Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
File: 2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft (raw, json)
Hash identifier: vE+mI34PT5KK9R7jL6dH6vT85muwQCbfriPK38fpzDU=
Subject key identifier: 21:EF:73:83:C4:04:E6:11:B3:08:32:19:E7:EE:22:99:AD:33:6B:0D
Authority key identifier: D9:91:D6:89:0F:91:FB:2C:D7:79:31:B8:09:BD:B1:EB:05:09:13:49
Certificate issuer: /CN=d991d6890f91fb2cd77931b809bdb1eb05091349
Certificate serial: 0198D47443B821233A610C67332082C1A2C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
Manifest number: 10E4
Signing time: Sat 23 Aug 2025 01:04:05 +0000
Manifest this update: Sat 23 Aug 2025 01:04:05 +0000
Manifest next update: Sun 24 Aug 2025 01:04:05 +0000
Files and hashes: 1: 2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.crl (hash: UVriESPNf0DVnYOxTHjHgZdzKKwZCKg69Jupzh4L+To=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:43:b8:21:23:3a:61:0c:67:33:20:82:c1:a2:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d991d6890f91fb2cd77931b809bdb1eb05091349
Validity
Not Before: Aug 23 01:04:05 2025 GMT
Not After : Aug 24 01:04:05 2025 GMT
Subject: CN=21ef7383c404e611b3083219e7ee2299ad336b0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:39:6b:f5:fc:79:c5:a0:27:ec:99:f1:ac:bc:
85:f6:b2:39:99:a3:45:67:48:30:b2:e3:7c:16:95:
1c:20:97:61:23:4a:7f:6e:5f:25:51:d6:2a:51:85:
17:84:6d:b4:b3:aa:33:ca:0d:77:1e:bf:1e:4b:d0:
38:3a:5a:d2:66:e6:cc:54:03:be:83:f6:9f:ef:46:
b4:54:2c:f7:97:b4:14:65:43:38:c0:ec:66:89:53:
57:7c:0b:ca:23:95:34:af:c3:ff:29:c5:76:d0:1c:
41:92:17:ac:86:01:c6:b5:5e:89:a6:27:a3:06:29:
f9:54:4a:b1:73:2e:79:93:aa:95:a2:43:c7:24:f8:
6b:d9:f3:25:49:8e:6d:09:1b:16:a0:c7:e1:e4:5d:
27:59:b4:bc:fd:c9:ab:c7:95:05:09:1f:e3:98:e0:
1c:15:2d:df:a2:59:70:b0:b1:2c:53:13:51:e4:bc:
12:d0:de:a5:c7:96:0f:94:4b:01:73:1c:bb:ab:c8:
b4:cc:91:af:51:fb:79:16:6b:bb:5f:54:cd:9a:39:
ec:25:de:67:1a:65:4c:2d:cb:d9:44:87:cd:fc:4f:
ae:ec:08:c3:1d:95:89:ee:2d:f6:77:c6:ee:db:3e:
34:e0:86:c5:58:ed:0a:b1:8a:55:7d:0a:75:f9:32:
95:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:EF:73:83:C4:04:E6:11:B3:08:32:19:E7:EE:22:99:AD:33:6B:0D
X509v3 Authority Key Identifier:
keyid:D9:91:D6:89:0F:91:FB:2C:D7:79:31:B8:09:BD:B1:EB:05:09:13:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c77797-0ec7-4a0e-a542-c408576089b1/1/2ZHWiQ-R-yzXeTG4Cb2x6wUJE0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:af:28:3a:66:85:70:c6:c6:41:7c:3c:4f:58:a7:e1:0c:6c:
31:10:4a:0c:2a:28:42:eb:30:92:e5:f3:78:4e:f6:f5:e4:97:
4f:d3:5f:22:14:eb:32:70:f3:e7:06:a5:4f:8c:a4:b7:81:66:
88:11:1d:57:88:8a:ff:f3:0c:ef:d9:5a:50:e0:a8:71:25:e9:
3f:0c:43:3d:10:46:4a:66:f5:64:77:90:8a:75:fa:6d:aa:d1:
5b:45:02:00:24:d5:d6:e5:95:8d:6c:2e:b6:d8:e2:2d:1b:84:
f0:ad:35:ce:09:40:92:68:5b:d0:8e:2f:e4:82:51:46:ae:4f:
e9:69:bd:62:5e:81:10:75:97:f1:ce:e7:6f:7b:1d:22:3a:38:
b2:b7:19:31:0b:14:ae:b3:6b:98:fa:81:fd:70:77:07:58:07:
98:e5:a0:05:a3:04:24:54:dd:7b:01:ca:78:75:54:58:e5:25:
d2:4f:22:3a:cd:64:15:64:01:aa:79:23:1b:3a:bf:02:15:3e:
08:6e:c8:53:37:97:e7:34:f7:c4:33:2f:3b:54:92:d1:85:39:
2f:4b:9c:bb:69:f8:12:05:d9:87:b9:2f:1f:fb:f0:73:d1:e9:
76:16:4c:f9:98:e2:42:43:b5:40:56:99:82:2f:56:d2:fc:28:
fd:77:3d:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:27:07 2025 by rpki-client