Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
File: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft (raw, json)
Hash identifier: QY1hL06qdfdpebgkFXk0cKHWMeyLHGL7VH5Go6guH6I=
Subject key identifier: D5:E5:95:4B:D2:85:7E:3C:5A:BB:90:DF:25:D5:51:23:21:D8:AA:84
Authority key identifier: D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
Certificate issuer: /CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Certificate serial: 0198D5BB8F9335096D8693672A682374DA2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
Manifest number: 0D6B
Signing time: Sat 23 Aug 2025 07:01:35 +0000
Manifest this update: Sat 23 Aug 2025 07:01:35 +0000
Manifest next update: Sun 24 Aug 2025 07:01:35 +0000
Files and hashes: 1: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl (hash: 6a7+lhI2dD0lEXVoCuq11Ixx6o8JLKw8l1rKFgJmLhg=)
2: GhbIbk50hv6g93dh7hGhzK6K_74.roa (hash: nXi3Gj76e6GTyqlSijwexlGEZ4aKaxuj/QihrtfAHS8=)
3: R5r0xeVYQuyhFWywaHju63NvX88.roa (hash: gil6oFrijLp6JqgDOMjfduAOivvAur9Q9eunuVq1Ysg=)
4: TofwY-R4zO7hCFwhNRcFqFccDIA.roa (hash: CO89XYgmv4EUpm6JNaIOn/T7FUsKcLGJGFWRoloHQXo=)
5: kEveC8WkpMXtAhCjQYal_7N8cqU.roa (hash: 36t2IiG5a0ru6GNWxSIKI2twOH4WabuzXbDN7PDUMCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:8f:93:35:09:6d:86:93:67:2a:68:23:74:da:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Validity
Not Before: Aug 23 07:01:35 2025 GMT
Not After : Aug 24 07:01:35 2025 GMT
Subject: CN=d5e5954bd2857e3c5abb90df25d5512321d8aa84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2f:a1:b3:f7:66:43:68:55:4e:fd:99:a0:c6:
76:55:eb:97:7f:7c:e0:c0:6a:e9:c9:e7:db:a9:ae:
3a:d2:59:12:1e:62:93:f2:2f:1c:49:9e:ab:77:35:
cf:21:af:8b:58:91:c0:0e:6c:64:b1:3f:e1:52:30:
8f:ce:5e:ef:59:6c:54:e8:60:72:43:0a:16:21:df:
40:77:f4:42:32:1b:de:85:a5:f3:85:95:2d:b5:58:
70:2b:45:35:78:05:f1:dd:06:e1:70:1c:c8:47:24:
39:e2:17:bf:67:b9:bf:d7:18:e0:5a:6b:bb:29:f7:
85:be:59:dd:c8:d0:8c:44:2a:24:33:ad:ca:e9:dc:
9b:c3:eb:24:26:c9:d8:55:12:44:ea:3f:87:fd:65:
c8:9a:74:8c:46:8a:b0:9d:31:d7:e6:3c:79:da:97:
62:2a:4f:5a:fc:9c:92:54:48:3d:fd:3c:ca:15:53:
c4:b2:03:aa:24:c3:64:db:ec:1d:05:a5:36:95:24:
0b:33:54:27:f3:52:ec:f9:ff:2b:ac:0b:13:5b:34:
05:70:fa:b8:e4:2c:e5:7e:4f:10:84:db:34:c4:f1:
a1:9b:32:5a:ef:d4:ac:1f:5b:64:8c:eb:30:c6:22:
c8:17:23:8b:22:fc:9c:ef:2b:aa:9f:ea:a0:8e:38:
84:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E5:95:4B:D2:85:7E:3C:5A:BB:90:DF:25:D5:51:23:21:D8:AA:84
X509v3 Authority Key Identifier:
keyid:D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:ea:e2:2e:c3:0f:ec:ae:17:7b:81:06:2c:a9:3c:7e:54:7a:
a6:94:9b:74:28:09:c2:5d:82:13:2a:95:1a:0b:e5:40:7a:ad:
ab:b3:3d:3f:c1:55:e3:03:1b:14:f3:29:9f:0d:b0:7d:b0:52:
eb:87:d8:33:e6:f3:3c:f2:41:8a:07:74:1a:bf:67:9b:a8:80:
15:41:3b:b0:6d:9e:bd:50:bb:93:53:1d:e1:61:3d:6c:32:cc:
ce:b3:76:25:50:35:1e:66:1c:57:21:78:6a:19:44:d4:57:f5:
af:7a:e7:e0:ea:6c:20:72:16:2b:f9:0d:7c:ca:d3:d1:b7:eb:
78:a4:a0:4e:4f:f0:e0:fb:b9:8a:7e:37:11:e0:1a:e7:c1:b1:
8a:d2:c4:a3:3c:1d:df:41:fc:78:64:22:a5:0f:a6:85:ac:d5:
03:60:4d:fd:5e:cb:f9:b2:e9:9f:db:2f:f0:e1:b9:0a:79:40:
5e:d8:94:3b:49:3b:51:52:4b:9a:24:98:6a:b0:f7:fc:86:78:
87:c1:16:0c:9b:a6:1b:a3:5a:25:01:c4:4a:05:49:cc:6c:4a:
d9:50:bb:fa:bd:f1:45:77:f1:b5:e8:09:1d:84:3f:4c:ca:bb:
b9:ed:59:1e:0a:97:41:2c:5e:7c:2b:a9:3d:5c:89:a3:65:e2:
18:12:9e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:44:35 2025 by rpki-client