Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
File: 2wy7NfYw1Aytd1B_2r03_e3BIQM.mft (raw, json)
Hash identifier: L4FsqD7W6nP84IdFI6HKm9oHC1PAB5cT46+IUzsFGGQ=
Subject key identifier: BB:A7:C4:33:1D:D7:A3:12:03:20:A4:08:7B:97:2B:D4:A9:7E:B1:1C
Authority key identifier: DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
Certificate issuer: /CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Certificate serial: 0198D6608CE18769301266A68FE01C65253C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
Manifest number: FE
Signing time: Sat 23 Aug 2025 10:01:48 +0000
Manifest this update: Sat 23 Aug 2025 10:01:48 +0000
Manifest next update: Sun 24 Aug 2025 10:01:48 +0000
Files and hashes: 1: 2wy7NfYw1Aytd1B_2r03_e3BIQM.crl (hash: YpO8qJVGUK9fvzYq4Rm0eF4DQjqtGm1yazJjaCpnZ/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:8c:e1:87:69:30:12:66:a6:8f:e0:1c:65:25:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Validity
Not Before: Aug 23 10:01:48 2025 GMT
Not After : Aug 24 10:01:48 2025 GMT
Subject: CN=bba7c4331dd7a3120320a4087b972bd4a97eb11c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d1:7f:5c:73:4a:87:d5:e6:9f:7e:c4:7f:94:
9e:16:e9:ff:6d:7e:85:c7:d4:13:22:b5:e1:5c:24:
a4:48:1c:1a:fa:a1:e0:bc:e7:3b:8b:14:17:e2:36:
68:a3:1a:a4:d1:05:cd:82:72:16:ef:1b:11:57:d4:
3b:20:9d:f5:e0:ca:92:54:11:b3:a1:67:96:11:14:
05:77:78:b4:9e:5d:64:86:21:ec:cb:22:b7:85:2c:
4a:1e:ce:c9:22:65:ca:61:3c:9a:54:29:b0:45:d7:
3d:97:f6:b3:85:bf:70:ff:a6:89:ba:c0:91:90:ec:
3f:fe:38:a1:5a:5b:cf:37:ec:3b:69:e4:6e:0b:37:
be:5c:4a:ae:de:cc:49:47:ea:f4:d6:06:95:82:8f:
90:b2:1c:84:d8:d9:24:55:05:45:9a:75:9e:cd:e3:
7c:4d:73:24:a3:ed:6c:48:13:88:e5:9f:e5:3a:3d:
63:cb:27:e8:c9:1f:94:e4:b3:2c:f3:ff:15:eb:74:
42:17:0a:bb:f5:65:b8:a9:6e:25:81:28:22:be:41:
ce:f8:97:69:ae:13:38:7d:2e:0f:72:82:51:70:0d:
c1:7d:7f:f9:5d:21:8d:46:f5:10:36:7d:d6:61:7e:
88:7e:b0:00:4e:64:37:9c:4d:a5:f1:8c:40:b4:1a:
56:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A7:C4:33:1D:D7:A3:12:03:20:A4:08:7B:97:2B:D4:A9:7E:B1:1C
X509v3 Authority Key Identifier:
keyid:DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:ea:70:b1:ad:74:4c:c8:18:82:8b:3f:9d:3f:92:ea:60:d8:
88:f6:65:93:c2:4a:cd:7d:ea:54:2c:2b:44:2d:ef:9f:2c:95:
ff:37:20:dc:81:13:ab:b8:82:a8:a5:49:02:d7:67:f3:b7:a7:
71:c6:73:ea:c5:e7:a3:b4:8e:7c:c7:44:4b:3d:34:c2:06:ec:
94:34:e4:81:f1:90:75:2b:4f:05:0c:85:ce:5f:25:98:b7:85:
17:45:2d:89:bd:85:08:e1:31:2b:1a:a7:50:84:05:cb:43:0a:
22:37:65:18:46:af:5f:e5:b3:f6:ab:05:0e:b3:7e:62:57:cc:
d0:94:01:13:38:18:d2:c0:1b:58:39:10:a0:f6:ef:4a:f6:5b:
51:24:81:d2:d1:d4:1f:8d:20:67:ae:13:fd:6f:3b:80:f8:32:
bf:90:56:35:d4:52:36:f6:f6:3e:b6:c9:5a:c2:96:d2:7a:d1:
7d:94:6e:d8:86:02:79:58:89:1c:71:f4:54:9c:eb:09:95:e3:
24:56:eb:7c:1f:12:7d:ca:b5:9d:54:f9:45:61:8a:90:0f:8c:
c6:7c:5c:b5:a9:46:0a:99:d9:7c:f8:d2:03:1c:6f:a3:90:48:
34:a3:fa:e0:f4:a9:bf:94:75:10:38:7f:b9:ce:81:01:ef:ce:
06:a2:e9:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:10:11 2025 by rpki-client