Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
File: 2gBH2sju-JRNeMG3omhowD4s5GY.mft (raw, json)
Hash identifier: AG9lmzr9bPgmcSmb+74TPF1sYmMBrg6L1ffLsye9Ajg=
Subject key identifier: 42:63:D9:12:BC:9E:A9:8A:48:BA:EF:9C:69:69:3D:51:BE:FB:E3:1D
Authority key identifier: DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
Certificate issuer: /CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Certificate serial: 0198D69874733E6684255C2055C2378D80BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 11:02:52 +0000
Manifest this update: Sat 23 Aug 2025 11:02:52 +0000
Manifest next update: Sun 24 Aug 2025 11:02:52 +0000
Files and hashes: 1: 1HJjsYIKgn5m4aKZWr3wynalRwQ.roa (hash: 4AW+T8DVNHH/qCqGZo07n9kC0wNSFK9esxUBxaOybzo=)
2: 2gBH2sju-JRNeMG3omhowD4s5GY.crl (hash: uQTlia4DYdRqCZHRNGFYxSr+M9hbK6p5cbDWALodRXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 11:02:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:74:73:3e:66:84:25:5c:20:55:c2:37:8d:80:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Validity
Not Before: Aug 23 11:02:52 2025 GMT
Not After : Aug 24 11:02:52 2025 GMT
Subject: CN=4263d912bc9ea98a48baef9c69693d51befbe31d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d0:da:b6:e6:dc:aa:90:ba:8c:1a:b6:5a:9f:
1d:a6:23:15:ad:a7:05:0c:5c:d9:46:32:26:af:c4:
a4:06:26:6f:60:c0:5f:70:db:62:cc:aa:56:f2:b5:
18:5d:29:e2:8a:27:c1:0f:13:b6:d7:24:37:eb:4a:
e4:5b:d6:88:bb:15:fd:7d:30:fc:31:ae:52:99:c6:
e1:d9:bc:1e:25:be:13:42:26:23:57:ca:7e:6d:87:
55:50:e4:01:ae:75:f6:c4:03:b5:d0:fb:d3:d0:23:
ad:40:e1:8a:bb:94:0a:6a:6d:53:79:71:1b:05:a8:
04:59:54:df:68:e9:a5:e0:64:44:17:d9:cd:64:b8:
34:40:9e:73:c5:30:6d:60:2b:12:5a:68:02:ba:22:
ed:f5:24:fe:7c:26:8c:a2:cb:20:f0:d4:c7:05:53:
d4:22:08:9a:2e:ce:24:9b:12:b0:59:48:ff:8a:31:
31:f9:82:9d:24:b8:4c:37:0d:a8:85:27:45:3b:67:
45:10:e0:0f:4b:01:c9:57:44:92:cf:50:bc:6d:fb:
b3:b1:a5:2b:b3:40:8a:77:83:56:9a:bb:98:44:04:
99:63:69:64:cd:56:c9:d7:dd:b6:ff:24:d6:cd:70:
c4:ef:fe:81:8e:f8:51:ea:fb:e3:e9:ae:18:fb:5b:
37:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:63:D9:12:BC:9E:A9:8A:48:BA:EF:9C:69:69:3D:51:BE:FB:E3:1D
X509v3 Authority Key Identifier:
keyid:DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:ae:51:8a:f5:43:d5:0e:93:ed:00:f5:5e:c3:a0:3d:d1:77:
b5:4a:4f:c8:e1:5e:1e:82:49:48:19:c3:c0:73:9d:0d:eb:8e:
9a:de:7f:d1:f2:df:c3:84:49:da:86:65:13:bd:2d:cc:78:c9:
a4:c9:9a:58:8a:d1:f9:c3:74:57:ba:82:40:55:3f:68:3a:5e:
e4:66:63:59:f1:79:9c:d8:97:88:2c:d8:2c:99:59:ad:50:b3:
77:9c:8f:ca:b2:ee:48:12:f2:0c:1e:90:36:6e:97:42:a2:c9:
42:14:04:ee:04:c5:17:80:de:cd:1b:fa:33:91:a9:42:2c:d5:
18:0f:17:5d:88:a7:1d:f6:c5:b7:d3:85:1e:7d:25:5c:eb:12:
96:5b:c1:34:b0:fd:24:da:12:c4:50:6b:f5:c2:30:da:90:59:
e7:7a:39:77:17:4c:61:84:9e:d0:11:a9:21:f7:bc:4c:84:c0:
4b:cf:ed:ea:34:ff:e0:cf:c6:98:f7:a1:ff:bd:3b:c9:c5:10:
f0:3b:1d:0f:a5:ef:e2:01:a7:5d:e2:41:c8:f5:7e:e5:eb:3e:
98:77:5e:e7:3f:67:8f:c2:1c:bf:ce:ff:10:17:db:57:87:42:
66:bb:d8:d3:d4:ae:b0:48:47:c6:4f:91:1c:4c:dd:d9:aa:2a:
b5:dc:b7:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:44:27 2025 by rpki-client