Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
File: 2jQhazvZIbbGYYeoyGpKS7DuUj8.mft (raw, json)
Hash identifier: m2i3556ZEArAz+E9KQ2UfHUmzboAVFKxi8btLaz1Oxw=
Subject key identifier: 11:FB:1A:19:9C:A2:3B:F6:14:6E:91:DF:FD:71:DD:4F:7A:14:D9:FD
Authority key identifier: DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F
Certificate issuer: /CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f
Certificate serial: 0198D6CD9949F10B60F966CDFC90CFBD66AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
Manifest number: 1351
Signing time: Sat 23 Aug 2025 12:00:55 +0000
Manifest this update: Sat 23 Aug 2025 12:00:55 +0000
Manifest next update: Sun 24 Aug 2025 12:00:55 +0000
Files and hashes: 1: 2jQhazvZIbbGYYeoyGpKS7DuUj8.crl (hash: nTBHkQtnbbwQw8v4GnEz/hI5J4Pi+Ty1laLkBt6W0/Y=)
2: y-rAx3x5ggb3kBBIMyQl2KhriYw.roa (hash: j/sr0gEHuELryIqb8wmwmOpvCJwyct02mKuP2NU5Abs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:99:49:f1:0b:60:f9:66:cd:fc:90:cf:bd:66:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f
Validity
Not Before: Aug 23 12:00:55 2025 GMT
Not After : Aug 24 12:00:55 2025 GMT
Subject: CN=11fb1a199ca23bf6146e91dffd71dd4f7a14d9fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:dd:13:69:b2:42:a9:56:08:c6:f5:8c:eb:db:
3a:8b:d9:b6:e0:22:c1:8a:5a:d4:11:13:c6:7c:3c:
37:80:e6:93:e2:30:13:d3:61:af:5d:f5:a3:36:6f:
2f:51:f9:54:d9:ff:e5:04:c8:79:0a:33:e6:d9:ee:
84:0a:4d:d1:5d:23:89:c5:56:45:82:e8:c3:02:ba:
cf:10:91:02:af:d5:a4:fa:60:6a:c9:75:f9:ba:05:
f5:11:e4:c3:e2:b4:fc:00:70:f5:13:78:16:23:aa:
f6:66:f8:a6:3d:e1:7b:17:5d:04:bb:9b:5f:22:c4:
08:a0:86:db:47:45:28:e7:5b:d0:54:f0:13:ee:cf:
3d:14:e1:6e:9e:d4:68:10:82:ea:bc:26:07:e0:3c:
c6:06:9a:dc:10:14:c3:0e:a9:56:b4:61:f5:ec:a9:
2e:64:c8:e2:3a:72:cb:c2:87:e4:18:63:14:64:2a:
0b:95:4d:33:a8:0d:15:a8:99:ba:bf:d1:a5:62:7c:
5f:d7:9c:c0:94:d8:4d:4c:05:b5:7d:18:02:25:e6:
fe:9f:4e:f4:7e:18:cf:bc:4d:36:0a:96:45:f1:bd:
8d:18:03:7f:54:3d:eb:5d:9f:56:cf:3e:3c:b4:9f:
de:0f:0e:2c:6e:d0:de:88:76:18:48:dc:fa:c9:da:
41:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:FB:1A:19:9C:A2:3B:F6:14:6E:91:DF:FD:71:DD:4F:7A:14:D9:FD
X509v3 Authority Key Identifier:
keyid:DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:d4:de:39:90:5f:d2:e5:1b:af:b8:64:21:ef:d2:58:f7:7b:
ef:05:ca:e7:3a:a8:f6:5c:5d:c2:1f:2d:56:30:e0:4c:13:06:
e1:f2:9a:58:44:31:bc:91:ae:82:f3:f1:b2:7c:80:ac:b2:b1:
3d:72:5d:83:47:37:41:ba:f1:9d:35:6d:59:0f:d5:cd:7f:b3:
1f:a4:ae:a0:d8:a6:39:b2:48:d7:fa:a9:83:74:20:1e:dd:91:
7c:4a:cb:af:70:82:72:60:a9:51:d3:68:28:df:ba:73:0f:af:
66:a9:a5:27:71:ef:0b:ad:da:0d:cf:d7:3d:3d:34:57:1a:38:
35:85:bd:4a:77:3f:7c:48:d1:21:f1:ac:a2:03:1f:14:a2:24:
74:c1:6e:01:f2:a4:18:02:d8:d0:49:4d:59:15:68:9c:24:2d:
91:9f:20:d0:34:07:40:03:95:d1:9d:e4:8f:4d:f9:fc:85:bf:
d7:fa:37:db:77:55:53:fb:a1:1b:1b:dd:01:c8:1b:4d:42:19:
93:6f:42:c7:c5:35:e3:8e:7e:59:f2:62:96:23:fe:28:cd:d3:
97:8a:86:32:86:0e:92:f2:df:4f:39:a6:88:66:19:f1:6b:8e:
bd:8e:8a:88:07:28:ce:29:58:0b:67:c8:ba:b6:3c:29:87:eb:
c0:05:19:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:44:37 2025 by rpki-client