Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft
File: 2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft (raw, json)
Hash identifier: 8R0TXJ1gyB70Fy9jQBVItoFmfKD0FKVgoweHjXgb9Pk=
Subject key identifier: 98:64:FF:E6:F9:29:EA:D6:C7:95:8B:19:17:F1:D8:49:33:1D:A8:A8
Authority key identifier: D8:76:63:C5:E1:4F:13:74:6C:80:F6:0B:A3:63:49:3D:9A:49:34:CC
Certificate issuer: /CN=d87663c5e14f13746c80f60ba363493d9a4934cc
Certificate serial: 0198D7736849281FE4EA902DDB6A7F149127
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HZjxeFPE3RsgPYLo2NJPZpJNMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft
Manifest number: 06E4
Signing time: Sat 23 Aug 2025 15:02:01 +0000
Manifest this update: Sat 23 Aug 2025 15:02:01 +0000
Manifest next update: Sun 24 Aug 2025 15:02:01 +0000
Files and hashes: 1: 2HZjxeFPE3RsgPYLo2NJPZpJNMw.crl (hash: VZcG3ucIcV7ZLJpd76nYnPdnKgfx2PGqCnFJ1AvUyN8=)
2: eNatCM_ng_ZzT0XjnAhnE8JwsaM.roa (hash: NiVcVjOLTxJgHF9YkgZvM/M3+zTG2kPIupDct4SjNb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HZjxeFPE3RsgPYLo2NJPZpJNMw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:73:68:49:28:1f:e4:ea:90:2d:db:6a:7f:14:91:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87663c5e14f13746c80f60ba363493d9a4934cc
Validity
Not Before: Aug 23 15:02:01 2025 GMT
Not After : Aug 24 15:02:01 2025 GMT
Subject: CN=9864ffe6f929ead6c7958b1917f1d849331da8a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a5:e5:47:16:51:61:1c:a7:ba:47:3e:3a:cf:
f1:0d:43:af:8e:c5:0e:0a:2b:d5:59:fe:c2:c5:d4:
e5:47:0e:7a:5d:0b:57:16:a0:18:c4:1f:30:b0:18:
45:33:fc:25:61:42:75:f7:54:2d:9b:63:b0:8e:19:
13:be:70:0c:37:6d:f8:e1:79:77:ad:15:d4:7c:38:
ee:95:40:6f:7a:94:cf:16:e4:4e:1d:95:f4:27:e0:
30:f4:ef:62:71:de:e7:f8:5d:0e:f1:18:99:7f:7f:
2a:7f:ee:cc:2e:ac:9e:a6:a1:c5:8e:86:57:3a:bd:
04:6f:e8:d4:6d:62:12:cf:62:de:1c:f8:cf:7a:bb:
b1:22:61:06:37:22:21:61:0c:0e:0c:99:6f:b7:c0:
a0:1f:89:dc:b3:de:8f:23:c6:1d:72:3d:05:d0:6b:
f7:bb:bb:4d:34:95:54:ba:d4:58:d3:07:2d:bc:23:
00:c1:f7:67:c9:e3:e4:fe:07:2c:00:01:ee:9f:bc:
2d:48:f5:70:07:a8:30:f4:cc:06:e4:ec:da:7d:5a:
35:9d:50:ea:14:3c:0f:e5:ca:e6:09:0b:ef:3e:83:
b7:35:c2:5d:d6:2e:0b:ae:8a:ba:3a:06:80:c2:d6:
f9:63:3e:23:30:58:16:e8:ef:f6:1a:2d:90:75:40:
fc:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:64:FF:E6:F9:29:EA:D6:C7:95:8B:19:17:F1:D8:49:33:1D:A8:A8
X509v3 Authority Key Identifier:
keyid:D8:76:63:C5:E1:4F:13:74:6C:80:F6:0B:A3:63:49:3D:9A:49:34:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HZjxeFPE3RsgPYLo2NJPZpJNMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/10ef17-e107-49da-8190-d99da970ffa2/1/2HZjxeFPE3RsgPYLo2NJPZpJNMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:8c:53:cc:6f:7b:a1:eb:da:3a:49:25:89:52:69:ab:54:47:
98:b9:69:50:21:d2:ed:a5:7c:d0:ab:8a:41:df:d1:8e:e9:24:
f4:e9:96:8d:d3:ab:f0:cb:09:94:c7:b8:3a:56:74:7f:c1:30:
60:88:0f:20:a8:21:31:e0:4b:18:08:16:6e:b7:5c:1f:d7:22:
11:41:97:26:b1:e7:7e:7e:58:f6:d3:cf:50:2b:00:01:8b:d1:
25:2e:1c:e8:9a:55:c6:20:64:74:c9:0f:84:f6:6d:db:99:b9:
d0:5c:67:8f:9a:0b:a1:d9:e3:8b:2d:d2:e9:06:27:6b:19:0c:
0b:32:ec:d1:f6:b2:24:50:30:4d:b2:dd:de:3f:37:a5:d5:47:
33:cc:98:7b:6c:f5:ca:9f:76:8b:c6:58:e7:a8:61:6a:9e:95:
d6:e7:0b:8a:cd:ab:87:26:f2:c5:41:86:a5:32:41:28:93:c5:
6b:08:18:8a:3d:5b:68:b7:64:98:f1:99:a7:b1:6d:f0:8e:8d:
a2:32:5d:5b:7f:c4:71:20:06:06:90:9c:09:18:bd:fd:27:9d:
17:a0:6a:06:4c:06:c6:93:6e:ed:29:ea:af:de:5d:e7:4b:fc:
cd:43:07:96:0f:cc:f0:70:3a:8e:18:4e:93:5d:82:06:f3:9e:
db:36:57:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:51:30 2025 by rpki-client