Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
File: 2dHiILYBtn_jDLt7fBvyL74i-08.mft (raw, json)
Hash identifier: hCvPuJlbAhZ+nDECkR0xgHbGM7Tm3TObLICcO5ohzxA=
Subject key identifier: 2C:CD:8F:D6:76:C6:9B:D0:7D:BF:00:14:CC:59:08:3C:80:AF:4C:9B
Authority key identifier: D9:D1:E2:20:B6:01:B6:7F:E3:0C:BB:7B:7C:1B:F2:2F:BE:22:FB:4F
Certificate issuer: /CN=d9d1e220b601b67fe30cbb7b7c1bf22fbe22fb4f
Certificate serial: 0199FBEB433EE95B49F2A708B15947E649FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
Manifest number: 0B6F
Signing time: Sun 19 Oct 2025 10:02:03 +0000
Manifest this update: Sun 19 Oct 2025 10:02:03 +0000
Manifest next update: Mon 20 Oct 2025 10:02:03 +0000
Files and hashes: 1: 2dHiILYBtn_jDLt7fBvyL74i-08.crl (hash: CsyX8Y0JaEHDqvX+o+A0ZOru031j8CE9yWz7BnuxBeM=)
2: jIeL0Ff1YswP2z65Y_1AGOy9fmw.roa (hash: OwVjmKWjz0aDaa4mX/kuMdsef7BkmTlqjQTaGRRWwQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:43:3e:e9:5b:49:f2:a7:08:b1:59:47:e6:49:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d1e220b601b67fe30cbb7b7c1bf22fbe22fb4f
Validity
Not Before: Oct 19 10:02:03 2025 GMT
Not After : Oct 20 10:02:03 2025 GMT
Subject: CN=2ccd8fd676c69bd07dbf0014cc59083c80af4c9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1f:e1:0e:3f:13:27:c2:fd:11:cc:16:d1:4a:
87:63:00:3c:26:19:68:2d:58:83:98:13:3b:9a:4c:
19:64:77:cd:65:1e:e0:b0:b4:ee:3a:c4:0c:ae:56:
4b:99:f4:5e:dd:3a:3f:00:cf:12:af:1c:37:ca:4e:
0a:ab:00:63:79:cf:b0:95:38:3c:c0:70:5b:0a:fd:
d2:83:de:de:5a:1c:a0:ec:dd:34:5d:c7:c6:0c:e5:
a3:b4:79:22:fc:37:0d:57:49:8b:df:ce:b7:c5:e0:
62:9c:48:3f:d9:7f:f6:22:9e:3a:43:9b:58:d2:64:
88:90:09:62:49:22:27:1b:56:f2:d9:df:9c:0d:d1:
1f:ad:46:92:83:51:bb:de:52:3c:a5:99:13:52:8a:
cb:85:92:21:8e:e4:a2:80:b1:9d:63:b1:5b:0e:f5:
78:0a:e4:f4:ea:f1:0a:7b:b7:37:f9:20:bc:74:33:
10:94:a6:f6:d4:ba:29:99:13:58:6f:d5:7c:b8:08:
3f:0d:f3:7b:52:88:06:8c:ae:ae:bf:16:93:0e:7e:
f4:d2:dd:83:88:56:fe:9a:7c:6b:c7:fa:4e:9c:d6:
88:0e:51:d4:c7:bd:61:00:48:26:70:94:dc:05:c8:
a6:41:87:39:f4:98:31:ad:67:d3:3c:7c:56:46:99:
f9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:CD:8F:D6:76:C6:9B:D0:7D:BF:00:14:CC:59:08:3C:80:AF:4C:9B
X509v3 Authority Key Identifier:
keyid:D9:D1:E2:20:B6:01:B6:7F:E3:0C:BB:7B:7C:1B:F2:2F:BE:22:FB:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dHiILYBtn_jDLt7fBvyL74i-08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/64119f-9684-4284-b232-af27d7ca1bf6/1/2dHiILYBtn_jDLt7fBvyL74i-08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:bc:b8:4f:a0:39:a1:6d:10:71:5e:00:62:8b:4d:8b:6d:5a:
07:57:a4:60:00:6d:1b:43:79:64:49:0b:79:f5:d0:c9:f9:ad:
7d:2c:b1:e2:b3:51:71:e0:c8:72:84:e3:69:6c:a5:94:9e:63:
bc:49:93:a8:4a:37:72:54:fe:7d:03:4f:42:41:9e:2f:2c:2d:
04:53:4a:6a:7d:ee:7a:0b:78:3c:65:46:20:9b:9c:89:77:76:
d8:10:d1:c2:f7:a8:d9:19:80:04:5f:47:9b:84:61:e1:d7:21:
09:64:1c:58:78:c5:14:b2:6f:3e:c6:81:40:d1:94:02:b8:fb:
4b:df:f2:50:da:5d:33:fc:28:7e:32:0f:5d:a2:41:13:e1:2e:
da:ea:f0:ab:2f:e8:c2:e4:fb:a9:0a:d0:ea:f0:e2:12:94:7b:
71:a6:82:1c:76:4a:d1:25:64:bd:ad:cf:49:33:47:0c:a4:f6:
aa:3d:bc:ca:e9:b3:77:09:0f:25:b6:59:2c:e2:68:d9:ff:db:
45:13:23:3c:a3:2e:ec:07:a0:d5:72:c1:cf:54:f7:ec:f0:19:
db:7e:f7:11:e7:9d:63:3e:cf:b5:be:51:57:43:24:b2:e8:50:
23:e2:6e:2d:9d:d0:62:16:48:6e:e1:3c:32:4e:04:1e:00:e5:
eb:22:fc:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:44 2025 by rpki-client