Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
File: 2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft (raw, json)
Hash identifier: V6WLZQh3gdEWKGoinulknVLOhYeniPDgA5AC2r8pl5c=
Subject key identifier: 4C:5D:59:84:7F:A8:22:0F:03:71:3C:8C:70:FF:48:61:CA:5D:42:3C
Authority key identifier: D9:93:66:35:D1:2D:6C:E2:32:E1:12:9C:8F:18:CE:DB:83:6E:CD:D7
Certificate issuer: /CN=d9936635d12d6ce232e1129c8f18cedb836ecdd7
Certificate serial: 0198D65F7483B116FD9782A16366001764C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
Manifest number: 0D2B
Signing time: Sat 23 Aug 2025 10:00:36 +0000
Manifest this update: Sat 23 Aug 2025 10:00:36 +0000
Manifest next update: Sun 24 Aug 2025 10:00:36 +0000
Files and hashes: 1: 2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl (hash: ZqqFsykDlUFrqB09mndnc/MYMG1bH72fPuVwu9E4uzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:74:83:b1:16:fd:97:82:a1:63:66:00:17:64:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9936635d12d6ce232e1129c8f18cedb836ecdd7
Validity
Not Before: Aug 23 10:00:36 2025 GMT
Not After : Aug 24 10:00:36 2025 GMT
Subject: CN=4c5d59847fa8220f03713c8c70ff4861ca5d423c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:40:e6:7a:4d:ab:50:ad:3e:f6:1a:25:c1:e3:
f1:26:4b:28:43:c7:a0:e7:cc:f4:02:a9:4a:7a:d6:
e3:0d:82:e4:ca:46:63:48:36:70:b6:08:16:a3:c8:
37:17:24:79:4e:34:9c:02:b4:3f:64:bf:77:7a:2d:
81:7c:da:46:1e:0e:f0:aa:68:0b:0a:97:ac:c8:94:
8e:4a:bb:14:ed:f4:7b:02:f6:f8:a1:f6:00:46:db:
8a:57:97:cd:9f:3f:7f:f1:f6:e5:45:59:53:eb:93:
37:21:1e:49:41:a1:e1:2f:a5:c9:20:fb:16:37:13:
a1:7d:a9:02:2e:25:5e:63:13:5b:7a:87:3e:d7:84:
d1:a7:a8:cc:7c:91:c8:56:fd:28:44:66:b0:80:18:
c4:c1:25:bc:57:3a:5c:5d:f0:c4:b6:13:06:bb:75:
59:f1:46:82:f7:62:b8:ed:4f:0a:2b:e0:06:94:77:
7a:4e:1a:75:b4:59:b9:a4:b2:9a:0e:d2:84:55:a7:
63:52:eb:08:37:a0:ce:bb:a8:81:c8:7b:dc:43:9a:
4d:fb:b0:e2:a8:1c:0f:1a:ae:d9:64:19:2b:7f:42:
8f:16:91:21:cf:a5:2b:88:2e:36:ea:08:15:21:ee:
ab:8a:6a:7a:5f:46:51:e2:d4:ae:1c:0e:6c:04:9f:
55:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:5D:59:84:7F:A8:22:0F:03:71:3C:8C:70:FF:48:61:CA:5D:42:3C
X509v3 Authority Key Identifier:
keyid:D9:93:66:35:D1:2D:6C:E2:32:E1:12:9C:8F:18:CE:DB:83:6E:CD:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:a1:7d:dc:42:98:c2:1f:8a:71:2d:67:13:0f:9e:7e:e7:73:
4e:1f:47:2a:8f:5a:e4:a0:52:8d:70:f0:51:f3:f9:6f:cc:4e:
4b:37:6f:71:33:09:c4:ce:15:24:97:84:1c:40:7c:36:13:1e:
db:38:c6:89:02:9d:74:a8:2d:ad:49:bb:a5:7d:6f:a1:8d:a2:
ca:ae:69:3e:48:bb:cb:55:72:4c:f7:8f:b2:7f:ef:9c:9f:3d:
e2:44:2f:c6:d2:ad:08:e9:41:69:e4:60:67:64:50:e3:1c:0a:
30:84:e3:71:28:22:d7:41:af:c1:a6:93:49:ca:5c:8b:22:9e:
fb:88:3b:17:51:6e:9e:0f:21:fe:fe:47:04:1d:42:da:69:f5:
f5:76:7a:f6:e2:a2:73:85:2c:81:9a:18:56:6e:d2:9e:aa:e0:
15:12:e4:89:29:38:34:77:f8:6e:60:84:6a:90:47:5c:01:f5:
20:22:dc:37:8e:85:20:5a:16:68:23:47:f8:cd:5b:0d:2f:6c:
b1:a7:91:7c:db:30:69:dc:01:5b:b1:f9:31:74:37:fe:f4:1d:
5c:10:72:50:81:84:cc:56:1a:f5:9d:cd:80:32:7d:92:51:7d:
86:ed:6d:0d:02:d7:88:cc:25:ff:b3:12:b3:4c:53:14:7f:c6:
67:fb:91:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:22:35 2025 by rpki-client