Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
File: 2q_pD50IEzTMko7e6bxzFUBwjf0.mft (raw, json)
Hash identifier: OWne2vNBZQlSzt4oplQWoqBjIhPTQC8O0wgDeRiL9do=
Subject key identifier: 2B:58:3D:49:C6:35:A8:F3:39:7F:ED:1D:1E:94:83:9F:3E:15:E9:45
Authority key identifier: DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
Certificate issuer: /CN=daafe90f9d081334cc928edee9bc731540708dfd
Certificate serial: 0198D472CE03AB5967E8C89FB7F87F20E290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
Manifest number: 099E
Signing time: Sat 23 Aug 2025 01:02:30 +0000
Manifest this update: Sat 23 Aug 2025 01:02:30 +0000
Manifest next update: Sun 24 Aug 2025 01:02:30 +0000
Files and hashes: 1: 2q_pD50IEzTMko7e6bxzFUBwjf0.crl (hash: ytBEyytuzvTtospj5FUTRk2HFZtiPz6acITHai7NVas=)
2: ptCjyawSJ9frfP9fH_ikMswCnsI.roa (hash: qlAjQ7L6msxhMlwj1dEaHE32m8HH4N1buR0Bga+2/Qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:ce:03:ab:59:67:e8:c8:9f:b7:f8:7f:20:e2:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daafe90f9d081334cc928edee9bc731540708dfd
Validity
Not Before: Aug 23 01:02:30 2025 GMT
Not After : Aug 24 01:02:30 2025 GMT
Subject: CN=2b583d49c635a8f3397fed1d1e94839f3e15e945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:23:ac:07:5b:70:8f:4f:74:50:7f:6b:97:75:
20:a4:3c:ac:cb:cd:79:76:cd:83:ed:81:51:88:33:
50:c2:ea:80:e4:74:08:47:6b:11:c0:c7:2d:2a:cc:
bf:7d:37:31:19:50:bd:5e:c4:14:69:41:a4:93:49:
99:6d:6e:58:21:1b:3b:1c:44:78:28:06:26:62:d4:
98:b8:0e:36:8b:9e:a2:9a:d2:ca:9d:bf:f1:af:c1:
d9:71:ff:ba:a2:86:6a:f0:31:9a:1f:95:88:32:8a:
e3:26:05:76:a5:a9:52:18:74:3b:ab:84:52:2d:50:
85:36:33:9b:f6:34:77:c4:5a:a2:f8:83:da:00:88:
be:96:ec:d1:a1:9e:15:51:ed:ab:ee:d0:74:4c:60:
7f:86:b8:05:b1:93:7e:06:6d:6d:88:b0:c4:0a:14:
cd:d5:9d:fd:5f:24:55:b5:e8:9b:0f:57:5a:ec:63:
e3:0b:bc:49:c3:3d:85:80:d3:96:1a:09:2b:a3:70:
65:0c:67:4d:89:67:02:42:02:63:5f:ca:4c:06:95:
2b:6d:78:5f:7e:a8:dc:12:d4:17:95:86:83:8c:f1:
bd:8f:bf:d7:f6:34:48:30:74:eb:1c:c7:cb:7b:aa:
ed:85:97:84:25:22:c0:4a:25:09:8e:48:50:62:f0:
40:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:58:3D:49:C6:35:A8:F3:39:7F:ED:1D:1E:94:83:9F:3E:15:E9:45
X509v3 Authority Key Identifier:
keyid:DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:82:94:8c:a5:b4:df:a1:18:a6:ba:73:17:5b:4b:19:1e:85:
4e:9d:08:ec:29:e4:f4:1f:98:20:51:56:14:dc:23:8e:e3:91:
a7:3d:dd:e0:4e:b2:39:46:10:0b:03:ee:20:71:2b:c7:23:b4:
ea:8d:9b:e8:ca:9f:fb:31:eb:d0:e7:5d:7f:e3:f1:85:7e:ea:
98:63:3b:35:af:90:de:70:c1:00:ee:36:9f:82:53:50:69:69:
85:40:0b:7b:71:82:e2:36:b6:2b:eb:50:42:30:d4:e7:d3:f8:
42:88:52:f9:93:a4:3e:b9:a6:28:d8:b6:05:25:f6:3a:13:34:
91:3b:fc:3e:fb:a0:df:4e:de:21:96:de:35:cf:1d:b8:ec:af:
88:43:2f:f7:ab:4f:1a:56:34:98:15:d3:71:1d:6e:83:2c:a0:
5e:1f:bb:3e:9b:35:23:59:81:89:cb:2c:e0:bb:f8:2f:de:15:
be:79:99:28:0a:28:f6:5b:96:f2:ba:4f:27:31:b6:37:5d:23:
fa:62:a7:49:ba:0a:5f:03:f1:94:dc:a5:9d:27:ca:e4:6f:77:
dc:ad:73:92:49:32:64:e5:a6:9d:14:4f:49:3b:29:e7:40:92:
2d:76:e2:2a:be:7a:5f:f4:86:e2:66:fb:8a:88:8b:01:f7:25:
09:ba:85:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcs4Dq1ln6Mift/h/IOKQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYWZlOTBmOWQwODEzMzRjYzkyOGVkZWU5YmM3MzE1NDA3
MDhkZmQwHhcNMjUwODIzMDEwMjMwWhcNMjUwODI0MDEwMjMwWjAzMTEwLwYDVQQD
EygyYjU4M2Q0OWM2MzVhOGYzMzk3ZmVkMWQxZTk0ODM5ZjNlMTVlOTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoCOsB1twj090UH9rl3UgpDysy815
ds2D7YFRiDNQwuqA5HQIR2sRwMctKsy/fTcxGVC9XsQUaUGkk0mZbW5YIRs7HER4
KAYmYtSYuA42i56imtLKnb/xr8HZcf+6ooZq8DGaH5WIMorjJgV2palSGHQ7q4RS
LVCFNjOb9jR3xFqi+IPaAIi+luzRoZ4VUe2r7tB0TGB/hrgFsZN+Bm1tiLDEChTN
1Z39XyRVteibD1da7GPjC7xJwz2FgNOWGgkro3BlDGdNiWcCQgJjX8pMBpUrbXhf
fqjcEtQXlYaDjPG9j7/X9jRIMHTrHMfLe6rthZeEJSLASiUJjkhQYvBA7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCtYPUnGNajzOX/tHR6Ug58+FelFMB8GA1UdIwQY
MBaAFNqv6Q+dCBM0zJKO3um8cxVAcI39MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnFfcEQ1MElFelRNa283ZTZieHpGVUJ3amYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84YmIzYzEtMTk5ZC00NDliLWFjNDYt
YmJkOTJjY2FmYTg4LzEvMnFfcEQ1MElFelRNa283ZTZieHpGVUJ3amYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS84YmIzYzEtMTk5ZC00NDliLWFjNDYtYmJkOTJjY2FmYTg4
LzEvMnFfcEQ1MElFelRNa283ZTZieHpGVUJ3amYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhYKUjKW0
36EYprpzF1tLGR6FTp0I7Cnk9B+YIFFWFNwjjuORpz3d4E6yOUYQCwPuIHErxyO0
6o2b6Mqf+zHr0Oddf+PxhX7qmGM7Na+Q3nDBAO42n4JTUGlphUALe3GC4ja2K+tQ
QjDU59P4QohS+ZOkPrmmKNi2BSX2OhM0kTv8Pvug307eIZbeNc8duOyviEMv96tP
GlY0mBXTcR1ugyygXh+7Pps1I1mBicss4Lv4L94VvnmZKAoo9luW8rpPJzG2N10j
+mKnSboKXwPxlNylnSfK5G933K1zkkkyZOWmnRRPSTsp50CSLXbiKr56X/SG4mb7
ioiLAfclCbqF+Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:40 2025 by rpki-client