Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
File: 2f-H9S43t2bsv0s_nLJlWN0wiCA.mft (raw, json)
Hash identifier: OBN2m85Kp6JcAKw/Q/1P1ZAPfyA/DPsmLIEcWKj/CPE=
Subject key identifier: 1C:36:ED:92:C1:63:6F:1E:FC:73:84:4D:81:5A:E5:27:10:80:10:7C
Authority key identifier: D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
Certificate issuer: /CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Certificate serial: 0198D5839BC35F4CE1159E7C42BB968EA2B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
Manifest number: 0C18
Signing time: Sat 23 Aug 2025 06:00:28 +0000
Manifest this update: Sat 23 Aug 2025 06:00:28 +0000
Manifest next update: Sun 24 Aug 2025 06:00:28 +0000
Files and hashes: 1: 2f-H9S43t2bsv0s_nLJlWN0wiCA.crl (hash: SxEa/Cvvjo9yFWcPeLFlvAktJ0A8R/3c9X4dJ1d3ONM=)
2: nyss7FejNtDGTUXRBz8EpK-bUtQ.roa (hash: 1YbJTbv2jhWedSFo8tfV4w9Efzyk/as9DY0FQwn+kas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:9b:c3:5f:4c:e1:15:9e:7c:42:bb:96:8e:a2:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Validity
Not Before: Aug 23 06:00:28 2025 GMT
Not After : Aug 24 06:00:28 2025 GMT
Subject: CN=1c36ed92c1636f1efc73844d815ae5271080107c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8f:e1:df:4c:33:31:bb:76:12:63:e3:70:be:
ce:ab:da:86:33:8f:a0:12:a4:1f:02:68:98:ec:2f:
b2:30:50:d4:d0:9b:d2:49:c3:79:2d:0d:cc:46:ed:
a2:6e:b3:91:ae:46:78:45:ca:63:04:3a:82:44:be:
d0:3c:97:0f:b5:f4:2e:94:e3:de:7d:5e:1c:e6:52:
be:34:f5:1f:b3:a7:0d:2e:df:f9:8f:be:57:9b:fa:
63:4d:03:28:69:93:60:5a:5b:af:0b:e3:d0:0d:8a:
c1:4e:ac:49:8b:da:29:20:bf:8a:23:d7:3e:bc:44:
c5:bb:c8:41:d0:28:fe:f0:7c:b7:e7:2c:a5:62:53:
0e:65:28:77:bb:95:98:d3:42:fb:49:f8:36:f8:8d:
bf:8e:8a:f4:94:bd:11:3f:0f:8c:ff:d6:e6:00:1c:
f1:ca:c2:88:94:11:38:36:b4:cd:31:2e:a7:16:e0:
5b:50:61:90:0e:6b:85:47:f9:28:be:45:7b:06:c4:
30:b7:60:7c:1f:a0:b7:43:b1:c6:07:b2:fb:18:2e:
bb:a2:1c:a0:14:64:76:c3:e8:0e:e2:2e:15:11:50:
c9:2a:5b:de:86:c0:34:bd:ce:ab:ee:a1:b6:34:8b:
40:0b:d5:a3:08:7a:ca:22:ba:72:4d:9e:38:cc:1d:
e6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:36:ED:92:C1:63:6F:1E:FC:73:84:4D:81:5A:E5:27:10:80:10:7C
X509v3 Authority Key Identifier:
keyid:D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:df:f6:a8:21:27:a8:5b:41:17:08:0b:d9:9c:b2:fd:66:69:
04:dc:92:33:c4:49:5a:21:29:c1:f1:ff:6e:7d:fa:e9:ea:e3:
b2:ae:77:24:f1:d2:9b:a1:da:97:92:4a:38:c8:60:11:42:a1:
af:49:69:03:79:af:53:3b:cd:31:2c:24:48:2b:24:8a:5e:ee:
44:d8:77:58:18:d4:31:63:1f:f3:72:a7:da:e0:f0:42:81:75:
7b:a8:13:12:11:84:d9:18:5a:21:ac:06:71:55:64:e9:85:45:
be:45:0a:15:9d:fb:95:e8:ce:4e:0e:a1:2b:f3:41:24:da:89:
0f:b9:19:5b:21:89:a4:4a:87:b7:ba:fa:ed:fa:3d:e1:0b:5d:
2d:13:62:0b:0e:e5:af:8d:c0:ba:06:4e:87:f5:f0:ed:c7:96:
c9:e6:4d:6e:e4:e1:ca:36:8c:79:00:36:5f:92:61:3c:91:1e:
9c:0a:91:13:5a:14:22:7b:ab:c6:1a:32:7b:59:bd:04:6c:17:
f0:26:93:69:e7:7d:97:b6:08:a8:be:27:f0:9a:3f:c1:bd:5e:
12:b0:94:7d:a2:25:e3:a1:28:13:2c:21:6b:ae:11:48:54:52:
78:60:26:6b:d5:09:25:12:c7:7c:1a:27:70:c3:57:aa:6f:7d:
72:01:10:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:24:09 2025 by rpki-client