Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
File: 2iHQJGSziv86MckIeNYnI7nHQqY.mft (raw, json)
Hash identifier: Xjezzzvt1yy9xv78XmAylSWOTeP2Hce59BW4D1CqhYI=
Subject key identifier: 02:6B:D2:90:EF:52:4D:AC:BF:66:7C:41:DD:1E:D4:36:F3:18:C1:B3
Authority key identifier: DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6
Certificate issuer: /CN=da21d02464b38aff3a31c90878d62723b9c742a6
Certificate serial: 0198D54E963DABB63E03C098573724506C9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
Manifest number: 43
Signing time: Sat 23 Aug 2025 05:02:33 +0000
Manifest this update: Sat 23 Aug 2025 05:02:33 +0000
Manifest next update: Sun 24 Aug 2025 05:02:33 +0000
Files and hashes: 1: 2iHQJGSziv86MckIeNYnI7nHQqY.crl (hash: eofzbPl6TFr20I7xeWqr84nInOVZF3Cc/11Pjum5p8Y=)
2: wbgG1j9R-vhoPqvH0nUMQbXvrx8.roa (hash: xo2u/qdC49lIMc4JdjEDCUm3a6iK3K063v78xvOND8A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:96:3d:ab:b6:3e:03:c0:98:57:37:24:50:6c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da21d02464b38aff3a31c90878d62723b9c742a6
Validity
Not Before: Aug 23 05:02:33 2025 GMT
Not After : Aug 24 05:02:33 2025 GMT
Subject: CN=026bd290ef524dacbf667c41dd1ed436f318c1b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9b:98:8a:be:50:19:86:5c:06:0a:ef:50:c0:
e9:0a:bd:e7:5e:cf:f1:bb:cd:78:af:a2:9f:7b:42:
da:80:ed:24:59:6f:32:48:1c:09:f4:e8:3c:22:97:
80:8f:af:74:d8:46:0d:ff:92:5a:04:2b:f5:ff:a0:
07:55:e4:a6:81:f4:16:2f:53:91:6e:19:96:95:42:
3e:3d:af:af:42:8b:20:f7:93:2c:9c:47:3c:e6:e9:
36:2a:cd:26:2c:9b:5b:7f:ff:a0:cc:61:86:76:c6:
37:af:c5:b4:09:6f:8c:b5:6f:7a:11:b1:62:a3:a2:
b4:5f:21:11:3d:d2:49:fa:8c:bf:0f:fe:f8:bc:01:
cf:b7:b3:b9:c5:51:1b:8e:bc:a3:2a:ba:61:5b:cd:
28:a7:d5:8d:5f:d1:33:87:15:65:eb:49:d3:3b:9a:
c4:81:b8:bc:30:7f:52:f5:9a:21:cd:b9:e0:fe:ca:
e0:06:ba:82:8d:9c:e6:6d:ba:c7:a5:7e:71:84:62:
1c:03:d8:ee:84:45:68:52:57:2f:36:69:4b:4c:31:
c1:df:0f:2c:65:7c:38:5a:7d:ff:17:0d:c4:01:8e:
f7:bd:36:78:fd:18:6c:99:9d:3c:34:3a:5e:ff:89:
fb:42:3a:af:24:61:68:70:85:9c:7a:97:2d:d9:22:
65:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:6B:D2:90:EF:52:4D:AC:BF:66:7C:41:DD:1E:D4:36:F3:18:C1:B3
X509v3 Authority Key Identifier:
keyid:DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:c7:22:0a:47:78:96:fd:82:8e:91:47:4e:ff:b6:b0:c6:ee:
73:e4:fc:a7:c3:f2:6a:9d:d8:0f:55:ca:d9:96:b8:39:1b:ef:
fc:2b:ab:d9:db:41:6f:e4:2a:95:6e:56:f5:00:0a:a5:cf:64:
ca:37:18:a4:ed:d0:76:f2:88:14:9c:13:7c:1c:c9:45:a0:1e:
99:f6:46:b9:d1:8f:cd:01:79:f3:f5:c7:0d:5d:a7:d8:46:a8:
bc:da:7a:4d:5b:b4:08:ce:cc:f3:4d:da:c7:9f:9b:70:be:ad:
69:db:ec:00:84:b7:36:1b:5f:2c:0b:5a:c7:95:14:85:c0:7d:
53:33:27:47:d1:38:87:d1:4f:58:ca:c4:f4:4c:49:b7:eb:5e:
f5:e3:31:33:ff:b8:c9:88:78:fd:7b:63:1f:99:74:8f:1f:b2:
77:79:89:65:1d:a7:ba:78:ed:1d:7c:1f:31:00:a1:8a:8b:9e:
d9:c2:ca:6c:90:01:cf:0a:05:fc:f4:76:5b:3f:b5:ab:f7:2c:
54:27:fc:04:84:81:6e:e9:cc:42:50:2b:07:07:37:45:db:91:
1c:a6:20:22:49:5e:91:d5:56:f7:1d:4e:27:8e:35:c4:1a:cf:
6d:1b:b1:40:6b:19:e3:ec:1c:2f:22:d0:48:f7:dc:21:a0:03:
a4:dc:1e:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:29:43 2025 by rpki-client