Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: WN3/P4wCHzyAJXwqWXv7zm9hkkNWCbES7oxCpgBW9wc=
Subject key identifier: 1C:5C:10:0B:37:48:A4:F0:59:AA:D3:58:F7:6E:E9:F1:AA:95:17:A8
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 0198D4726DDDC40ECCF6365781DADE4474A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 0BA1
Signing time: Sat 23 Aug 2025 01:02:05 +0000
Manifest this update: Sat 23 Aug 2025 01:02:05 +0000
Manifest next update: Sun 24 Aug 2025 01:02:05 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: 0Dcdgvf+ula0UabxUPqHnsRXt6T9I2STAaOqSg/T/oY=)
2: YfAgsC_cdxTTdTc3lRuKLUA9Ek4.roa (hash: 6JxCw6QKy553BkYrq5SFqTFyUQePShSh+1QhYyHxmes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:6d:dd:c4:0e:cc:f6:36:57:81:da:de:44:74:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: Aug 23 01:02:05 2025 GMT
Not After : Aug 24 01:02:05 2025 GMT
Subject: CN=1c5c100b3748a4f059aad358f76ee9f1aa9517a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:02:80:51:ec:e0:1f:03:ef:8e:e9:6e:85:c1:
00:a9:39:0b:01:ec:75:6d:8b:00:e0:de:47:a7:1a:
fb:ee:83:0b:1e:43:33:95:37:5a:70:c1:40:eb:2b:
84:ba:41:c9:f7:03:1f:7d:b3:ad:3c:a6:e8:9f:5c:
36:c8:af:09:de:42:70:f0:5e:da:b4:35:23:a6:e9:
73:a7:71:51:86:15:5c:c4:aa:96:05:bd:d0:b5:69:
7e:ce:23:ff:bf:b0:a8:60:00:66:33:db:72:4f:83:
70:e5:2e:40:b7:a8:e8:78:fd:fc:16:e1:c9:7c:02:
d1:ea:3a:bc:db:99:ce:b1:bd:2f:c6:10:0f:8b:c6:
21:7e:d8:7b:3d:15:2d:9e:e7:3d:83:59:50:d8:b9:
50:3c:f8:12:77:79:cb:2e:f0:5c:7c:37:d8:57:8d:
5a:28:93:bb:bd:e7:76:72:ea:07:f0:9a:28:27:f3:
16:01:7c:b6:57:3a:d9:4c:49:72:11:b5:5d:17:af:
db:5d:b8:35:6f:9e:83:02:ea:bb:5b:ae:35:8b:f1:
e0:46:da:58:05:ba:1b:47:9c:f8:74:95:2e:9d:a9:
3e:e4:e2:13:5d:40:9d:fb:2f:37:7b:b3:88:4c:d6:
7d:1e:2f:8a:83:d2:a6:f6:c9:f8:36:ba:37:a2:84:
b8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:5C:10:0B:37:48:A4:F0:59:AA:D3:58:F7:6E:E9:F1:AA:95:17:A8
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:1f:5a:5d:de:7a:a3:84:ec:e5:12:e4:1c:35:f2:0e:77:71:
7e:5a:61:fb:2f:07:fa:d2:c7:b0:e9:f9:28:bd:66:b6:e6:99:
c5:75:e5:6d:50:eb:f3:66:09:88:8e:f1:ae:2a:35:be:3c:64:
93:21:2e:d3:23:3f:c1:39:4b:9b:1a:c6:26:4f:c3:25:00:34:
ff:c9:b9:6b:81:36:57:92:72:79:d2:05:08:3a:ce:43:1a:7b:
be:20:c8:73:8e:45:52:ae:44:53:c0:28:5e:6e:ec:8e:99:e3:
c0:55:e5:fc:c1:65:c9:d3:50:34:b4:14:66:0f:03:89:26:f9:
79:25:cc:29:e7:a6:61:51:36:eb:4e:47:e9:ca:05:41:b4:f8:
e4:89:89:06:dd:cf:35:84:00:2c:e2:49:ad:48:6a:97:89:76:
0e:c2:d7:d9:1d:11:33:2d:15:24:2b:3e:fe:74:c6:52:b0:89:
ef:44:02:6c:8a:e7:ed:c4:4a:05:ac:92:f9:a9:85:3f:d9:bf:
4d:03:f6:60:08:09:4c:2a:90:f2:2a:80:9d:5b:e5:b1:6a:de:
c9:bf:19:f2:b2:0f:91:cb:3c:c4:49:ff:7d:72:76:d8:31:9a:
7b:7d:5c:d5:63:51:c8:74:4a:fa:45:21:7a:1e:0c:59:62:ec:
b3:09:00:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:32:37 2025 by rpki-client