Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
File: 2lNAluw_e_xU1lT84PAWitlmIs0.mft (raw, json)
Hash identifier: IsYBOlq7fdKeNL/5T0uaeVdrKrGqe1nUskPfhXyhi8k=
Subject key identifier: 05:B9:EE:EB:3C:EF:12:AD:53:AC:CC:3A:6B:26:B5:26:1D:CF:1E:A0
Authority key identifier: DA:53:40:96:EC:3F:7B:FC:54:D6:54:FC:E0:F0:16:8A:D9:66:22:CD
Certificate issuer: /CN=da534096ec3f7bfc54d654fce0f0168ad96622cd
Certificate serial: 0198D404C3B4F2CC5AE2150F04EA0655142F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
Manifest number: 03AE
Signing time: Fri 22 Aug 2025 23:02:18 +0000
Manifest this update: Fri 22 Aug 2025 23:02:18 +0000
Manifest next update: Sat 23 Aug 2025 23:02:18 +0000
Files and hashes: 1: 2lNAluw_e_xU1lT84PAWitlmIs0.crl (hash: fR6NXtYKs+ozPlTFhEBq3RPHKXAci0HYp9l8zJz7r1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:c3:b4:f2:cc:5a:e2:15:0f:04:ea:06:55:14:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da534096ec3f7bfc54d654fce0f0168ad96622cd
Validity
Not Before: Aug 22 23:02:18 2025 GMT
Not After : Aug 23 23:02:18 2025 GMT
Subject: CN=05b9eeeb3cef12ad53accc3a6b26b5261dcf1ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7e:73:9e:59:02:cb:33:10:fe:77:97:48:fb:
99:c1:25:68:f9:e8:18:ab:b2:4c:9e:77:57:8a:e4:
7a:e6:31:41:f5:e0:76:a7:97:4d:dd:14:ca:11:aa:
31:2a:19:82:24:a6:b3:d7:dd:c6:0e:16:16:c4:9d:
5e:ed:6c:08:42:dc:3e:57:b0:c2:04:13:a7:c1:e0:
4b:4a:42:4e:3f:4a:f1:13:dd:c6:25:61:1b:05:f4:
7d:29:6f:fa:19:13:77:3b:ff:09:65:e5:71:fe:67:
8e:10:59:10:98:df:2d:92:68:e9:80:7a:64:ad:d8:
e7:ff:91:2a:2f:2d:e1:f3:2a:34:7c:cd:f9:39:0a:
b4:b1:b7:7d:da:15:04:9c:85:7b:08:4d:84:3d:35:
88:59:1a:12:68:d1:f5:80:67:6c:59:a6:d3:c6:d9:
f2:25:be:95:2d:c3:2d:58:b8:8d:62:a7:2e:d7:73:
cb:02:ad:27:3c:c2:17:af:00:42:f4:b3:eb:52:d6:
71:40:07:99:a4:05:a9:ce:f2:98:10:c8:e9:7a:42:
ea:63:51:c9:2e:13:e6:ac:ec:52:8e:47:37:36:e8:
8d:0c:37:92:28:dc:2f:8f:80:a9:e2:68:d9:de:4f:
91:f2:85:fb:67:fb:6c:bb:30:bc:df:0f:e8:6e:b7:
6c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:B9:EE:EB:3C:EF:12:AD:53:AC:CC:3A:6B:26:B5:26:1D:CF:1E:A0
X509v3 Authority Key Identifier:
keyid:DA:53:40:96:EC:3F:7B:FC:54:D6:54:FC:E0:F0:16:8A:D9:66:22:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:9a:6a:82:2c:89:db:91:f0:b5:72:8d:63:44:a6:06:26:4b:
9a:e1:35:7e:79:41:c7:c8:da:15:c1:91:f4:24:09:c8:cd:b3:
19:24:10:b4:fd:09:74:34:b7:10:1d:2d:c4:8c:f6:05:40:7a:
2e:0b:9f:32:2f:2e:f8:36:7c:ee:e5:ac:54:63:89:d5:ab:90:
26:d4:cc:8d:42:38:42:8a:d7:5b:39:a6:05:01:ea:da:12:41:
81:6e:d4:ab:11:7b:3a:f6:b0:ee:42:e1:27:7e:74:9d:c0:31:
cd:69:58:b4:41:79:c8:5d:0f:df:d7:55:4a:96:94:95:a9:00:
56:5b:69:cf:39:a2:10:a9:2d:b3:fd:6c:38:04:07:58:95:5f:
66:ce:bd:df:26:6d:81:37:70:59:5b:d4:11:aa:2f:67:30:3d:
59:bb:b4:05:c9:16:c2:e4:b8:61:34:49:a1:cf:68:20:1e:91:
3f:cf:25:f3:6b:7c:d7:27:da:30:ed:7c:3e:62:da:8d:a6:85:
9d:6c:8f:70:51:d1:66:ff:af:62:ff:67:30:6e:39:09:5e:e3:
a0:03:a4:08:28:bc:9e:98:29:a2:cc:72:93:1e:e3:e5:72:16:
f6:e6:24:11:7a:2a:2e:30:99:b0:ef:5c:73:a1:d8:dc:f3:98:
db:98:ea:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:48 2025 by rpki-client