4f:d3:a4:
8e:5d:ee:51:f9:61:6b:73:de:a2:53:1f:03:de:bd:fc:04:0a:
15:75:8e:75:c6:d6:2b:2e:4d:03:03:13:33:fb:1c:38:b7:71:
f6:43:07:50:c4:c1:a6:c4:4b:ee:e8:f4:70:6b:da:5e:e0:35:
18:1b:7f:2a:86:c2:8f:6e:62:46:b8:e2:9f:89:a2:4e:df:48:
e3:90:98:fc:06:aa:3e:79:85:9c:4c:1d:79:5a:5a:da:31:a5:
4e:bf:78:be:d8:75:af:74:1b:95:1b:52:49:8d:27:0a:ce:c5:
99:18:14:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 04:13:36 2025 by rpki-client