Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: AXzV/8EuFUKrte4sUQa1FeXXTOxe3+C9cUe7XeClz6c=
Subject key identifier: 62:98:C5:D8:51:2D:8E:BC:C7:91:44:01:58:FD:29:36:6A:0C:EF:67
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 0198D5BB83945AA507B3EB4BEF664E5D9499
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 1578
Signing time: Sat 23 Aug 2025 07:01:32 +0000
Manifest this update: Sat 23 Aug 2025 07:01:32 +0000
Manifest next update: Sun 24 Aug 2025 07:01:32 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: i3+eGebzBl6fP1BxFrOTtH3vL1uo/L5cgveozdVdi2g=)
2: 6R0wvkFPscZQ2uww-ZvwnaXh--0.roa (hash: wyiJ7rZP6x6kzeIfld1VjsLp4nIqzGhNhuxTGdTq1Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:83:94:5a:a5:07:b3:eb:4b:ef:66:4e:5d:94:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: Aug 23 07:01:32 2025 GMT
Not After : Aug 24 07:01:32 2025 GMT
Subject: CN=6298c5d8512d8ebcc791440158fd29366a0cef67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:95:a4:5f:43:c3:81:31:2c:29:06:8d:26:a2:
44:d6:ee:e7:11:0f:ec:8b:31:bc:19:0b:74:ee:a7:
c7:f3:5e:69:15:3e:80:c0:44:24:23:3d:35:dc:f1:
d1:fd:7f:99:f6:a6:2c:c0:c7:53:7b:23:d7:de:48:
21:2a:01:eb:33:b7:6c:13:50:6f:a2:5c:a6:5b:1b:
ad:fd:9c:2f:ed:6b:6f:d0:d9:18:a7:d9:e7:40:1c:
c2:72:8d:2b:36:20:45:d8:0e:4d:63:19:78:d9:79:
90:ab:e1:da:45:9b:ef:ff:aa:5f:32:55:d8:37:c2:
6c:94:dc:97:d3:7c:33:fa:df:35:f1:01:5c:bb:3c:
51:57:d4:2d:a8:89:a4:3a:cd:7a:47:4f:c8:47:dd:
0c:3a:80:12:ed:10:58:d1:58:15:ab:48:e6:ae:3d:
c5:f0:9c:9c:e3:f4:78:87:73:b0:ac:77:46:e2:4c:
70:0f:96:68:07:72:74:d9:c6:c9:98:4c:0b:0c:3a:
1d:ac:ce:57:ff:1b:ec:db:05:b0:a5:9b:bd:16:b7:
69:2b:ac:2b:fc:9e:01:06:8a:f9:0e:02:69:9b:60:
b6:5c:e5:9e:03:c6:fd:d7:d1:42:b5:ee:b8:62:0d:
13:74:cd:e5:9d:64:44:5d:91:6c:b9:e6:3d:2a:af:
4a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:98:C5:D8:51:2D:8E:BC:C7:91:44:01:58:FD:29:36:6A:0C:EF:67
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:7e:55:d9:23:79:77:3b:83:31:bc:69:f9:57:a3:ad:b4:97:
20:c0:df:ac:1b:b1:9c:20:71:a7:6b:93:11:fe:7f:89:4c:25:
2c:e0:3e:02:6e:01:7d:df:d1:d4:c6:2c:46:97:2b:2c:7f:9f:
99:4a:73:5a:3a:35:1e:44:51:69:2d:cd:83:a1:57:b8:e5:d3:
76:03:fb:6f:f9:ac:a6:e6:9a:f7:2a:91:14:be:24:42:2c:48:
62:15:53:37:d7:67:c2:db:d8:01:1f:3b:ed:61:8c:e1:f7:ca:
b4:70:22:59:e4:34:72:50:ce:ae:e3:7a:67:7e:98:a2:c6:44:
fe:ed:9a:5b:7e:d0:bb:85:08:24:92:64:14:e1:6c:e5:42:11:
14:4d:15:26:69:51:c3:6c:22:29:e0:66:ce:22:40:07:8c:ab:
1c:c3:cb:a0:98:68:12:6a:a9:66:ac:2e:ba:a8:d1:51:da:20:
90:a6:ba:e0:6d:57:6c:9c:fd:e6:54:aa:0c:34:02:03:c4:7f:
f2:cd:b8:a7:be:68:16:a4:ec:74:92:e1:86:71:d0:43:11:e0:
bc:05:30:11:68:c9:38:f5:8b:14:0f:44:6c:f8:aa:e1:b3:b6:
8c:6b:6e:2a:83:39:5d:1d:cd:a3:a7:f2:e6:68:44:66:35:b1:
fb:8a:f7:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:52:51 2025 by rpki-client