Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: 2T3fbk3NzLlqijSJcM+voCNwrU3YLdzFLmrXuWzUne4=
Subject key identifier: 33:20:38:BB:F4:EA:55:13:5F:27:90:2E:DE:B4:6B:B6:55:42:65:CE
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 0198D705CF7722088390A3F6F6739DCD5378
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 15AD
Signing time: Sat 23 Aug 2025 13:02:18 +0000
Manifest this update: Sat 23 Aug 2025 13:02:18 +0000
Manifest next update: Sun 24 Aug 2025 13:02:18 +0000
Files and hashes: 1: WWNEma98vqvt3aWub4KvZrisRPY.roa (hash: 8ej/FxtmoHvT2+4JYPncO9OF+5JwUWMEm2sRynTw/0U=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: OPlVrYBGj8Z2q0ZnX1vAR5+NJ5tI6TikGeeu2kjxLMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:cf:77:22:08:83:90:a3:f6:f6:73:9d:cd:53:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Aug 23 13:02:18 2025 GMT
Not After : Aug 24 13:02:18 2025 GMT
Subject: CN=332038bbf4ea55135f27902edeb46bb6554265ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:41:f4:92:08:d8:21:ba:22:dc:d2:ff:8b:a8:
ac:92:ce:48:28:ce:c8:94:c8:40:b1:db:66:45:a5:
14:bf:d6:ff:a5:9f:9d:71:7a:08:a3:6f:69:25:19:
aa:6f:d1:90:4f:fb:b1:9f:d4:ff:3b:f9:a7:43:3a:
40:d5:94:6f:1d:8e:5e:2e:7c:94:b8:a5:80:e7:9f:
2f:6b:2a:2a:74:32:5a:22:88:68:8f:25:93:ea:93:
97:07:a2:f2:8c:8e:d7:30:93:4f:cf:42:7d:f8:74:
73:ed:b9:cd:31:4b:8b:62:75:06:2a:ee:3d:13:78:
89:58:5f:f2:a4:6d:3d:0e:56:73:23:cb:9f:39:7b:
86:7e:81:fe:13:80:13:37:78:e9:75:02:8c:e4:71:
17:e0:cf:e9:89:42:2f:3e:03:72:50:3a:3d:74:99:
a4:11:49:42:4a:be:8e:7f:2b:97:59:f2:aa:e0:f1:
9c:47:d7:ef:9f:d8:3c:7e:6a:97:88:c3:62:bc:ba:
ea:21:b8:70:df:1b:d8:52:5b:97:0a:89:dd:38:c7:
86:62:92:a3:06:d2:26:35:f1:35:81:6e:0f:5b:6f:
ab:bd:e6:fe:52:44:4e:fd:0d:8c:9b:dd:2e:8e:d0:
57:63:22:94:a7:8d:94:bf:55:16:4d:c6:e9:3d:6e:
1e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:20:38:BB:F4:EA:55:13:5F:27:90:2E:DE:B4:6B:B6:55:42:65:CE
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:6e:de:36:48:2c:5c:49:4a:77:25:3b:33:d6:bf:6c:79:b8:
26:80:e1:01:87:1c:cc:a4:80:3a:ff:9e:7d:47:07:d4:e1:50:
e0:a5:09:96:68:fb:5b:b7:64:07:42:d2:d8:f3:81:94:18:b6:
2f:ea:b3:22:89:e4:3c:cc:1c:d9:72:5f:4f:1d:7a:f0:4b:fe:
e0:24:81:e0:b4:e1:d0:43:53:f7:39:6d:c3:16:45:89:eb:60:
ea:7b:b5:08:c4:54:d4:8d:33:24:07:30:58:c2:55:6b:04:b9:
5a:6f:02:79:1f:91:0d:95:17:b2:f8:73:d3:7b:a4:48:d5:39:
8d:84:1c:6a:f1:70:33:14:aa:46:8d:06:d5:52:34:01:2e:b9:
1e:c8:12:35:7d:0b:aa:ed:5e:c6:44:ed:f4:fb:68:f2:54:aa:
6e:45:e5:6c:38:9d:61:b0:d0:d3:b4:54:61:ff:3a:1d:76:ec:
ec:54:23:90:ce:0c:ce:58:0a:c4:ff:74:56:ac:69:68:e4:4f:
1c:39:00:92:64:f0:88:63:91:c5:ce:1c:db:d8:d9:46:2e:86:
f0:41:8b:e9:8d:b8:45:36:ac:e6:da:7b:1f:ea:29:d1:6d:82:
db:f9:62:64:ff:fa:2b:ff:d1:c1:29:e1:03:da:88:9a:ed:64:
da:9d:4f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:44:11 2025 by rpki-client