Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
File: 2huf6PGjORf-5-Tb6fq5JeuGJak.mft (raw, json)
Hash identifier: oZm+9cTMFf/06EvZusstjhLfkH9xKbFkxxvimySetPA=
Subject key identifier: F0:9A:7A:54:03:A9:8B:B8:D4:1A:C3:B2:1E:DF:92:B0:13:CD:5F:92
Authority key identifier: DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9
Certificate issuer: /CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9
Certificate serial: 0198D5834F528B40335BE2AF6C2CDEF247CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
Manifest number: 06FB
Signing time: Sat 23 Aug 2025 06:00:09 +0000
Manifest this update: Sat 23 Aug 2025 06:00:09 +0000
Manifest next update: Sun 24 Aug 2025 06:00:09 +0000
Files and hashes: 1: 2huf6PGjORf-5-Tb6fq5JeuGJak.crl (hash: uWwLCf6rxGDPqZIzxXanDxd3o8Fd62NnrNhKbYrryS8=)
2: qARNDLbWZGpXclqzpXtzfvYP72c.roa (hash: yeRNjTwXDaIWE/tdw8m2d67pmit4bLUSMZLje7zj8IA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 06:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:4f:52:8b:40:33:5b:e2:af:6c:2c:de:f2:47:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1b9fe8f1a33917fee7e4dbe9fab925eb8625a9
Validity
Not Before: Aug 23 06:00:09 2025 GMT
Not After : Aug 24 06:00:09 2025 GMT
Subject: CN=f09a7a5403a98bb8d41ac3b21edf92b013cd5f92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0c:93:e9:4c:56:0e:c1:37:01:cb:ce:cc:c9:
75:c0:c0:52:43:ef:2b:ef:84:33:b3:a8:7e:c3:eb:
30:f9:3c:51:61:f7:73:6b:62:a6:fc:41:23:45:ce:
27:8d:30:c3:ed:79:50:ab:bb:75:3a:b0:42:c8:02:
34:6b:91:fd:ea:fe:9b:9d:6b:0e:3d:39:23:35:bb:
46:8e:5c:2f:a0:c3:7f:02:16:3e:03:6b:5a:77:0c:
b1:d5:81:df:09:26:55:60:5e:4a:e4:52:b9:4f:40:
df:f7:31:a6:97:6f:22:e8:23:73:49:1f:d4:bc:7e:
a6:ab:38:1a:6c:ba:1a:c6:40:05:6f:96:ff:06:ea:
3d:21:ea:7f:4b:61:fe:cf:d0:34:02:2d:f0:d0:b9:
d3:ea:70:16:1f:36:b0:03:55:a8:4d:43:0b:1b:23:
6d:d5:57:6d:d7:8b:02:53:52:20:a1:fa:8c:11:30:
de:8e:c0:0d:49:27:f5:86:51:90:af:81:1c:57:0b:
fe:cf:27:0f:22:fa:c1:67:4b:fa:fb:43:c5:86:72:
52:34:d8:15:68:14:bf:df:f8:87:80:a9:ff:5a:bd:
2c:bd:81:ae:5e:48:77:13:1b:dd:e9:b2:8c:db:21:
5a:8a:c2:6f:9d:6b:2f:d1:4a:67:a8:19:ab:b4:a3:
ea:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:9A:7A:54:03:A9:8B:B8:D4:1A:C3:B2:1E:DF:92:B0:13:CD:5F:92
X509v3 Authority Key Identifier:
keyid:DA:1B:9F:E8:F1:A3:39:17:FE:E7:E4:DB:E9:FA:B9:25:EB:86:25:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2huf6PGjORf-5-Tb6fq5JeuGJak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/42a166-8a86-48da-bb96-79fd5023de36/1/2huf6PGjORf-5-Tb6fq5JeuGJak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:cb:b1:a6:08:17:61:cd:ed:6a:82:d5:b0:64:0d:a1:6d:e4:
78:e0:5d:fb:46:6a:98:39:c2:25:37:c8:2e:0b:bc:3c:aa:1b:
9b:1c:a1:2f:8d:cd:c8:e7:9d:77:a1:cd:06:86:11:ce:9c:51:
da:f7:1c:d3:64:ac:61:16:f6:4a:2b:19:f3:65:49:3b:39:df:
ed:fb:f8:03:be:36:a9:25:b1:13:3e:7f:fc:ef:35:57:d1:4d:
42:08:7d:8f:6a:31:42:ea:62:fc:53:84:11:3c:b4:aa:8f:ba:
ac:51:2b:14:19:bd:12:5f:f7:89:ee:97:24:6e:26:4d:5b:c3:
a3:92:6b:0b:53:00:49:5c:99:b7:62:ba:c2:f9:a3:60:88:93:
6a:d4:6a:7f:0e:c1:8c:a2:16:79:33:2d:4d:26:b2:fa:5e:3a:
f3:fd:38:64:6d:a6:5d:4b:0b:5f:67:48:6a:6f:0e:da:f4:cc:
37:21:ec:35:b4:eb:7f:67:5f:37:0e:bf:9e:b7:b1:30:f2:6a:
a2:74:d3:72:e0:52:12:e8:7b:c5:a7:be:05:9f:55:9e:0a:62:
46:15:e8:70:6f:15:42:5c:05:13:51:d7:95:e8:2d:e0:3f:0f:
81:bd:4c:40:91:11:82:f4:ae:7b:d7:f9:cc:0e:8c:4b:74:ca:
74:28:d0:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:44:49 2025 by rpki-client