Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
File: 2LlxoaILZPFCUYAfj0NKQHX36pE.mft (raw, json)
Hash identifier: amRRlbhM/kTYW6SiXKHcT37VapQJxQ5irUhCFtTy+Fw=
Subject key identifier: FE:53:37:D9:EF:F1:4E:53:39:BA:2F:A6:DF:1B:AC:22:CB:40:EF:D6
Authority key identifier: D8:B9:71:A1:A2:0B:64:F1:42:51:80:1F:8F:43:4A:40:75:F7:EA:91
Certificate issuer: /CN=d8b971a1a20b64f14251801f8f434a4075f7ea91
Certificate serial: 0198D69812C910471D932EF955FA495D86D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
Manifest number: 02F9
Signing time: Sat 23 Aug 2025 11:02:27 +0000
Manifest this update: Sat 23 Aug 2025 11:02:27 +0000
Manifest next update: Sun 24 Aug 2025 11:02:27 +0000
Files and hashes: 1: 2LlxoaILZPFCUYAfj0NKQHX36pE.crl (hash: 4IPLmLLRWwB9AdmKqdDIh3YE/+8Vkae2HCvETIlcAGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:12:c9:10:47:1d:93:2e:f9:55:fa:49:5d:86:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8b971a1a20b64f14251801f8f434a4075f7ea91
Validity
Not Before: Aug 23 11:02:27 2025 GMT
Not After : Aug 24 11:02:27 2025 GMT
Subject: CN=fe5337d9eff14e5339ba2fa6df1bac22cb40efd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:76:c2:c8:8b:4a:41:5c:8a:05:47:70:2b:1b:
5f:36:88:34:bf:7b:ee:56:e6:8d:b9:3e:07:da:1d:
fa:5e:97:ae:99:62:64:16:7e:2f:e9:26:fe:9f:dd:
3c:b4:53:37:60:2b:81:2c:a1:3c:30:0d:f5:cb:a0:
7e:e7:ad:f0:d3:5f:be:9f:4d:41:ba:27:96:6d:97:
6f:e8:9f:8f:c6:12:82:1f:ee:45:d4:1a:f7:ab:e6:
94:39:f3:5f:88:d0:87:c8:d9:ff:76:2f:80:02:45:
dd:7d:57:39:0b:da:d5:01:69:73:7e:30:ce:27:a3:
02:f1:84:2e:7a:a6:fd:09:bd:98:b9:b3:4f:7c:d9:
ff:13:a3:62:ca:80:03:fd:51:1b:18:2c:40:28:b1:
39:d5:fa:52:3d:77:9b:29:61:16:2f:c6:07:84:84:
15:58:b3:16:e1:0e:b0:5e:43:e9:b1:61:4d:2d:bc:
15:d3:6b:fa:c3:13:77:fb:e5:03:4d:db:0d:d7:21:
f5:d7:5f:1b:55:8a:41:e8:f4:30:d1:0c:98:d3:78:
ba:89:d3:2e:9c:ca:0f:fe:b8:07:f3:40:8f:01:5d:
31:5b:a5:b0:dd:e6:e1:7c:0c:fd:6f:05:30:dc:26:
1e:aa:a9:d1:fe:cd:d9:3b:c6:35:65:c3:45:dc:3b:
8f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:53:37:D9:EF:F1:4E:53:39:BA:2F:A6:DF:1B:AC:22:CB:40:EF:D6
X509v3 Authority Key Identifier:
keyid:D8:B9:71:A1:A2:0B:64:F1:42:51:80:1F:8F:43:4A:40:75:F7:EA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:b5:2f:ce:0f:18:6b:2b:13:4c:08:6a:10:9f:6f:a9:80:80:
d7:ba:15:55:25:03:45:f0:7d:d8:08:0a:23:a4:d3:1a:07:ce:
72:0c:51:02:1f:97:5b:8d:9b:23:3b:75:e0:cc:86:38:6a:f4:
ae:05:4e:21:df:cb:26:02:fc:5c:62:04:bf:eb:1c:9f:fd:33:
5c:9d:42:32:fd:40:60:dd:eb:3f:fa:d7:52:8a:c6:f3:cf:a7:
e8:99:d6:ce:fb:09:06:ed:dd:d3:ba:69:db:3d:04:9a:26:a2:
80:8d:c1:c6:63:3a:88:4e:08:4d:59:20:1d:34:e3:6e:9d:36:
11:9a:8e:15:48:26:3f:e7:4c:85:4d:dc:4e:09:40:8d:2f:28:
e7:a7:8f:4d:f0:93:1e:30:b7:0e:ae:6e:68:ce:a2:d6:5a:a5:
c9:a1:76:fb:be:ec:94:fb:58:df:06:db:d0:0a:a9:37:ed:73:
93:c2:06:d8:0f:a2:ad:69:24:fe:22:0b:5a:f4:a4:93:ce:6d:
21:97:8f:c9:69:9e:9d:cb:7a:d5:b4:bc:49:8e:f5:58:e1:ff:
94:71:9e:e0:e8:f6:f5:e8:2c:87:80:29:52:e7:da:88:73:c5:
58:e8:12:45:5c:52:d6:bf:d4:4b:5a:e2:9f:f9:c6:c6:2d:fb:
46:5b:06:36
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWmBLJEEcdky75VfpJXYbVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4Yjk3MWExYTIwYjY0ZjE0MjUxODAxZjhmNDM0YTQwNzVm
N2VhOTEwHhcNMjUwODIzMTEwMjI3WhcNMjUwODI0MTEwMjI3WjAzMTEwLwYDVQQD
EyhmZTUzMzdkOWVmZjE0ZTUzMzliYTJmYTZkZjFiYWMyMmNiNDBlZmQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7nbCyItKQVyKBUdwKxtfNog0v3vu
VuaNuT4H2h36XpeumWJkFn4v6Sb+n908tFM3YCuBLKE8MA31y6B+563w01++n01B
uieWbZdv6J+PxhKCH+5F1Br3q+aUOfNfiNCHyNn/di+AAkXdfVc5C9rVAWlzfjDO
J6MC8YQueqb9Cb2YubNPfNn/E6NiyoAD/VEbGCxAKLE51fpSPXebKWEWL8YHhIQV
WLMW4Q6wXkPpsWFNLbwV02v6wxN3++UDTdsN1yH1118bVYpB6PQw0QyY03i6idMu
nMoP/rgH80CPAV0xW6Ww3ebhfAz9bwUw3CYeqqnR/s3ZO8Y1ZcNF3DuP+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP5TN9nv8U5TObovpt8brCLLQO/WMB8GA1UdIwQY
MBaAFNi5caGiC2TxQlGAH49DSkB19+qRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkxseG9hSUxaUEZDVVlBZmowTktRSFgzNnBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS85YmQ2NjktMmFiYi00OTliLWE5MWYt
NDQ0NWE0ZDc4NmQ0LzEvMkxseG9hSUxaUEZDVVlBZmowTktRSFgzNnBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS85YmQ2NjktMmFiYi00OTliLWE5MWYtNDQ0NWE0ZDc4NmQ0
LzEvMkxseG9hSUxaUEZDVVlBZmowTktRSFgzNnBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAObUvzg8Y
aysTTAhqEJ9vqYCA17oVVSUDRfB92AgKI6TTGgfOcgxRAh+XW42bIzt14MyGOGr0
rgVOId/LJgL8XGIEv+scn/0zXJ1CMv1AYN3rP/rXUorG88+n6JnWzvsJBu3d07pp
2z0EmiaigI3BxmM6iE4ITVkgHTTjbp02EZqOFUgmP+dMhU3cTglAjS8o56ePTfCT
HjC3Dq5uaM6i1lqlyaF2+77slPtY3wbb0AqpN+1zk8IG2A+irWkk/iILWvSkk85t
IZePyWmenct61bS8SY71WOH/lHGe4Oj29egsh4ApUufaiHPFWOgSRVxS1r/US1ri
n/nGxi37RlsGNg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:04:57 2025 by rpki-client