Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
File: 2lTIIO5UFUMsaLATYZJ1_0xubqU.mft (raw, json)
Hash identifier: f8XP/SESZefKJjRU8KwR6M78IS3CK8CMIpQZAZKgMcU=
Subject key identifier: 71:37:06:0C:39:4F:09:E2:4B:4D:9C:FC:21:26:2A:95:D4:ED:7D:96
Authority key identifier: DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5
Certificate issuer: /CN=da54c820ee5415432c68b013619275ff4c6e6ea5
Certificate serial: 0198D47268D4C94BEC8AB6B4017E37FAF8ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
Manifest number: 06CD
Signing time: Sat 23 Aug 2025 01:02:04 +0000
Manifest this update: Sat 23 Aug 2025 01:02:04 +0000
Manifest next update: Sun 24 Aug 2025 01:02:04 +0000
Files and hashes: 1: 2lTIIO5UFUMsaLATYZJ1_0xubqU.crl (hash: hW1XgBNLVqQNXAXBaI/z1Al0ASFuy/gb43v69ADrCQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:68:d4:c9:4b:ec:8a:b6:b4:01:7e:37:fa:f8:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da54c820ee5415432c68b013619275ff4c6e6ea5
Validity
Not Before: Aug 23 01:02:04 2025 GMT
Not After : Aug 24 01:02:04 2025 GMT
Subject: CN=7137060c394f09e24b4d9cfc21262a95d4ed7d96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:51:06:bf:05:60:2a:c7:81:00:42:3b:b7:b6:
96:f2:a7:f3:7c:85:fd:7e:2a:1e:88:89:f5:65:06:
46:0d:17:6b:f4:3a:2e:5b:78:75:c0:4c:6b:df:f8:
b0:50:d4:d8:f0:2d:04:1a:ef:ff:6a:24:25:96:e3:
9e:83:91:5d:01:96:1b:2d:96:98:4d:51:aa:02:2d:
10:5a:68:8b:6e:9b:30:9b:8b:bc:ad:77:32:6c:38:
b9:6c:55:3c:d2:f3:3c:b5:b0:56:93:8e:e4:a5:23:
72:d5:62:73:20:18:3f:61:34:c8:af:c1:62:47:14:
3e:50:54:29:1c:c3:2e:89:b2:81:5f:5d:c6:56:14:
fe:c5:40:6a:d2:69:c6:4c:5a:b1:54:e5:07:6b:a0:
b2:6b:2d:57:b5:b7:67:2b:16:ad:6b:17:33:ac:df:
69:52:53:57:b8:36:0b:20:09:e9:e8:f0:a8:db:e4:
e3:c2:2b:bc:18:53:ae:b3:57:4f:5c:1f:ac:c1:c1:
6b:d7:25:b2:28:45:09:f3:68:cc:59:ad:bb:9b:ee:
19:2d:91:c8:7b:86:c3:22:83:4f:93:88:24:bc:73:
de:be:96:ac:2f:c7:a2:ee:8c:ce:77:4b:44:8e:a6:
d4:d9:3c:71:80:b8:94:e7:76:17:c0:5d:cc:0d:ee:
df:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:37:06:0C:39:4F:09:E2:4B:4D:9C:FC:21:26:2A:95:D4:ED:7D:96
X509v3 Authority Key Identifier:
keyid:DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:8d:d8:3b:a3:a6:14:b5:d4:1f:98:61:77:73:78:94:0e:27:
c0:34:39:87:82:53:9f:7b:b3:bc:9b:46:fc:eb:11:0c:5d:3b:
42:79:92:e4:9b:d0:e7:cf:17:fd:86:4d:cf:09:4f:4f:03:52:
d4:e2:d9:49:fe:26:75:ac:83:98:4d:2d:18:56:57:aa:ea:37:
35:50:70:68:cb:ee:fe:5b:23:c3:67:7d:68:af:98:93:0e:05:
1e:7b:67:a2:b0:88:22:d1:f3:e9:c8:1f:97:3c:6b:fd:c6:fc:
93:a3:45:84:7d:85:41:60:1f:5d:24:33:7f:55:da:2e:7f:40:
ef:da:0a:a3:f2:3d:76:7b:64:35:de:65:b3:5d:b7:58:f6:c9:
9d:e0:bd:63:8c:2a:a9:b5:a8:38:d6:fc:b3:d0:ec:04:ca:1d:
0f:24:a9:d9:5e:04:e5:72:3a:b4:08:9a:00:79:77:b2:69:9b:
6f:38:f0:3a:5c:ba:65:6b:18:f3:dc:97:91:8f:4a:74:f4:eb:
22:17:94:a0:66:89:3e:e4:e8:c8:76:a6:61:b0:51:2c:cf:4a:
62:d5:90:c1:2b:aa:8e:2d:bb:fe:f3:ba:81:9c:a4:d0:f2:73:
6e:3e:00:5d:df:61:b8:24:48:e1:ff:3e:83:3f:77:a5:4f:98:
4d:4e:57:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:15 2025 by rpki-client