Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft
File: g2pzvtdapO-ld-2QrTVi4hlR0bI.mft (raw, json)
Hash identifier: mSl61nUCqBwiNG1/2EHmrLnYibLpM/zF2JOvPnp7u9I=
Subject key identifier: 93:6A:72:95:B8:2A:CB:22:9F:E9:0A:31:86:12:CB:33:27:2E:AB:3F
Authority key identifier: 83:6A:73:BE:D7:5A:A4:EF:A5:77:ED:90:AD:35:62:E2:19:51:D1:B2
Certificate issuer: /CN=836a73bed75aa4efa577ed90ad3562e21951d1b2
Certificate serial: 0198D5F149D263D23DCFF13ACD305CC6C392
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft
Manifest number: 1450
Signing time: Sat 23 Aug 2025 08:00:16 +0000
Manifest this update: Sat 23 Aug 2025 08:00:16 +0000
Manifest next update: Sun 24 Aug 2025 08:00:16 +0000
Files and hashes: 1: g2pzvtdapO-ld-2QrTVi4hlR0bI.crl (hash: nd7WykzRpigYtKGtO/yXBVq6G3b+5F9GXiLz/MkyLHY=)
2: pCExSDuPpylceZEh-3ghVJcWtXU.roa (hash: EmDT0awECjqFFQZyEcdl/Y2PrhZj4pSyXOCLhHqwv2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft
rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:49:d2:63:d2:3d:cf:f1:3a:cd:30:5c:c6:c3:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=836a73bed75aa4efa577ed90ad3562e21951d1b2
Validity
Not Before: Aug 23 08:00:16 2025 GMT
Not After : Aug 24 08:00:16 2025 GMT
Subject: CN=936a7295b82acb229fe90a318612cb33272eab3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9f:42:79:6c:b1:ad:25:03:74:be:9d:86:8d:
06:d2:fa:fb:35:0c:49:0f:d3:61:55:8b:7d:96:62:
62:09:f0:d8:52:b4:5d:8c:af:92:7b:15:13:bb:30:
24:36:4b:04:9c:a4:b2:87:73:0d:4d:58:ae:1b:df:
9f:d5:24:7d:e9:43:9d:a1:95:3f:c9:24:d2:8c:8b:
2a:aa:37:df:bf:75:05:3d:0f:06:27:7e:44:68:c1:
2b:29:96:e2:6d:96:00:49:ff:ca:c6:94:7b:c8:88:
96:79:46:61:5a:3f:61:d8:76:5e:3b:dc:3e:73:23:
17:f5:3b:25:9f:f3:d6:17:27:8d:1c:7f:b2:18:81:
f7:84:9b:9c:3c:44:e0:67:21:30:b8:32:b7:42:70:
a5:bd:19:c1:59:bc:7e:97:30:98:7c:76:7e:4f:24:
56:d1:5f:66:8b:6b:eb:e6:c7:48:a9:c4:dc:5a:34:
72:fb:ae:29:66:5f:ba:71:c1:7f:c5:27:93:56:9a:
12:29:be:93:4a:0a:42:a3:c5:f3:57:30:a8:8d:3e:
e0:87:78:5a:5d:72:5e:9e:08:d8:99:78:06:14:a3:
27:0b:c5:a8:59:64:15:3f:54:59:89:d5:61:46:dc:
6f:6b:0c:03:b4:bc:1c:83:9a:6f:3b:86:4d:de:20:
a8:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:6A:72:95:B8:2A:CB:22:9F:E9:0A:31:86:12:CB:33:27:2E:AB:3F
X509v3 Authority Key Identifier:
keyid:83:6A:73:BE:D7:5A:A4:EF:A5:77:ED:90:AD:35:62:E2:19:51:D1:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:7c:d9:04:e7:9f:60:de:db:13:da:86:71:f5:73:c3:3e:c2:
ff:f2:89:da:4d:45:23:72:41:d3:a8:19:e9:2c:d2:a3:66:89:
22:9a:ed:49:4e:47:b9:7a:8b:fb:0d:07:b1:9f:12:38:2c:93:
9e:8e:74:0a:a9:54:4e:a4:32:8e:2f:62:af:46:5a:86:77:5a:
19:28:ad:b1:a4:76:1d:1e:ba:ba:b0:9b:29:49:0a:c4:7b:9c:
f4:00:b9:e8:38:72:fc:8b:60:f0:50:a4:d7:36:c9:22:ee:3c:
86:9e:68:4a:58:e5:e1:9f:83:31:41:87:20:ae:30:69:e4:8e:
0b:c0:c5:bb:8c:82:d4:5e:93:6a:9b:b4:99:83:97:8d:5b:60:
2b:16:ac:91:b3:16:4d:9f:b7:fe:72:c9:40:c0:24:62:70:e3:
e4:c2:2c:56:46:29:28:c8:78:a8:d1:08:bb:ac:a5:f9:c0:48:
9a:d6:ed:91:b0:42:58:ec:17:fa:2c:bc:77:82:92:36:23:7f:
e4:54:d8:96:4a:8f:64:16:0d:4f:c2:6d:54:9e:23:d8:e5:c2:
63:0b:f4:1a:19:08:ed:af:f4:bd:8d:44:c6:94:1f:b5:24:e0:
4f:41:53:21:3a:9c:46:74:2a:df:61:c0:12:01:ad:7b:48:cc:
3c:f3:7c:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:39:33 2025 by rpki-client