Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: 7iSXV5ZeNTiAKmEhz7JQ+bnvj7jej/IAWloyr0/P8mA=
Subject key identifier: 08:99:40:D2:7E:8B:E1:F9:99:95:BC:B8:28:20:15:16:B8:CF:19:BB
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 0198D6CCF2438C3D91ECA7228685049B9018
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 12:00:12 +0000
Manifest this update: Sat 23 Aug 2025 12:00:12 +0000
Manifest next update: Sun 24 Aug 2025 12:00:12 +0000
Files and hashes: 1: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: a3xcxobJU5KCWieTQ/U6a5CrwSTlXbuvU1415LScd48=)
2: Lr1Je63vs8PyvkKI1_N9un3D4qE.roa (hash: hbRmpQBdQ4b6GdZPWppZ6a4wJHdosMiH1PY+13rdPiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cc:f2:43:8c:3d:91:ec:a7:22:86:85:04:9b:90:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Aug 23 12:00:12 2025 GMT
Not After : Aug 24 12:00:12 2025 GMT
Subject: CN=089940d27e8be1f99995bcb828201516b8cf19bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:69:dd:0f:64:22:80:46:51:59:7a:68:8e:77:
8d:db:70:50:22:cc:8b:ef:1c:69:bd:8b:21:1c:6a:
2e:14:fa:c7:67:4f:c5:46:dd:fc:d0:e7:34:f9:66:
80:41:aa:d4:2d:6d:7b:fe:8c:8f:ed:dc:8c:33:23:
59:1e:73:d8:88:ae:5c:33:87:00:30:e8:be:03:ef:
d0:6f:59:5a:90:c6:a1:5a:f9:29:31:85:49:25:70:
49:f9:19:85:78:59:d5:39:8b:83:b0:62:dc:07:a4:
da:c2:02:b0:84:02:80:fd:af:8b:3d:21:1d:b1:c0:
9c:89:69:46:39:da:20:5a:64:3f:2c:a9:63:65:07:
94:5a:4e:eb:9e:0f:90:c1:3d:b3:fb:5a:3d:df:80:
b2:c3:99:c0:9f:57:26:a2:af:74:3b:2c:db:e4:66:
27:aa:d8:60:6f:c6:d6:25:03:b4:64:69:7f:b5:c0:
26:66:92:01:82:8c:5d:12:fc:23:2c:cb:cb:77:7f:
18:ca:ba:51:03:3c:4d:e6:44:e8:45:8e:2f:4c:2e:
35:f2:c3:7e:0b:fd:e9:79:ec:4a:0e:4b:88:ad:fe:
15:2a:d9:9d:d4:42:b1:60:ff:e7:2c:06:22:34:bb:
31:21:7e:10:a8:ba:91:e0:a9:40:bc:1a:db:a3:3e:
6d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:99:40:D2:7E:8B:E1:F9:99:95:BC:B8:28:20:15:16:B8:CF:19:BB
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:ad:99:24:a2:31:c4:d1:2b:c3:89:c7:7d:80:54:93:3f:99:
3c:25:58:85:0e:22:35:f7:5b:1d:93:6b:5f:de:6f:0d:2f:a5:
7c:85:8a:5f:c1:61:6f:b5:3d:64:ce:94:5b:56:42:38:56:35:
07:33:2b:3a:81:4b:84:73:4f:b9:8c:fb:74:36:12:07:51:f8:
95:bf:1a:d3:49:8c:58:54:06:0e:65:91:d5:f4:2d:15:14:32:
9c:7e:ca:f9:a6:87:66:80:89:22:9f:cc:0d:c5:6a:d0:4a:7b:
ea:8b:6d:6f:60:1c:d7:e1:d3:6d:cf:09:19:fb:b1:9c:78:8f:
3a:2c:66:37:d8:e5:29:01:3a:42:7b:24:cc:39:ca:55:a7:d0:
1d:44:86:e2:69:f5:48:71:5f:51:a4:df:b0:bb:fa:24:4a:8d:
67:78:91:b2:66:4e:fa:72:8f:f4:fd:f3:0a:55:f0:91:95:e3:
7d:bc:9c:2e:bd:06:b8:1e:63:93:7c:c6:cf:98:e3:2d:b5:b1:
6a:b5:02:fa:de:8c:5f:0f:be:9c:86:b2:25:aa:71:f8:a3:ef:
b7:ca:e5:f4:f1:6e:8b:70:eb:f1:7d:b1:17:ac:af:b5:27:b2:
98:33:ce:78:57:b9:e1:75:07:5e:f0:5a:5b:7d:d3:b0:87:6d:
b4:84:5f:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzPJDjD2R7KcihoUEm5AYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4NDNmMWFhMDQ5OGQ4NGY3OTUzMjNjMWZmNmJhZTNhZjQw
MjA2ZDEwHhcNMjUwODIzMTIwMDEyWhcNMjUwODI0MTIwMDEyWjAzMTEwLwYDVQQD
EygwODk5NDBkMjdlOGJlMWY5OTk5NWJjYjgyODIwMTUxNmI4Y2YxOWJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9GndD2QigEZRWXpojneN23BQIsyL
7xxpvYshHGouFPrHZ0/FRt380Oc0+WaAQarULW17/oyP7dyMMyNZHnPYiK5cM4cA
MOi+A+/Qb1lakMahWvkpMYVJJXBJ+RmFeFnVOYuDsGLcB6TawgKwhAKA/a+LPSEd
scCciWlGOdogWmQ/LKljZQeUWk7rng+QwT2z+1o934Cyw5nAn1cmoq90Oyzb5GYn
qthgb8bWJQO0ZGl/tcAmZpIBgoxdEvwjLMvLd38YyrpRAzxN5kToRY4vTC418sN+
C/3peexKDkuIrf4VKtmd1EKxYP/nLAYiNLsxIX4QqLqR4KlAvBrboz5tmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAiZQNJ+i+H5mZW8uCggFRa4zxm7MB8GA1UdIwQY
MBaAFNhD8aoEmNhPeVMjwf9rrjr0AgbRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9kYTRkZDktNTk0ZC00NTZjLTlmNzEt
NzZhMTk0NTU0YjA1LzEvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC9kYTRkZDktNTk0ZC00NTZjLTlmNzEtNzZhMTk0NTU0YjA1
LzEvMkVQeHFnU1kyRTk1VXlQQl8ydXVPdlFDQnRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAca2ZJKIx
xNErw4nHfYBUkz+ZPCVYhQ4iNfdbHZNrX95vDS+lfIWKX8Fhb7U9ZM6UW1ZCOFY1
BzMrOoFLhHNPuYz7dDYSB1H4lb8a00mMWFQGDmWR1fQtFRQynH7K+aaHZoCJIp/M
DcVq0Ep76ottb2Ac1+HTbc8JGfuxnHiPOixmN9jlKQE6QnskzDnKVafQHUSG4mn1
SHFfUaTfsLv6JEqNZ3iRsmZO+nKP9P3zClXwkZXjfbycLr0GuB5jk3zGz5jjLbWx
arUC+t6MXw++nIayJapx+KPvt8rl9PFui3Dr8X2xF6yvtSeymDPOeFe54XUHXvBa
W33TsIdttIRf0w==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:12:32 2025 by rpki-client