Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
File: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft (raw, json)
Hash identifier: lVmFS7YFbjhII23K/3Jgk6kylu4zJCHHqakPie/CcRI=
Subject key identifier: 53:48:D1:91:C7:94:F7:5B:54:D0:8A:44:C3:7B:30:FE:30:4A:1E:56
Authority key identifier: D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
Certificate issuer: /CN=d908722a7555dd1621dd6a62209fa8da52942999
Certificate serial: 0198D515EBCDF127921EBB9D9BE60AB39BB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
Manifest number: 14D3
Signing time: Sat 23 Aug 2025 04:00:40 +0000
Manifest this update: Sat 23 Aug 2025 04:00:40 +0000
Manifest next update: Sun 24 Aug 2025 04:00:40 +0000
Files and hashes: 1: 2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl (hash: pFds+LzPa9WuzJRq0p9rbTZO7oBsMSonYQd8ThZ6eZs=)
2: Y5hh8AgGKAUf_2S15Xwk_892p60.roa (hash: baZuJeVmztFazA/spLlePhpdINyXpI1DJgHdXLAL5/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:eb:cd:f1:27:92:1e:bb:9d:9b:e6:0a:b3:9b:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d908722a7555dd1621dd6a62209fa8da52942999
Validity
Not Before: Aug 23 04:00:40 2025 GMT
Not After : Aug 24 04:00:40 2025 GMT
Subject: CN=5348d191c794f75b54d08a44c37b30fe304a1e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:84:7c:37:01:0e:a7:96:86:ad:e9:f1:d0:66:
77:c6:f4:d1:60:50:44:69:60:3a:b5:6e:f1:01:fb:
62:08:89:07:66:e6:85:d4:4d:05:55:89:de:e0:f7:
94:c4:fe:43:ed:da:12:56:77:cc:e5:e9:bc:93:fb:
48:db:d4:6f:dc:00:a6:a3:ab:f8:9d:10:55:bf:65:
fb:52:72:72:b2:90:4b:d1:28:8d:cd:d5:e3:6e:a6:
d1:a8:db:4b:1f:f3:7d:75:a2:45:43:e5:6f:4c:dc:
58:ac:c0:2b:be:61:83:7c:c7:28:80:b3:6f:1c:42:
92:97:af:31:58:07:3d:5b:75:f1:d1:b6:b3:48:55:
a5:c8:38:f5:ee:8f:37:2d:12:d5:f4:7d:d5:ff:c4:
da:90:33:de:2a:b5:33:b9:60:a7:1d:51:b7:49:ab:
47:00:40:d5:f3:66:fa:2f:02:e4:7a:2c:78:3a:4b:
d4:cc:51:16:0f:97:af:e7:c6:57:be:ea:98:ed:fc:
92:34:01:38:b3:99:e0:77:39:cb:11:87:fc:5d:95:
07:f2:4a:8e:22:2e:a6:e9:cd:01:69:b2:17:f5:3a:
f4:b3:08:7d:fe:4a:68:f0:94:65:cd:68:f2:0c:fb:
78:68:2a:76:bd:70:a9:55:0f:5f:84:88:12:30:13:
02:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:48:D1:91:C7:94:F7:5B:54:D0:8A:44:C3:7B:30:FE:30:4A:1E:56
X509v3 Authority Key Identifier:
keyid:D9:08:72:2A:75:55:DD:16:21:DD:6A:62:20:9F:A8:DA:52:94:29:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0866b0-fe6b-466f-bb86-2d9fca662e52/1/2QhyKnVV3RYh3WpiIJ-o2lKUKZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:ac:f8:22:75:f5:ef:5a:56:ee:2b:56:d0:49:8a:d6:31:85:
fe:b9:1b:eb:d7:a3:dd:bb:86:30:2c:cd:90:78:0e:6c:e9:0e:
6f:59:c7:20:c2:ab:61:63:6d:04:b9:7f:a7:3d:55:a1:15:ae:
25:f4:f4:8c:25:19:f1:40:3e:11:f7:0d:21:43:f7:6f:11:b7:
bc:f9:5b:1f:72:58:26:bd:7e:c1:2a:b1:1f:2e:fb:2f:2b:e7:
f1:81:c3:e9:64:09:55:24:e6:4a:f4:2c:8a:b4:e0:c9:03:b6:
9d:6e:ae:45:2d:9a:4e:f3:21:e5:2b:3f:74:45:09:50:b6:93:
d2:94:d4:fd:58:3b:c1:db:28:78:3f:d6:de:43:3d:92:c7:96:
3f:b1:de:2c:b0:4a:fe:e5:54:9f:99:58:4b:7f:c3:20:ec:12:
ed:32:42:33:0b:8e:c4:f7:b8:9f:8f:9c:2c:6a:76:ed:bd:86:
0c:4d:66:7a:1d:16:5a:5a:c5:3a:57:7e:67:1c:20:59:99:72:
75:0f:f0:66:c2:d7:76:3b:47:87:54:50:16:66:93:ba:18:eb:
ff:12:47:8a:de:c8:d7:3d:8d:c5:7b:e2:c2:28:02:2d:5a:80:
c0:cb:0e:61:19:dd:b1:e3:e2:cc:f5:58:89:aa:a2:ca:9a:c0:
31:6b:93:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFevN8SeSHrudm+YKs5uxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5MDg3MjJhNzU1NWRkMTYyMWRkNmE2MjIwOWZhOGRhNTI5
NDI5OTkwHhcNMjUwODIzMDQwMDQwWhcNMjUwODI0MDQwMDQwWjAzMTEwLwYDVQQD
Eyg1MzQ4ZDE5MWM3OTRmNzViNTRkMDhhNDRjMzdiMzBmZTMwNGExZTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkIR8NwEOp5aGrenx0GZ3xvTRYFBE
aWA6tW7xAftiCIkHZuaF1E0FVYne4PeUxP5D7doSVnfM5em8k/tI29Rv3ACmo6v4
nRBVv2X7UnJyspBL0SiNzdXjbqbRqNtLH/N9daJFQ+VvTNxYrMArvmGDfMcogLNv
HEKSl68xWAc9W3Xx0bazSFWlyDj17o83LRLV9H3V/8TakDPeKrUzuWCnHVG3SatH
AEDV82b6LwLkeix4OkvUzFEWD5ev58ZXvuqY7fySNAE4s5ngdznLEYf8XZUH8kqO
Ii6m6c0BabIX9Tr0swh9/kpo8JRlzWjyDPt4aCp2vXCpVQ9fhIgSMBMCLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFNI0ZHHlPdbVNCKRMN7MP4wSh5WMB8GA1UdIwQY
MBaAFNkIcip1Vd0WId1qYiCfqNpSlCmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8wODY2YjAtZmU2Yi00NjZmLWJiODYt
MmQ5ZmNhNjYyZTUyLzEvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8wODY2YjAtZmU2Yi00NjZmLWJiODYtMmQ5ZmNhNjYyZTUy
LzEvMlFoeUtuVlYzUlloM1dwaUlKLW8ybEtVS1prLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApaz4InX1
71pW7itW0EmK1jGF/rkb69ej3buGMCzNkHgObOkOb1nHIMKrYWNtBLl/pz1VoRWu
JfT0jCUZ8UA+EfcNIUP3bxG3vPlbH3JYJr1+wSqxHy77Lyvn8YHD6WQJVSTmSvQs
irTgyQO2nW6uRS2aTvMh5Ss/dEUJULaT0pTU/Vg7wdsoeD/W3kM9kseWP7HeLLBK
/uVUn5lYS3/DIOwS7TJCMwuOxPe4n4+cLGp27b2GDE1meh0WWlrFOld+ZxwgWZly
dQ/wZsLXdjtHh1RQFmaTuhjr/xJHit7I1z2NxXviwigCLVqAwMsOYRndsePizPVY
iaqiyprAMWuTMw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:23:24 2025 by rpki-client