Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft
File: 2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft (raw, json)
Hash identifier: +poO6+xj1gpBsp0Tr76JvkHBOAPRdFCxd+PIDmbQ01s=
Subject key identifier: 45:3C:EA:52:C5:13:A6:4B:EE:98:5C:1A:2B:01:91:A1:9D:37:29:A0
Authority key identifier: D8:9B:44:E2:C0:57:F0:1A:99:26:1F:94:BB:F6:DA:1B:F1:86:5F:39
Certificate issuer: /CN=d89b44e2c057f01a99261f94bbf6da1bf1865f39
Certificate serial: 0198D6602E6914F2BB31E436640AE2B718A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JtE4sBX8BqZJh-Uu_baG_GGXzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft
Manifest number: 0BB0
Signing time: Sat 23 Aug 2025 10:01:24 +0000
Manifest this update: Sat 23 Aug 2025 10:01:24 +0000
Manifest next update: Sun 24 Aug 2025 10:01:24 +0000
Files and hashes: 1: 2JtE4sBX8BqZJh-Uu_baG_GGXzk.crl (hash: qacb+a/S8v45ymOFbYKYfnEXlcQaPrmiN9FwuwWunQs=)
2: pEoCff1DtYoEMHzC9EANzQRBsC8.roa (hash: +m2VMtZgdFPS2/0zJPg1ZLBtRhUd6KXSgxAw6jiEMMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2JtE4sBX8BqZJh-Uu_baG_GGXzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:2e:69:14:f2:bb:31:e4:36:64:0a:e2:b7:18:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89b44e2c057f01a99261f94bbf6da1bf1865f39
Validity
Not Before: Aug 23 10:01:24 2025 GMT
Not After : Aug 24 10:01:24 2025 GMT
Subject: CN=453cea52c513a64bee985c1a2b0191a19d3729a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:fb:87:fb:7c:69:76:58:66:40:8a:53:2f:a3:
1d:d3:8d:21:98:cd:a9:ce:a5:78:65:35:12:12:ef:
88:92:55:c8:6d:fd:a2:d1:01:14:a8:63:13:5e:ea:
bd:06:3c:99:17:df:7c:e6:61:fe:34:49:51:de:20:
26:ea:17:e3:ca:0b:9c:72:57:c0:ab:1f:79:16:06:
7c:d2:bc:d7:e6:87:80:58:c5:36:53:e5:2c:92:53:
6c:36:fd:a1:97:11:f9:00:03:48:2e:e6:12:1d:b9:
3d:7d:63:61:8d:94:19:cb:ce:3e:45:ef:79:7a:ab:
47:6c:7e:e4:55:63:52:10:15:7c:b2:46:25:4a:c9:
74:d1:ea:26:5a:fc:c2:cf:e1:fc:a3:df:a3:73:d6:
24:91:97:84:99:b6:41:39:c9:15:ed:11:5b:22:5f:
61:15:6a:f6:80:5b:a0:d8:05:d4:dc:c4:ea:4a:5a:
53:a5:f1:df:85:f3:3b:38:cd:8a:81:9d:dc:0d:74:
f0:4e:86:81:a5:ef:77:7d:45:ac:14:6d:60:89:d0:
62:ef:37:01:31:c4:29:05:fa:97:bc:f3:9f:91:0a:
62:ea:7b:df:c6:e1:29:b0:8c:41:4e:47:bc:77:f9:
22:28:40:44:fe:0d:21:cb:25:08:3e:92:3b:15:1c:
b0:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:3C:EA:52:C5:13:A6:4B:EE:98:5C:1A:2B:01:91:A1:9D:37:29:A0
X509v3 Authority Key Identifier:
keyid:D8:9B:44:E2:C0:57:F0:1A:99:26:1F:94:BB:F6:DA:1B:F1:86:5F:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JtE4sBX8BqZJh-Uu_baG_GGXzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:26:56:83:f7:96:f4:9a:79:92:05:57:2f:ea:a8:00:1d:c8:
26:4f:d1:93:65:bc:8d:0c:02:60:d1:b2:b4:13:93:a7:9f:c0:
05:40:e7:30:72:68:62:67:8e:78:6c:28:ee:07:cb:ae:7b:2f:
9d:d3:79:a6:73:8d:63:f9:81:1e:5d:5e:b8:8e:e8:57:69:9e:
3d:f7:d3:f9:20:a4:ba:f0:5d:96:49:5e:ef:e8:f6:59:85:3b:
76:2f:4e:7f:23:3c:af:0b:21:5d:17:3f:38:5a:95:dd:08:61:
dd:fe:cd:83:fc:86:76:4c:f6:c2:a4:45:d1:c9:4a:57:3f:db:
73:2d:ee:ce:21:04:da:d3:d7:10:b9:8a:32:1f:8a:15:54:12:
78:22:64:99:81:e9:37:ad:18:54:9e:e2:8e:32:54:d7:6a:b8:
9e:af:30:f0:b1:0b:3c:3b:23:12:79:35:2c:9a:33:a8:14:51:
cf:19:f5:3b:20:d1:a3:92:a3:54:17:0a:5d:52:a6:eb:67:6e:
32:31:ce:c5:42:cc:4f:2b:cb:42:21:d6:63:80:9e:0c:d4:7b:
69:01:59:8a:33:54:35:be:e4:b8:4b:40:ca:09:fa:22:6c:f2:
e7:b7:70:2a:8f:44:bf:7a:0c:69:d0:0b:44:fc:13:5c:73:af:
fa:5f:cf:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:27:15 2025 by rpki-client