Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
File: 2Hwy4kled0lvwgKzAxZLpAjl0SI.mft (raw, json)
Hash identifier: /XVNQQxlINpGK15XCA8BZn4/3i/ZM/ykpUNPMKCuKoE=
Subject key identifier: 97:51:E8:8D:D6:58:FD:1E:D9:8A:C0:B9:19:66:2C:E4:36:BB:4F:06
Authority key identifier: D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22
Certificate issuer: /CN=d87c32e2495e77496fc202b303164ba408e5d122
Certificate serial: 0198D660AAD32094AD2721F22BF1DBE0317C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
Manifest number: 1545
Signing time: Sat 23 Aug 2025 10:01:56 +0000
Manifest this update: Sat 23 Aug 2025 10:01:56 +0000
Manifest next update: Sun 24 Aug 2025 10:01:56 +0000
Files and hashes: 1: 2Hwy4kled0lvwgKzAxZLpAjl0SI.crl (hash: dH46fcK+dBIZY++POJ9sdh+EokSBdBg8WI9Mw/98WK8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:aa:d3:20:94:ad:27:21:f2:2b:f1:db:e0:31:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87c32e2495e77496fc202b303164ba408e5d122
Validity
Not Before: Aug 23 10:01:56 2025 GMT
Not After : Aug 24 10:01:56 2025 GMT
Subject: CN=9751e88dd658fd1ed98ac0b919662ce436bb4f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:45:90:ca:a7:e3:3b:dc:d0:98:92:a1:a6:9a:
b5:e7:d9:fc:de:df:60:f3:35:d1:fb:81:e6:a9:ee:
73:b4:5a:8e:3b:62:85:ee:f5:31:df:03:83:16:36:
4c:53:06:17:7d:ab:6b:ec:6b:aa:13:51:4e:68:81:
db:bf:82:50:78:1c:94:83:89:a6:f2:2a:bc:5f:c8:
95:c0:c1:74:81:b9:34:db:fb:5b:97:69:5e:65:eb:
63:00:34:bb:bb:f3:aa:43:fa:7a:2c:03:35:b9:bd:
c7:d4:24:cb:63:07:b6:29:08:b5:5d:4e:bb:30:79:
d5:2f:b3:de:01:a6:b0:05:85:84:db:2d:6f:cb:44:
24:1d:f0:28:78:7c:a1:43:f0:83:06:df:3d:f4:69:
8c:e1:ae:ee:3a:08:04:0d:d6:67:c7:3c:37:93:25:
6c:cc:da:91:3b:83:0a:0a:76:9e:45:2d:61:ea:79:
64:e5:c9:1b:05:e2:e3:6e:9b:b1:bc:63:09:e8:55:
83:b6:d8:92:9b:b7:31:0c:03:98:44:41:84:30:45:
bc:ed:35:8f:d3:e1:f8:8f:8f:8c:f6:03:ea:08:2c:
04:5d:61:ea:82:ac:bc:a6:0a:eb:18:2b:af:63:84:
bd:f1:42:fe:9d:51:e1:95:d6:54:57:6f:b7:5e:46:
76:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:51:E8:8D:D6:58:FD:1E:D9:8A:C0:B9:19:66:2C:E4:36:BB:4F:06
X509v3 Authority Key Identifier:
keyid:D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:82:36:d8:00:a2:8c:c3:4b:a6:ec:d1:7b:fd:5a:0d:5a:88:
98:97:c6:76:04:ba:d9:c8:35:34:f4:f2:6f:34:91:7e:9a:b9:
82:a9:6b:25:22:26:18:87:0b:11:a4:0a:4c:02:d0:06:0c:55:
4a:e2:35:a9:d8:00:70:68:3e:48:1f:c2:7f:06:2d:82:64:83:
5d:8a:cc:3e:c8:d5:2a:b7:73:5a:00:e6:3e:13:23:d4:8a:7d:
9f:8a:9d:4d:26:a0:45:12:58:75:18:f4:96:71:6d:5d:96:36:
23:70:d9:a4:94:ba:39:61:19:a8:70:48:e3:a2:4b:f4:27:bb:
d5:e6:88:df:e4:8a:68:e7:90:e2:80:ce:95:56:82:33:73:a6:
f6:be:08:c4:a3:74:2c:d2:9d:33:1f:84:76:2e:8e:e1:52:6f:
4a:25:c6:18:7a:69:d6:cd:39:8b:34:7c:5e:f8:90:55:d0:c5:
1e:1e:d6:c5:c9:aa:11:60:af:a7:06:82:9c:8b:2b:9d:8d:a4:
ab:46:ed:3a:07:ba:33:d0:5d:9f:0c:dc:13:47:9d:59:02:db:
32:8f:ee:da:91:7f:a9:b0:76:d6:7e:28:3f:a2:08:d4:1f:35:
c1:55:42:74:ce:c5:e2:c1:27:c0:0a:ca:e4:18:37:88:61:34:
ef:69:c8:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:04:04 2025 by rpki-client