Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
File: 2dHiILYBtn_jDLt7fBvyL74i-08.mft (raw, json)
Hash identifier: yLHm+TxcKTfuKXC4qwiSKbTnVGpMAqYB1wArnHs7v8Y=
Subject key identifier: 67:04:53:48:06:6F:47:A1:89:18:D8:65:58:44:CC:2D:E5:8A:89:8E
Authority key identifier: D9:D1:E2:20:B6:01:B6:7F:E3:0C:BB:7B:7C:1B:F2:2F:BE:22:FB:4F
Certificate issuer: /CN=d9d1e220b601b67fe30cbb7b7c1bf22fbe22fb4f
Certificate serial: 0198D65F9B62DA7721C7BAFE007062029F65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
Manifest number: 0AD7
Signing time: Sat 23 Aug 2025 10:00:46 +0000
Manifest this update: Sat 23 Aug 2025 10:00:46 +0000
Manifest next update: Sun 24 Aug 2025 10:00:46 +0000
Files and hashes: 1: 2dHiILYBtn_jDLt7fBvyL74i-08.crl (hash: fNYkmD2zEc0nRJ3K7aCSI+s4gB23eWOOB5H9GDFd9Hg=)
2: jIeL0Ff1YswP2z65Y_1AGOy9fmw.roa (hash: OwVjmKWjz0aDaa4mX/kuMdsef7BkmTlqjQTaGRRWwQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:9b:62:da:77:21:c7:ba:fe:00:70:62:02:9f:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d1e220b601b67fe30cbb7b7c1bf22fbe22fb4f
Validity
Not Before: Aug 23 10:00:46 2025 GMT
Not After : Aug 24 10:00:46 2025 GMT
Subject: CN=67045348066f47a18918d8655844cc2de58a898e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b4:28:28:4c:6a:91:6f:69:7f:b4:ed:c6:25:
f1:df:11:df:10:dc:10:4b:fa:d6:3a:d3:02:92:fe:
98:50:f2:58:d1:d9:a0:7c:5e:e3:7f:ac:13:ce:2f:
f3:85:ef:04:09:4a:35:09:3f:d0:6c:d3:14:41:70:
42:cc:8d:51:25:19:01:82:2d:52:08:6f:e1:7f:cf:
19:7f:81:9c:07:c6:1a:3c:7b:84:08:26:52:65:76:
4a:d7:05:18:46:e4:07:01:9a:44:f0:56:e6:4b:3d:
49:28:1c:31:9f:66:55:67:71:10:52:20:46:47:15:
3c:5d:79:18:c9:ee:45:52:c7:7f:a3:f4:ec:f7:7c:
b2:fe:2a:f0:4f:d4:e6:7f:8c:96:4c:5d:50:37:b8:
69:ad:2b:5b:f0:51:02:32:75:be:05:3c:03:c2:bf:
58:06:47:fd:bc:c8:ad:07:ca:c2:db:77:ed:8b:a4:
f8:55:34:57:94:d4:1a:4c:39:64:07:51:17:a9:9a:
2f:30:85:b7:f9:6e:26:24:d3:08:90:26:89:e5:d3:
43:56:be:12:c6:cf:92:89:d6:c1:34:c6:71:ae:40:
33:de:51:5a:42:d9:f3:e4:1f:08:b7:49:69:1b:f6:
b1:b8:5d:0f:68:41:01:72:c4:a1:e6:dc:8e:a1:87:
0a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:04:53:48:06:6F:47:A1:89:18:D8:65:58:44:CC:2D:E5:8A:89:8E
X509v3 Authority Key Identifier:
keyid:D9:D1:E2:20:B6:01:B6:7F:E3:0C:BB:7B:7C:1B:F2:2F:BE:22:FB:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:08:ed:d6:4c:16:c9:c5:92:fc:d5:fc:7a:dc:bb:08:5a:10:
05:50:04:11:7b:2d:9e:3d:e1:bd:d7:3e:46:c3:e1:05:6b:eb:
cf:6b:58:96:c5:3a:25:07:0c:3e:47:18:51:ec:ae:84:e4:4b:
35:eb:49:f1:22:3f:ee:73:71:3c:1d:78:d2:a7:2c:78:ee:4f:
7e:d9:50:20:af:53:0b:b5:7e:62:bf:7c:f5:6b:ac:55:5f:18:
66:03:d8:bb:4b:28:15:3e:05:7c:a5:04:4d:54:0e:90:9f:95:
b7:9a:77:f3:00:27:72:e4:de:95:7d:5b:0a:aa:96:26:44:f8:
e5:be:c7:3a:b4:9d:b2:b6:53:4d:e4:c5:9d:c4:3f:17:e4:6e:
a9:c5:b3:5e:a0:06:19:dc:d1:77:a7:a5:02:74:f6:c5:72:eb:
2d:5a:12:a5:f5:61:23:b2:8b:cd:3c:7f:48:6f:c2:42:d4:50:
51:fb:50:2c:6c:79:93:7d:b8:7c:19:08:7b:4e:94:c8:49:ae:
10:f8:0b:a6:e6:d8:78:35:9b:01:4c:ef:96:32:b4:88:60:e2:
e1:65:10:37:00:d4:e0:ba:ff:91:c1:0c:68:ad:fc:05:4b:c7:
cf:e1:97:38:80:39:a5:ec:b2:1f:39:e9:1e:93:a9:aa:12:f1:
9a:21:28:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX5ti2nchx7r+AHBiAp9lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ZDFlMjIwYjYwMWI2N2ZlMzBjYmI3YjdjMWJmMjJmYmUy
MmZiNGYwHhcNMjUwODIzMTAwMDQ2WhcNMjUwODI0MTAwMDQ2WjAzMTEwLwYDVQQD
Eyg2NzA0NTM0ODA2NmY0N2ExODkxOGQ4NjU1ODQ0Y2MyZGU1OGE4OThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLQoKExqkW9pf7TtxiXx3xHfENwQ
S/rWOtMCkv6YUPJY0dmgfF7jf6wTzi/zhe8ECUo1CT/QbNMUQXBCzI1RJRkBgi1S
CG/hf88Zf4GcB8YaPHuECCZSZXZK1wUYRuQHAZpE8FbmSz1JKBwxn2ZVZ3EQUiBG
RxU8XXkYye5FUsd/o/Ts93yy/irwT9Tmf4yWTF1QN7hprStb8FECMnW+BTwDwr9Y
Bkf9vMitB8rC23fti6T4VTRXlNQaTDlkB1EXqZovMIW3+W4mJNMIkCaJ5dNDVr4S
xs+SidbBNMZxrkAz3lFaQtnz5B8It0lpG/axuF0PaEEBcsSh5tyOoYcKTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGcEU0gGb0ehiRjYZVhEzC3liomOMB8GA1UdIwQY
MBaAFNnR4iC2AbZ/4wy7e3wb8i++IvtPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmRIaUlMWUJ0bl9qREx0N2ZCdnlMNzRpLTA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC82NDExOWYtOTY4NC00Mjg0LWIyMzIt
YWYyN2Q3Y2ExYmY2LzEvMmRIaUlMWUJ0bl9qREx0N2ZCdnlMNzRpLTA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC82NDExOWYtOTY4NC00Mjg0LWIyMzItYWYyN2Q3Y2ExYmY2
LzEvMmRIaUlMWUJ0bl9qREx0N2ZCdnlMNzRpLTA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYwjt1kwW
ycWS/NX8ety7CFoQBVAEEXstnj3hvdc+RsPhBWvrz2tYlsU6JQcMPkcYUeyuhORL
NetJ8SI/7nNxPB140qcseO5PftlQIK9TC7V+Yr989WusVV8YZgPYu0soFT4FfKUE
TVQOkJ+Vt5p38wAncuTelX1bCqqWJkT45b7HOrSdsrZTTeTFncQ/F+RuqcWzXqAG
GdzRd6elAnT2xXLrLVoSpfVhI7KLzTx/SG/CQtRQUftQLGx5k324fBkIe06UyEmu
EPgLpubYeDWbAUzvljK0iGDi4WUQNwDU4Lr/kcEMaK38BUvHz+GXOIA5peyyHznp
HpOpqhLxmiEoHw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:23:51 2025 by rpki-client