Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft
File: 2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft (raw, json)
Hash identifier: AboGvjRqwHk83nZ3BB28X5zIKQdYnFKr+H/A/JAp4f0=
Subject key identifier: B4:AC:3D:22:73:25:AC:7B:6E:8A:85:FA:B7:F1:10:E5:E3:89:76:5C
Authority key identifier: D8:68:2D:2C:CA:D4:E4:1A:55:20:94:97:EE:0F:E2:7F:39:01:BB:51
Certificate issuer: /CN=d8682d2ccad4e41a55209497ee0fe27f3901bb51
Certificate serial: 0199FEEB8CB4B2877B0DDE179A4CCB060C62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GgtLMrU5BpVIJSX7g_ifzkBu1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft
Manifest number: 0180
Signing time: Mon 20 Oct 2025 00:01:13 +0000
Manifest this update: Mon 20 Oct 2025 00:01:13 +0000
Manifest next update: Tue 21 Oct 2025 00:01:13 +0000
Files and hashes: 1: 2GgtLMrU5BpVIJSX7g_ifzkBu1E.crl (hash: ZkeUwmEKxhalZ4FFJfNeqQjoxzts/C8fSvKCJMQWk2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GgtLMrU5BpVIJSX7g_ifzkBu1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:eb:8c:b4:b2:87:7b:0d:de:17:9a:4c:cb:06:0c:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8682d2ccad4e41a55209497ee0fe27f3901bb51
Validity
Not Before: Oct 20 00:01:13 2025 GMT
Not After : Oct 21 00:01:13 2025 GMT
Subject: CN=b4ac3d227325ac7b6e8a85fab7f110e5e389765c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:32:e4:8e:0b:fa:63:d2:12:bc:dc:ec:97:2e:
aa:d9:b5:df:b0:0e:f4:4f:3b:f5:06:0c:14:7b:12:
3d:97:ad:1a:46:7a:33:ce:bc:be:60:e0:21:b7:43:
d9:9d:f1:d9:01:59:eb:a7:68:80:3c:dc:26:69:3c:
9a:b8:e3:50:97:0a:63:5c:e4:16:93:47:ea:ab:ea:
4a:47:05:66:ab:6b:d7:e0:b4:e7:5a:d1:e9:da:91:
d1:e7:f6:a3:3c:35:4f:fd:38:60:55:0a:98:52:bb:
e6:29:22:54:a8:f4:2a:4d:78:d1:ee:b1:93:15:85:
2a:06:1d:0c:37:3b:26:b2:32:23:08:d1:fc:4e:f0:
a2:1b:ad:9e:50:e3:02:56:82:4e:a9:dd:e4:c1:55:
4b:5f:79:6a:5c:5d:a3:75:e2:f3:79:2d:71:7b:9c:
cc:76:30:6d:4c:6d:d9:9d:ae:c6:84:ba:5a:01:55:
fb:4e:66:d8:e7:dc:4f:2b:f0:21:5c:26:1e:ab:a2:
54:5d:38:e8:b6:cb:e1:b9:bd:f1:95:c4:5a:a3:4b:
3b:e5:b6:00:aa:f7:1f:e5:16:66:3d:c5:c4:ec:1e:
bf:33:9f:53:39:a4:85:16:f6:73:3b:b8:4e:11:87:
23:d1:63:6a:5c:87:56:e5:80:e9:99:3e:e7:4b:b9:
34:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:AC:3D:22:73:25:AC:7B:6E:8A:85:FA:B7:F1:10:E5:E3:89:76:5C
X509v3 Authority Key Identifier:
keyid:D8:68:2D:2C:CA:D4:E4:1A:55:20:94:97:EE:0F:E2:7F:39:01:BB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GgtLMrU5BpVIJSX7g_ifzkBu1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c69aa2-498d-441b-8b17-5c7e9fe6e1a9/1/2GgtLMrU5BpVIJSX7g_ifzkBu1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:1d:57:1c:0d:9a:43:4c:11:28:be:25:4f:94:41:d3:55:d7:
55:3f:a5:c6:a9:63:af:d1:e2:6d:c7:e5:12:68:2d:de:54:e9:
a1:37:e4:16:d5:67:47:cf:36:c9:6e:50:73:2a:72:20:f3:6a:
f4:a1:bf:74:ba:92:89:4d:75:aa:cf:a5:c1:81:67:b7:ac:94:
87:d4:bf:a7:72:42:01:2d:56:fc:6c:c3:d4:e6:a0:e4:82:51:
52:31:cd:4f:83:42:9e:d3:5f:5f:3d:24:d3:fd:c7:eb:61:1f:
20:df:79:f6:4d:9d:51:5b:7c:96:ef:55:09:e1:32:9b:11:6b:
05:76:99:a7:b6:f4:2e:c7:e2:e2:5f:5a:22:96:21:c1:ca:95:
5b:1f:e7:23:95:e3:47:1e:6f:fa:4a:fa:9e:92:d6:31:7a:3f:
9a:37:58:96:a4:9b:50:9f:b2:1e:77:f5:8d:d5:f4:a6:ab:5a:
8f:2a:62:1b:8c:ff:6e:54:9e:df:1c:93:8f:d9:21:68:a1:f3:
55:4c:b0:62:31:e0:2a:3d:ab:13:f9:36:58:a7:b2:7e:59:c7:
82:32:5f:40:4b:40:5a:a6:16:f7:b7:2e:79:37:8b:d7:83:8a:
ce:55:01:d8:9e:c0:5d:2b:45:91:8c:96:50:66:c5:85:7a:24:
51:1c:b7:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:59:52 2025 by rpki-client