Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft
File: 2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft (raw, json)
Hash identifier: OoOCzVrC+1lMRvndDyXqFLJ1b/iUYqH9BvjdAt7AM8Q=
Subject key identifier: 01:F8:A6:00:75:DB:0E:0C:B6:CF:B8:1D:35:84:5B:17:9A:AC:63:55
Authority key identifier: D8:68:2D:2C:CA:D4:E4:1A:55:20:94:97:EE:0F:E2:7F:39:01:BB:51
Certificate issuer: /CN=d8682d2ccad4e41a55209497ee0fe27f3901bb51
Certificate serial: 0198D583806F9E54CD3643A01005FB785A21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GgtLMrU5BpVIJSX7g_ifzkBu1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft
Manifest number: E6
Signing time: Sat 23 Aug 2025 06:00:21 +0000
Manifest this update: Sat 23 Aug 2025 06:00:21 +0000
Manifest next update: Sun 24 Aug 2025 06:00:21 +0000
Files and hashes: 1: 2GgtLMrU5BpVIJSX7g_ifzkBu1E.crl (hash: pGlgac126MrM5plfqdzRcmnD5Gf12jb5o5qgb2gIMf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GgtLMrU5BpVIJSX7g_ifzkBu1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:80:6f:9e:54:cd:36:43:a0:10:05:fb:78:5a:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8682d2ccad4e41a55209497ee0fe27f3901bb51
Validity
Not Before: Aug 23 06:00:21 2025 GMT
Not After : Aug 24 06:00:21 2025 GMT
Subject: CN=01f8a60075db0e0cb6cfb81d35845b179aac6355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:35:4f:32:a6:14:e1:dd:5b:03:e2:f1:99:e2:
9c:07:ab:3b:3e:a0:06:be:eb:18:24:1d:ca:b5:cf:
49:cc:b8:b8:07:3b:f1:ed:2d:52:f5:f4:85:fe:3d:
79:74:25:c8:c3:fc:eb:a7:20:d6:66:f6:94:e3:12:
fe:93:de:01:76:3f:31:92:2c:b2:ee:c7:10:bc:cc:
6b:ea:b9:f4:3a:3b:d3:16:60:3d:21:1c:b3:b0:51:
cc:31:4b:44:1b:cd:90:91:bb:a6:79:1b:ee:65:a9:
8c:da:ac:9e:1c:62:7b:86:ca:83:b1:a3:c9:d3:19:
2e:b7:34:ab:ab:0b:70:52:3d:89:e2:c7:1a:9a:03:
a3:e7:d2:6e:0c:2f:73:b0:a0:f0:1d:78:ee:f0:e9:
67:c6:f9:0b:ef:9f:b1:f3:27:30:4f:ba:e8:ef:6a:
96:05:8c:da:b7:69:dc:5b:66:71:30:1f:17:dc:db:
6e:42:59:f6:4c:c6:36:c4:a1:d0:01:66:17:fb:5c:
f4:de:6e:ff:72:dd:0b:d6:d6:37:f8:53:02:6d:25:
f7:1d:a3:59:41:01:24:1a:0a:8e:7f:c1:92:c2:9d:
a1:a9:50:ae:69:b7:20:35:1d:ce:9a:53:cd:ac:80:
28:f4:44:1c:5c:94:59:c9:f7:81:27:d4:df:ea:16:
ab:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F8:A6:00:75:DB:0E:0C:B6:CF:B8:1D:35:84:5B:17:9A:AC:63:55
X509v3 Authority Key Identifier:
keyid:D8:68:2D:2C:CA:D4:E4:1A:55:20:94:97:EE:0F:E2:7F:39:01:BB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GgtLMrU5BpVIJSX7g_ifzkBu1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:cf:a1:c7:7c:8a:30:3b:a6:de:48:c4:10:eb:e7:54:14:6b:
23:24:74:f1:1a:eb:dd:9b:cd:2b:d2:58:7c:10:9e:a9:6c:db:
2a:52:cf:ed:6c:67:ad:dc:34:50:8b:e1:f3:7e:a6:fb:dc:ea:
8a:64:17:fd:88:bf:e2:4b:39:e4:d1:4b:f1:a1:89:c7:62:b2:
2e:8d:17:d6:8b:30:a7:48:b7:5f:27:df:fc:64:a9:b3:dc:b4:
2b:e2:68:1e:9f:0a:d5:74:c4:24:6b:42:27:fa:ff:b7:66:47:
88:0b:52:48:e2:8a:50:d3:22:48:9a:79:44:96:db:7b:fc:a7:
5b:2d:40:5b:8e:a6:da:e8:90:fd:a8:f4:84:3b:b6:b7:14:e8:
76:ef:50:91:a5:23:8b:28:61:ff:ca:07:63:4d:4b:d1:c2:46:
5a:f8:9c:9f:f7:03:5d:cb:a4:f0:da:77:62:9d:c9:cd:1a:d2:
ac:e9:41:3c:08:46:98:0c:49:63:ba:0f:df:0b:a8:7b:29:6e:
1d:de:db:bf:94:ec:a0:69:df:a0:79:1d:f5:f3:71:0e:3c:4d:
aa:33:fc:00:70:c3:61:5f:95:4a:95:ee:2d:51:e1:f8:48:4f:
b8:0d:24:a0:09:c9:5f:2d:2f:60:b5:38:21:e8:de:44:9f:ef:
9f:06:1b:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:21:10 2025 by rpki-client