Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: 2czspfI33yl+Y7OLCGrS4t9b9GosQjsgJsXNu7pLemI=
Subject key identifier: FA:55:19:9E:68:01:46:2B:D5:9C:06:76:6E:F1:32:18:7B:EF:64:C7
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 0198D4E015483F9AD095B87C20D02176B7CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 02F7
Signing time: Sat 23 Aug 2025 03:01:51 +0000
Manifest this update: Sat 23 Aug 2025 03:01:51 +0000
Manifest next update: Sun 24 Aug 2025 03:01:51 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: Hc883LXgLD1oPYl3NTEnedHPcmnDuP0853eDx8N3Z0A=)
2: S9_pIBHq75Wq7oGW-jAli5gxMaE.roa (hash: cpq5fUvjVAhKKLO06wh9HRGgk0x/xpun3Cli9g36l8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:15:48:3f:9a:d0:95:b8:7c:20:d0:21:76:b7:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: Aug 23 03:01:51 2025 GMT
Not After : Aug 24 03:01:51 2025 GMT
Subject: CN=fa55199e6801462bd59c06766ef132187bef64c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:66:79:64:ef:7c:f4:af:07:c1:e9:83:ff:bf:
56:94:8e:e5:64:0f:ff:ba:0d:d7:bd:d2:d2:a3:df:
c4:0f:81:1a:6c:4b:db:56:ef:7b:88:d3:ba:50:59:
ba:3c:c9:d4:1d:2c:b6:fc:15:a8:33:34:d5:4f:89:
59:66:13:ae:43:1c:da:0a:1b:5b:ab:7e:cd:b2:81:
52:8e:8f:10:ed:49:78:66:50:45:e1:e4:9d:1a:ad:
1b:99:57:76:fc:5c:c3:9d:b5:a5:35:b6:17:6b:31:
6e:ea:ee:e6:28:b6:1a:78:72:3a:db:5c:e5:19:22:
e7:dc:74:4c:5f:98:13:a3:c3:5c:bc:12:f4:b1:6b:
fb:33:a8:c1:8b:ba:36:6b:87:b1:c7:c5:83:46:04:
37:29:91:f5:79:37:5b:40:1e:35:e9:f1:46:82:8e:
bf:e6:2e:17:c2:5b:2b:05:47:61:f3:21:c0:8b:09:
08:cb:09:77:53:82:0c:46:7d:13:fb:3e:85:fb:27:
1d:9c:48:d0:8e:aa:90:18:e2:73:3b:88:9f:e9:98:
fc:51:9e:69:cd:23:0c:ac:da:30:93:f0:b7:ca:6a:
8d:36:da:2a:d6:c8:03:47:1e:95:40:63:38:f2:10:
06:18:1e:0e:25:fb:f6:f2:f4:14:4a:b6:a8:e2:e2:
42:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:55:19:9E:68:01:46:2B:D5:9C:06:76:6E:F1:32:18:7B:EF:64:C7
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:dd:3d:f7:3b:5e:d7:84:f4:75:89:9b:b7:fb:cc:d7:7d:5e:
1e:33:e2:70:0a:66:96:9f:3b:7b:e8:07:05:1f:89:4c:ff:4d:
61:ec:93:af:3a:8f:fa:49:b7:d2:2f:fe:b7:35:78:73:a6:bd:
55:34:17:1e:ce:13:bf:93:b1:78:7f:b7:bc:a9:14:07:a3:16:
0c:7a:ee:a7:4f:6b:46:11:85:ac:fe:a9:15:89:7e:c2:d6:18:
67:bb:7e:0f:1c:31:c6:38:e8:f4:df:bd:78:0a:dc:52:65:71:
8c:46:1f:56:9b:b0:27:2e:09:e4:d6:71:52:0d:19:03:75:b9:
96:8b:21:eb:3e:c4:44:1b:3c:19:b6:55:c8:71:9b:7f:e7:a8:
cc:33:90:6d:9f:e8:56:22:88:33:d0:0d:3a:f2:79:e6:18:5a:
a6:63:18:b2:08:07:3b:b0:f6:9d:aa:85:a5:7d:33:1b:c3:82:
d1:59:61:f6:41:ad:c8:91:3f:cc:16:3b:de:be:ae:7f:c7:09:
51:1b:27:bd:a5:3b:e9:57:f5:a7:62:7d:12:4e:2e:2f:92:c2:
4a:85:2b:0d:3f:04:25:1c:57:1b:5a:d1:10:29:b4:92:fb:11:
a4:6a:97:84:f6:16:f8:21:b5:8d:40:14:2f:95:3c:51:d4:d2:
60:1b:cf:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:06:37 2025 by rpki-client