Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
File: 2DLajUWISdX0C6bwuSCPhYXZ4j4.mft (raw, json)
Hash identifier: bLX4Dbl1ttDpu0AYPcR0+YOFQyBfE5TfBJNNGV18N4k=
Subject key identifier: B8:9D:82:03:69:B6:CE:69:43:6C:14:C4:76:FC:E4:6E:BD:5B:1E:2B
Authority key identifier: D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
Certificate issuer: /CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Certificate serial: 0198D5BBE8175BC52F6C98CEB0096E7A7D8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 07:01:58 +0000
Manifest this update: Sat 23 Aug 2025 07:01:58 +0000
Manifest next update: Sun 24 Aug 2025 07:01:58 +0000
Files and hashes: 1: 0LdCYiyoo_rQZDLAQK9EXmWdrLs.roa (hash: ii+DUPaWPj2PKPLgx9rgU4vJhM6MjQajOc4FBEHl1O8=)
2: 2DLajUWISdX0C6bwuSCPhYXZ4j4.crl (hash: MuBhXQxcbZVJDmkIYm/+CkWonMmxD18/HXAkL4c75HA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:e8:17:5b:c5:2f:6c:98:ce:b0:09:6e:7a:7d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Validity
Not Before: Aug 23 07:01:58 2025 GMT
Not After : Aug 24 07:01:58 2025 GMT
Subject: CN=b89d820369b6ce69436c14c476fce46ebd5b1e2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ca:31:61:b3:01:ea:88:64:89:4a:cf:94:22:
12:aa:3f:16:eb:87:4c:3b:7a:f6:a3:02:2d:5b:86:
2e:b8:8d:c9:3f:c8:e4:6e:9f:26:2d:fb:e8:30:be:
2c:87:d3:b4:9b:e1:ef:b0:10:15:34:e5:6f:a6:cc:
1e:70:5c:c6:72:05:77:39:a8:4d:77:95:7d:8f:d9:
c1:28:c1:0e:9a:5e:b3:9d:53:aa:55:4c:1d:9b:40:
a4:e2:a4:8a:22:6e:8c:f2:e2:a0:67:36:f5:fc:32:
20:2d:fa:c7:90:43:ae:28:d7:c5:f0:80:7a:b4:b6:
f8:96:2a:c6:09:0b:cd:e1:9b:54:59:4d:75:c5:dd:
a5:f2:d2:1b:04:ba:3e:0e:f9:8a:bd:5e:25:fd:f7:
5d:8b:8a:0a:74:09:a0:a9:be:0f:c0:d7:f1:b5:72:
da:cf:2a:b7:6f:b2:8c:d9:22:08:d0:13:21:fb:8c:
86:db:1e:36:38:2e:96:f5:77:f3:d7:33:fd:92:49:
61:fb:d1:d6:eb:28:b7:51:1d:1f:bb:67:97:a2:fb:
c3:50:8f:99:ff:ae:60:e4:49:10:2d:e6:9e:4c:f5:
2d:c0:4a:e1:f0:67:28:40:9c:61:24:d5:bf:ac:45:
0e:27:93:96:67:2e:b8:ef:ad:e6:f8:d7:46:82:9c:
8f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:9D:82:03:69:B6:CE:69:43:6C:14:C4:76:FC:E4:6E:BD:5B:1E:2B
X509v3 Authority Key Identifier:
keyid:D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:95:be:88:c4:b2:ea:b9:ff:95:00:ac:57:a6:47:88:8b:57:
73:ae:b7:97:93:dd:b8:2d:0a:bd:be:21:16:63:dc:26:2b:c4:
0b:71:97:f0:eb:8b:b9:07:b6:6e:96:7a:40:27:5a:a1:22:f4:
dd:0a:55:06:68:54:46:40:a9:d5:d9:56:19:d8:13:54:32:d3:
d8:23:a7:fe:b9:2a:5e:1f:37:2c:1e:bd:09:69:fc:be:4b:87:
71:3a:c5:94:80:0a:ed:ad:01:45:c5:42:a8:31:b5:b0:8e:9e:
43:e2:45:17:a9:f4:08:e0:70:4f:1f:6b:74:29:af:03:ac:e2:
7b:2e:2e:1f:2a:a2:3c:c4:5c:8c:0c:d0:f3:4a:65:99:eb:46:
1e:f6:55:52:60:88:47:da:30:45:45:4f:34:db:f7:13:28:16:
14:26:00:7a:71:7b:69:30:b4:1f:01:f4:57:d6:72:fd:ea:bf:
10:55:39:e1:44:50:f2:cb:44:35:38:29:d9:e2:1b:ef:7c:84:
8b:74:ce:bc:bc:3c:6d:41:af:db:59:51:66:d9:f2:d2:8d:01:
ea:c2:aa:2a:83:65:3e:ab:08:b8:2e:a6:dd:35:31:ed:5f:b0:
75:99:24:6e:39:54:f6:8a:82:f1:83:01:42:31:b3:c1:f6:0d:
1e:85:f8:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu+gXW8UvbJjOsAluen2PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MzJkYThkNDU4ODQ5ZDVmNDBiYTZmMGI5MjA4Zjg1ODVk
OWUyM2UwHhcNMjUwODIzMDcwMTU4WhcNMjUwODI0MDcwMTU4WjAzMTEwLwYDVQQD
EyhiODlkODIwMzY5YjZjZTY5NDM2YzE0YzQ3NmZjZTQ2ZWJkNWIxZTJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscoxYbMB6ohkiUrPlCISqj8W64dM
O3r2owItW4YuuI3JP8jkbp8mLfvoML4sh9O0m+HvsBAVNOVvpswecFzGcgV3OahN
d5V9j9nBKMEOml6znVOqVUwdm0Ck4qSKIm6M8uKgZzb1/DIgLfrHkEOuKNfF8IB6
tLb4lirGCQvN4ZtUWU11xd2l8tIbBLo+DvmKvV4l/fddi4oKdAmgqb4PwNfxtXLa
zyq3b7KM2SII0BMh+4yG2x42OC6W9Xfz1zP9kklh+9HW6yi3UR0fu2eXovvDUI+Z
/65g5EkQLeaeTPUtwErh8GcoQJxhJNW/rEUOJ5OWZy64763m+NdGgpyPxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLidggNpts5pQ2wUxHb85G69Wx4rMB8GA1UdIwQY
MBaAFNgy2o1FiEnV9Aum8Lkgj4WF2eI+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkRMYWpVV0lTZFgwQzZid3VTQ1BoWVhaNGo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZDIxZWUtYTQ2MC00YzM5LTllNmYt
Yzk5Nzk1ZjM4ODVmLzEvMkRMYWpVV0lTZFgwQzZid3VTQ1BoWVhaNGo0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83ZDIxZWUtYTQ2MC00YzM5LTllNmYtYzk5Nzk1ZjM4ODVm
LzEvMkRMYWpVV0lTZFgwQzZid3VTQ1BoWVhaNGo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD5W+iMSy
6rn/lQCsV6ZHiItXc663l5PduC0Kvb4hFmPcJivEC3GX8OuLuQe2bpZ6QCdaoSL0
3QpVBmhURkCp1dlWGdgTVDLT2COn/rkqXh83LB69CWn8vkuHcTrFlIAK7a0BRcVC
qDG1sI6eQ+JFF6n0COBwTx9rdCmvA6ziey4uHyqiPMRcjAzQ80plmetGHvZVUmCI
R9owRUVPNNv3EygWFCYAenF7aTC0HwH0V9Zy/eq/EFU54URQ8stENTgp2eIb73yE
i3TOvLw8bUGv21lRZtny0o0B6sKqKoNlPqsIuC6m3TUx7V+wdZkkbjlU9oqC8YMB
QjGzwfYNHoX46w==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:25:04 2025 by rpki-client