Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
File: 2NYGQYZJDYzqI0f_ejqCSS0feXc.mft (raw, json)
Hash identifier: ShBlt/W6Ni7LPS1fYAu2RiQYq1+TbOt0muEkUYFgwCg=
Subject key identifier: A5:0F:5D:1D:6C:11:5E:7E:88:27:F9:C7:02:04:D9:6E:E6:40:E3:66
Authority key identifier: D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77
Certificate issuer: /CN=d8d6064186490d8cea2347ff7a3a82492d1f7977
Certificate serial: 0198D7059806D0D9AAD69B79587E50A4F1B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 13:02:04 +0000
Manifest this update: Sat 23 Aug 2025 13:02:04 +0000
Manifest next update: Sun 24 Aug 2025 13:02:04 +0000
Files and hashes: 1: 2NYGQYZJDYzqI0f_ejqCSS0feXc.crl (hash: 4oOlENsK7Tc3FfzeLM7w62G76nnjCWqVie0HZnhxRHA=)
2: fRvh8sX1Hi5S8M4nM9SL76qC4pw.roa (hash: BU70IeuzZkqToqE9mDUdKtq0A+ixKO/u5mFIegNEZGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:98:06:d0:d9:aa:d6:9b:79:58:7e:50:a4:f1:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d6064186490d8cea2347ff7a3a82492d1f7977
Validity
Not Before: Aug 23 13:02:04 2025 GMT
Not After : Aug 24 13:02:04 2025 GMT
Subject: CN=a50f5d1d6c115e7e8827f9c70204d96ee640e366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:12:91:80:04:a5:d0:f4:13:4a:3d:b8:06:85:
26:9a:f3:c4:fb:50:3b:bf:ba:ed:a5:f4:3f:31:de:
41:f0:1a:1f:0d:6f:69:8c:c6:8d:52:05:4c:11:b6:
03:71:d0:8a:4c:24:2f:81:ef:f4:d3:50:e4:f6:50:
34:2c:08:1c:df:58:59:44:0f:26:ec:46:48:d3:ef:
18:71:77:85:f9:bb:e4:29:55:ca:93:b1:ee:8b:1d:
f0:a8:ca:20:c8:d3:79:34:c8:bb:b3:e7:eb:9e:92:
33:07:c0:67:84:f9:31:80:41:ba:a3:7c:65:db:de:
38:d8:c3:29:eb:16:b6:31:01:cb:81:4b:02:ed:9d:
98:c8:54:89:09:d7:4f:70:99:5d:29:9f:26:e1:f5:
47:4d:e2:fc:ef:0b:e7:ea:74:72:a7:33:b3:85:ae:
86:ac:0f:fe:a1:c9:9d:ce:2f:15:19:de:3d:a8:fe:
35:7c:e2:51:f1:b9:93:20:af:99:1b:9e:68:09:bf:
f7:c5:69:76:ee:d1:67:6b:d0:3a:10:d6:10:6b:bb:
92:78:43:47:6f:d6:cf:c1:a1:34:33:5e:4a:e6:95:
5b:d4:d8:ab:73:82:03:cb:91:a9:78:bb:a9:df:35:
b2:0e:4d:9b:2a:05:d7:ce:7f:86:a8:bc:45:49:a8:
54:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:0F:5D:1D:6C:11:5E:7E:88:27:F9:C7:02:04:D9:6E:E6:40:E3:66
X509v3 Authority Key Identifier:
keyid:D8:D6:06:41:86:49:0D:8C:EA:23:47:FF:7A:3A:82:49:2D:1F:79:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NYGQYZJDYzqI0f_ejqCSS0feXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7abdef-91ab-46fb-82e2-56085c9e522e/1/2NYGQYZJDYzqI0f_ejqCSS0feXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:ba:24:e9:12:eb:78:8d:83:13:67:94:51:6b:ba:63:00:d2:
38:98:70:6b:bd:8a:7a:13:76:45:d5:92:7b:36:0a:4f:48:13:
7a:f4:47:13:57:c1:55:c9:7a:8e:a5:06:90:37:b0:5e:b4:29:
dd:d8:1b:d9:de:df:e6:cf:9b:7e:63:2e:62:ed:b4:ba:5e:65:
d0:f5:04:97:a9:d4:c2:b6:b2:bb:9b:ef:29:51:33:5c:c0:85:
4b:17:b2:62:cb:16:72:75:a9:8d:3b:7a:9a:b1:62:c5:14:50:
a1:25:61:18:76:02:bb:52:d7:d7:a1:4a:91:d0:24:fa:f8:45:
38:67:b4:6a:2a:75:a3:8a:50:da:92:7b:d9:d6:59:48:bf:ef:
47:9d:6e:79:cd:0a:d6:e1:33:b1:23:54:c0:40:f1:e7:93:67:
5b:15:ae:ba:5a:02:63:be:0e:c1:85:4c:02:fe:2e:9b:38:ed:
af:ad:98:d0:6a:fa:64:67:23:25:83:24:ed:43:9e:ba:ae:9a:
3b:52:ef:4d:e5:99:15:0c:f8:a3:4a:fb:27:f1:c8:d1:eb:fe:
77:3b:54:2e:1b:75:7a:a9:f8:bf:21:b1:f8:ba:4b:52:b1:4f:
ca:52:f7:5a:3b:50:99:c7:05:df:3a:a1:4e:ce:42:ed:9a:20:
bc:56:ca:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:44:06 2025 by rpki-client