Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft
File: 2-DL9NZpKl5OHgHSsRL-pru_90w.mft (raw, json)
Hash identifier: 9GLc9D5solkifErdw0GTu37lW6yFDM3snIyfzA1y2kM=
Subject key identifier: 3E:F8:DF:ED:CE:90:27:62:2B:56:24:C1:28:E5:75:7F:14:58:57:51
Authority key identifier: DB:E0:CB:F4:D6:69:2A:5E:4E:1E:01:D2:B1:12:FE:A6:BB:BF:F7:4C
Certificate issuer: /CN=dbe0cbf4d6692a5e4e1e01d2b112fea6bbbff74c
Certificate serial: 0198D5F1CA0DAEA5A43012850433EF43E235
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-DL9NZpKl5OHgHSsRL-pru_90w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft
Manifest number: 02D0
Signing time: Sat 23 Aug 2025 08:00:49 +0000
Manifest this update: Sat 23 Aug 2025 08:00:49 +0000
Manifest next update: Sun 24 Aug 2025 08:00:49 +0000
Files and hashes: 1: 2-DL9NZpKl5OHgHSsRL-pru_90w.crl (hash: vrT6dtKN+8vT0gn+uZ48I4+BDFHXly83IZ+FFBgwKKA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft
rsync://rpki.ripe.net/repository/DEFAULT/2-DL9NZpKl5OHgHSsRL-pru_90w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:ca:0d:ae:a5:a4:30:12:85:04:33:ef:43:e2:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe0cbf4d6692a5e4e1e01d2b112fea6bbbff74c
Validity
Not Before: Aug 23 08:00:49 2025 GMT
Not After : Aug 24 08:00:49 2025 GMT
Subject: CN=3ef8dfedce9027622b5624c128e5757f14585751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:aa:71:fd:f3:ea:8c:f6:52:44:fd:a2:67:c4:
4e:be:59:3d:00:0c:d5:f6:7e:5c:e2:e9:fe:11:76:
62:a3:c6:4f:a8:89:60:30:ab:df:b5:2a:0a:f6:eb:
52:2e:5d:9a:be:4d:2b:b3:26:e2:20:0a:48:61:19:
fd:98:df:8b:5d:14:e9:89:d2:bb:13:b9:10:f1:5e:
79:4c:62:41:74:c4:2e:34:f3:45:22:17:6a:cd:eb:
b9:ad:53:f6:ac:25:1d:75:42:ee:0d:01:87:43:5a:
6c:bd:fc:d8:06:93:72:88:58:fa:40:4d:2d:12:41:
3d:f1:63:a0:34:e2:e0:f5:26:57:a6:bc:33:58:82:
1e:8c:f7:69:93:da:3f:05:b5:27:21:fd:54:77:b2:
d1:a3:b0:ec:a1:9a:cf:b6:e3:f8:3a:3f:d5:e1:c9:
ab:a7:18:27:18:aa:2e:95:d5:3a:9e:03:de:7c:19:
b7:a4:60:2d:53:08:35:9c:27:22:72:88:83:f5:84:
ce:d1:92:80:2c:be:85:62:a9:51:77:b3:69:77:0a:
c7:0e:10:e5:4c:14:a7:59:5c:f3:0b:4f:2d:c6:e9:
c1:3b:8b:bb:43:b6:48:7a:ac:55:07:d6:de:8c:53:
28:b6:0b:4b:01:fb:a0:04:9e:86:56:a2:3e:e3:46:
e2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F8:DF:ED:CE:90:27:62:2B:56:24:C1:28:E5:75:7F:14:58:57:51
X509v3 Authority Key Identifier:
keyid:DB:E0:CB:F4:D6:69:2A:5E:4E:1E:01:D2:B1:12:FE:A6:BB:BF:F7:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-DL9NZpKl5OHgHSsRL-pru_90w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:3b:2f:c3:60:e7:e8:f8:b3:b7:2e:ee:4f:16:8d:38:6c:2a:
49:46:4d:e0:67:6a:73:37:f3:7d:82:86:3a:5a:ae:2c:cc:ad:
67:9b:c7:fe:f6:d6:c5:eb:d4:c8:9c:a9:7e:4d:cd:bb:a1:09:
f0:b8:f3:4f:2c:cb:34:08:13:41:c0:b8:c6:44:ca:98:60:69:
f2:f3:7f:2b:d6:ff:98:2c:62:52:e1:14:5d:38:27:ca:02:3d:
f3:ce:51:54:40:21:e1:8c:d1:a0:fa:56:e2:43:40:45:e8:0a:
03:63:43:46:0c:4b:03:5e:1b:18:b0:3b:79:ec:1d:c9:4a:22:
6b:3e:12:9c:f8:79:94:1f:5a:6a:29:0b:4a:f6:b6:4f:00:f6:
3c:c0:e2:7b:49:c6:8b:4a:8a:37:16:f3:e5:26:ab:26:46:4a:
74:95:ae:3a:de:a0:30:93:85:4f:4e:79:01:c4:e2:73:46:4e:
6b:e6:bc:90:ad:d9:1b:6b:5e:51:13:2a:97:41:ab:4b:52:3f:
fb:9e:44:0b:9c:93:77:fc:bf:19:a0:1d:f8:40:c1:82:00:26:
2c:08:3d:b5:20:31:00:0e:2a:6f:c7:55:2d:4f:89:91:23:62:
05:5d:3a:e4:f8:02:29:f9:c2:e2:27:c4:c8:0c:36:e4:13:33:
58:5f:d9:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjV8coNrqWkMBKFBDPvQ+I1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiZTBjYmY0ZDY2OTJhNWU0ZTFlMDFkMmIxMTJmZWE2YmJi
ZmY3NGMwHhcNMjUwODIzMDgwMDQ5WhcNMjUwODI0MDgwMDQ5WjAzMTEwLwYDVQQD
EygzZWY4ZGZlZGNlOTAyNzYyMmI1NjI0YzEyOGU1NzU3ZjE0NTg1NzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Kpx/fPqjPZSRP2iZ8ROvlk9AAzV
9n5c4un+EXZio8ZPqIlgMKvftSoK9utSLl2avk0rsybiIApIYRn9mN+LXRTpidK7
E7kQ8V55TGJBdMQuNPNFIhdqzeu5rVP2rCUddULuDQGHQ1psvfzYBpNyiFj6QE0t
EkE98WOgNOLg9SZXprwzWIIejPdpk9o/BbUnIf1Ud7LRo7DsoZrPtuP4Oj/V4cmr
pxgnGKouldU6ngPefBm3pGAtUwg1nCcicoiD9YTO0ZKALL6FYqlRd7NpdwrHDhDl
TBSnWVzzC08txunBO4u7Q7ZIeqxVB9bejFMotgtLAfugBJ6GVqI+40biEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD743+3OkCdiK1YkwSjldX8UWFdRMB8GA1UdIwQY
MBaAFNvgy/TWaSpeTh4B0rES/qa7v/dMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMi1ETDlOWnBLbDVPSGdIU3NSTC1wcnVfOTB3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9hZTUxOWMtMTY5MC00MGJjLWI2NzEt
OTI3ZTljZjdiMDI1LzEvMi1ETDlOWnBLbDVPSGdIU3NSTC1wcnVfOTB3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy9hZTUxOWMtMTY5MC00MGJjLWI2NzEtOTI3ZTljZjdiMDI1
LzEvMi1ETDlOWnBLbDVPSGdIU3NSTC1wcnVfOTB3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmDsvw2Dn
6Pizty7uTxaNOGwqSUZN4GdqczfzfYKGOlquLMytZ5vH/vbWxevUyJypfk3Nu6EJ
8LjzTyzLNAgTQcC4xkTKmGBp8vN/K9b/mCxiUuEUXTgnygI9885RVEAh4YzRoPpW
4kNARegKA2NDRgxLA14bGLA7eewdyUoiaz4SnPh5lB9aaikLSva2TwD2PMDie0nG
i0qKNxbz5SarJkZKdJWuOt6gMJOFT055AcTic0ZOa+a8kK3ZG2teURMql0GrS1I/
+55EC5yTd/y/GaAd+EDBggAmLAg9tSAxAA4qb8dVLU+JkSNiBV065PgCKfnC4ifE
yAw25BMzWF/ZAQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:29:32 2025 by rpki-client