Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
File: 2nGl-6KA1tAY7MOp1-WMPGEeav0.mft (raw, json)
Hash identifier: PehSn6XAv6dKXArlOiTpw1JwO/XJ4sRjavscxtuvpuo=
Subject key identifier: B3:6E:0C:D8:6F:AD:09:0C:46:DD:4D:B2:A5:9A:00:EB:35:4F:FF:EE
Authority key identifier: DA:71:A5:FB:A2:80:D6:D0:18:EC:C3:A9:D7:E5:8C:3C:61:1E:6A:FD
Certificate issuer: /CN=da71a5fba280d6d018ecc3a9d7e58c3c611e6afd
Certificate serial: 0198D65F590074F0F01673541F1447A05E77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nGl-6KA1tAY7MOp1-WMPGEeav0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 10:00:29 +0000
Manifest this update: Sat 23 Aug 2025 10:00:29 +0000
Manifest next update: Sun 24 Aug 2025 10:00:29 +0000
Files and hashes: 1: 2nGl-6KA1tAY7MOp1-WMPGEeav0.crl (hash: ufrNj9kO8vrynvWN26kcHaE2KS4Q/H4koX97WIzMK8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nGl-6KA1tAY7MOp1-WMPGEeav0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:59:00:74:f0:f0:16:73:54:1f:14:47:a0:5e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da71a5fba280d6d018ecc3a9d7e58c3c611e6afd
Validity
Not Before: Aug 23 10:00:29 2025 GMT
Not After : Aug 24 10:00:29 2025 GMT
Subject: CN=b36e0cd86fad090c46dd4db2a59a00eb354fffee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:cb:4d:33:8f:43:52:46:60:b2:a7:0e:53:80:
73:ba:8e:2c:95:f3:91:80:18:f6:84:2a:9f:34:2e:
57:38:58:a3:b4:29:23:a7:1f:72:49:39:fc:61:df:
d8:70:a0:3f:f7:4d:4e:63:22:19:9a:55:d4:7c:73:
0b:5d:f5:75:3e:26:8d:4d:56:80:c2:82:73:a8:3d:
82:1a:d7:21:21:1f:6b:5b:f4:70:65:10:20:5c:2c:
5c:fa:8b:63:46:57:5d:2c:d1:c2:47:0e:e2:d3:9a:
52:aa:cc:aa:78:79:19:09:e1:f3:67:ba:98:a2:b2:
aa:1a:7a:3d:2a:17:78:ac:d6:c2:53:78:e0:23:82:
fc:15:73:44:3c:6f:30:13:e8:d9:dd:86:de:0e:1d:
9e:c3:35:fb:67:08:c1:09:32:af:18:08:07:71:84:
77:fe:6c:c5:7b:21:02:2e:29:cf:4f:0d:f5:67:5e:
a8:f0:2a:85:03:16:ea:cd:cf:59:13:49:ec:be:fb:
2b:c4:98:fd:27:ae:dc:3d:1b:d0:0d:25:a7:60:71:
8d:bb:e2:ed:ae:c1:f3:54:3f:a8:d4:7d:85:aa:45:
de:a4:9a:e5:eb:c5:d5:e7:97:46:00:d3:12:49:11:
66:47:fe:ea:19:af:37:e3:31:6b:bd:21:ac:79:d3:
a9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:6E:0C:D8:6F:AD:09:0C:46:DD:4D:B2:A5:9A:00:EB:35:4F:FF:EE
X509v3 Authority Key Identifier:
keyid:DA:71:A5:FB:A2:80:D6:D0:18:EC:C3:A9:D7:E5:8C:3C:61:1E:6A:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nGl-6KA1tAY7MOp1-WMPGEeav0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:9c:eb:4c:5f:51:e0:a5:57:b8:2f:29:82:71:93:08:a1:88:
f9:90:8d:57:43:6d:9a:6c:d1:4d:f4:a8:2d:dd:26:ff:d6:2d:
e0:a0:74:6e:3c:82:2e:c5:07:37:c9:9e:d3:e7:27:71:96:fc:
90:23:1f:ad:cf:56:4b:f2:72:61:c5:d8:d0:96:6c:79:b2:f9:
4c:94:10:23:76:e4:ee:1a:64:9f:29:f3:7c:4b:25:86:08:81:
c0:ff:07:d6:c1:25:f5:68:fa:1c:ce:d9:2f:a4:66:92:ce:3d:
e3:f8:96:3f:dd:bc:d0:8f:86:9d:55:37:ae:91:03:96:f1:31:
1f:37:bd:c9:4f:e3:c3:82:84:c0:e4:a7:e1:85:c9:32:52:6b:
47:1a:3c:b2:67:b7:e5:e5:8e:d4:34:13:ba:3c:34:1d:fa:ba:
a1:a9:55:ab:ed:eb:2a:b8:4b:a3:67:9c:85:f8:a4:25:37:a1:
8b:bf:a5:25:6d:0c:4c:83:db:60:b6:f9:f4:b9:3c:1f:d7:d2:
7d:d6:fe:d7:d7:42:c8:7e:36:98:18:c5:fd:95:0f:f7:4f:a6:
f5:e8:b2:76:3d:8f:77:e6:80:1f:a7:09:73:e4:6a:34:67:e5:
16:23:c6:63:db:ed:ee:8b:f3:ba:aa:45:e5:e2:97:c3:05:09:
c9:a7:76:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:35:40 2025 by rpki-client