Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.mft
File: 2bN6OM6IfTdjYEau84ehwjMVLkE.mft (raw, json)
Hash identifier: wVaI4vb1Si4p5YRbPlL83dkhbVsp+EntzaVWAKJQVc8=
Subject key identifier: CF:0A:7D:66:26:A4:A9:7F:DE:C3:8F:0A:E9:30:2B:3E:4E:F9:8C:BF
Authority key identifier: D9:B3:7A:38:CE:88:7D:37:63:60:46:AE:F3:87:A1:C2:33:15:2E:41
Certificate issuer: /CN=d9b37a38ce887d37636046aef387a1c233152e41
Certificate serial: 0198D4737337F5116F4BF37B6F5EC5B8C727
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2bN6OM6IfTdjYEau84ehwjMVLkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.mft
Manifest number: 06DA
Signing time: Sat 23 Aug 2025 01:03:12 +0000
Manifest this update: Sat 23 Aug 2025 01:03:12 +0000
Manifest next update: Sun 24 Aug 2025 01:03:12 +0000
Files and hashes: 1: 2bN6OM6IfTdjYEau84ehwjMVLkE.crl (hash: IaTgLWRoLtS2F18WBJOY3+8yLEdgn4WdrfTmEopk/Ms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2bN6OM6IfTdjYEau84ehwjMVLkE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:73:37:f5:11:6f:4b:f3:7b:6f:5e:c5:b8:c7:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9b37a38ce887d37636046aef387a1c233152e41
Validity
Not Before: Aug 23 01:03:12 2025 GMT
Not After : Aug 24 01:03:12 2025 GMT
Subject: CN=cf0a7d6626a4a97fdec38f0ae9302b3e4ef98cbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e1:c6:16:bb:5b:28:25:5c:02:57:f1:51:f7:
5c:5e:2f:97:34:74:e5:c6:c6:a5:00:77:f8:3e:ac:
0a:6e:32:df:f9:53:16:58:68:9f:88:a2:20:6b:bb:
e3:a7:b6:f6:f5:f3:d9:03:06:a6:70:7d:6c:18:79:
ee:17:67:e2:0f:98:eb:6b:07:be:fc:0a:f9:f0:8d:
fa:c5:f0:76:3b:35:fd:a0:be:44:e3:a6:6c:34:db:
97:44:5f:78:9e:76:09:92:a3:71:24:09:67:57:d7:
27:26:63:84:93:15:71:c3:ea:dd:7d:82:e9:6d:69:
8e:e4:df:35:5c:6c:7b:83:16:1c:11:e6:ea:0a:29:
fc:a6:1c:58:58:13:42:7f:75:bc:5d:fa:1f:1f:05:
8b:4b:79:ba:e8:fe:1a:8a:de:db:8e:90:a9:00:df:
62:35:62:3b:96:f0:58:07:c3:ce:fb:0b:d7:1d:50:
40:39:13:ab:8b:1b:2d:e1:79:98:bd:2f:05:25:20:
ce:71:51:0f:fb:49:6e:45:94:7f:cd:79:1b:f0:54:
24:e2:e7:93:56:ab:58:08:96:53:44:b3:64:62:6e:
77:dc:03:92:24:bb:c8:69:fe:b4:a6:70:be:4a:12:
91:be:d5:be:64:c7:11:39:1d:38:e8:f7:6f:83:6c:
81:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0A:7D:66:26:A4:A9:7F:DE:C3:8F:0A:E9:30:2B:3E:4E:F9:8C:BF
X509v3 Authority Key Identifier:
keyid:D9:B3:7A:38:CE:88:7D:37:63:60:46:AE:F3:87:A1:C2:33:15:2E:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2bN6OM6IfTdjYEau84ehwjMVLkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9545f2-fb60-4878-ae58-d6aac613830b/1/2bN6OM6IfTdjYEau84ehwjMVLkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:54:72:2a:8d:3e:13:35:0f:e5:43:26:cb:ad:9b:d4:dd:7c:
4d:84:a7:d3:45:2f:1f:0d:98:b5:79:41:40:1b:71:e3:d9:be:
7d:f3:d4:61:f1:e3:70:55:1b:42:99:1b:29:fe:a7:a0:02:59:
72:3d:f7:38:71:bd:fa:44:74:5c:74:d1:e3:1d:bd:aa:d8:c7:
94:ae:76:f6:9b:ff:2a:8b:f0:af:09:94:03:3a:21:a0:dc:aa:
d2:87:ae:7a:c6:1e:b3:c8:9d:1b:d9:31:3a:c7:02:ab:a8:0e:
5e:52:21:dc:73:fe:0e:de:b3:ec:ea:82:a0:48:ae:f6:b5:c1:
8d:9e:da:81:75:b6:bb:3d:ea:f7:ea:c3:9a:f8:34:9f:6a:1b:
1d:bc:6d:13:0f:6b:bf:02:c2:38:a9:c0:c1:20:ee:e1:fa:ba:
98:8a:fc:2c:09:d0:a1:0d:9a:1b:84:45:d5:fc:7b:15:0c:d1:
ae:74:43:3c:ac:3d:07:7d:4b:b5:01:f0:0f:f4:3c:46:06:22:
40:58:6b:85:b3:d7:38:e8:34:40:d3:10:5e:6a:d2:cb:ac:40:
0e:15:d8:91:51:69:5f:a9:77:9f:d2:4a:91:58:0b:60:fa:b3:
f3:51:d1:38:cc:db:83:26:54:9a:d4:26:da:4e:0e:b0:b4:78:
60:d9:92:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUc3M39RFvS/N7b17FuMcnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5YjM3YTM4Y2U4ODdkMzc2MzYwNDZhZWYzODdhMWMyMzMx
NTJlNDEwHhcNMjUwODIzMDEwMzEyWhcNMjUwODI0MDEwMzEyWjAzMTEwLwYDVQQD
EyhjZjBhN2Q2NjI2YTRhOTdmZGVjMzhmMGFlOTMwMmIzZTRlZjk4Y2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuuHGFrtbKCVcAlfxUfdcXi+XNHTl
xsalAHf4PqwKbjLf+VMWWGifiKIga7vjp7b29fPZAwamcH1sGHnuF2fiD5jrawe+
/Ar58I36xfB2OzX9oL5E46ZsNNuXRF94nnYJkqNxJAlnV9cnJmOEkxVxw+rdfYLp
bWmO5N81XGx7gxYcEebqCin8phxYWBNCf3W8XfofHwWLS3m66P4ait7bjpCpAN9i
NWI7lvBYB8PO+wvXHVBAOROrixst4XmYvS8FJSDOcVEP+0luRZR/zXkb8FQk4ueT
VqtYCJZTRLNkYm533AOSJLvIaf60pnC+ShKRvtW+ZMcROR046Pdvg2yB4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM8KfWYmpKl/3sOPCukwKz5O+Yy/MB8GA1UdIwQY
MBaAFNmzejjOiH03Y2BGrvOHocIzFS5BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmJONk9NNklmVGRqWUVhdTg0ZWh3ak1WTGtFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS85NTQ1ZjItZmI2MC00ODc4LWFlNTgt
ZDZhYWM2MTM4MzBiLzEvMmJONk9NNklmVGRqWUVhdTg0ZWh3ak1WTGtFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS85NTQ1ZjItZmI2MC00ODc4LWFlNTgtZDZhYWM2MTM4MzBi
LzEvMmJONk9NNklmVGRqWUVhdTg0ZWh3ak1WTGtFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHlRyKo0+
EzUP5UMmy62b1N18TYSn00UvHw2YtXlBQBtx49m+ffPUYfHjcFUbQpkbKf6noAJZ
cj33OHG9+kR0XHTR4x29qtjHlK529pv/KovwrwmUAzohoNyq0oeuesYes8idG9kx
OscCq6gOXlIh3HP+Dt6z7OqCoEiu9rXBjZ7agXW2uz3q9+rDmvg0n2obHbxtEw9r
vwLCOKnAwSDu4fq6mIr8LAnQoQ2aG4RF1fx7FQzRrnRDPKw9B31LtQHwD/Q8RgYi
QFhrhbPXOOg0QNMQXmrSy6xADhXYkVFpX6l3n9JKkVgLYPqz81HROMzbgyZUmtQm
2k4OsLR4YNmSRQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:31:50 2025 by rpki-client