Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
File: 2GucF3igUp7n4jIAPL5cmTw2_ds.mft (raw, json)
Hash identifier: yor/y8s58YR6cJsOLdxT7i/kEgn7daB5nLltsBPpAeg=
Subject key identifier: EB:7F:30:89:F1:1F:87:78:21:E1:E2:C1:35:59:F5:47:59:D6:F4:F4
Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Certificate serial: 0198D88453BB35A60210DE36E7DE5B02F141
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
Manifest number: 03AB
Signing time: Sat 23 Aug 2025 20:00:07 +0000
Manifest this update: Sat 23 Aug 2025 20:00:07 +0000
Manifest next update: Sun 24 Aug 2025 20:00:07 +0000
Files and hashes: 1: 2GucF3igUp7n4jIAPL5cmTw2_ds.crl (hash: Qd6ar0RHc4vQYJQ6Y5N3e0qoMRiC4Rwh9AKcI0ZUaac=)
2: xaTFNHvIwGFGt2nvvisSJGJJn1U.roa (hash: dncutlGZCp4ijfHdULe589Ce9+6dKbRvNV71t7mvtSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:84:53:bb:35:a6:02:10:de:36:e7:de:5b:02:f1:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Validity
Not Before: Aug 23 20:00:07 2025 GMT
Not After : Aug 24 20:00:07 2025 GMT
Subject: CN=eb7f3089f11f877821e1e2c13559f54759d6f4f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d3:95:db:8c:6a:a4:e4:85:fd:66:c0:93:41:
d3:36:06:7d:35:31:aa:1c:f2:7e:18:54:02:3c:20:
1d:c4:20:80:20:dd:58:df:63:c1:3c:2d:d9:9b:a5:
3f:92:9a:2a:47:3c:f7:4d:52:ad:9c:69:d5:2e:b6:
01:df:d1:8f:3b:08:0a:f5:27:a2:c3:03:a5:56:a1:
e9:92:7e:97:0a:c7:99:d2:04:a5:a1:68:60:4f:67:
d7:74:e4:f5:aa:07:dd:c4:5f:4b:eb:82:e0:82:44:
59:82:99:c5:03:0a:d9:c3:05:82:d3:b1:54:98:3b:
b7:1c:3f:38:85:cc:7e:db:e7:ce:79:80:ae:77:40:
11:53:15:9e:20:0a:48:4c:0c:37:d9:42:af:62:b9:
e1:65:4a:12:f1:bf:96:77:db:69:f1:96:70:33:82:
75:68:a5:17:44:34:bb:c1:bc:5e:74:60:68:07:e9:
4f:2e:d6:74:82:73:fb:ab:84:ba:92:bb:87:46:b8:
2e:c9:ff:04:bd:5f:0b:b5:ad:e9:cc:d1:ce:d3:0a:
3a:5c:f9:ee:c6:53:c8:28:e5:45:b0:8c:2d:fd:52:
0d:c5:73:85:cf:be:23:f2:d8:c7:5a:0b:1e:02:ad:
f3:d8:e5:97:70:c9:df:cb:77:08:ac:7f:b4:98:22:
19:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:7F:30:89:F1:1F:87:78:21:E1:E2:C1:35:59:F5:47:59:D6:F4:F4
X509v3 Authority Key Identifier:
keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:b2:d5:16:f1:74:14:cf:fc:6c:45:01:02:b8:27:ed:30:4e:
27:16:12:14:74:58:e6:3a:a3:b9:5f:c5:d8:06:1e:6c:2a:da:
82:b6:f1:43:05:0b:b8:8e:65:b3:a1:de:3d:d4:f7:a5:0d:6d:
5d:88:9c:8a:9b:ae:e3:e7:d2:43:b2:69:c2:54:40:f1:8a:36:
06:09:d3:35:c8:b9:28:da:ee:45:03:fa:a3:a2:ac:ab:3f:30:
7f:52:e2:26:b7:f8:b8:28:12:25:29:ff:3c:ce:0a:1f:ef:80:
50:c1:e1:cd:26:e0:ad:48:05:93:9e:1b:91:8c:0d:d1:d2:35:
f5:38:ba:b0:06:72:64:d4:23:da:12:d3:b2:b2:24:d7:75:33:
4a:82:54:74:e8:7e:54:1b:4f:b4:02:c3:cc:9a:1c:1c:93:89:
e1:f5:c2:68:2a:67:e2:14:8b:0c:af:84:29:82:73:53:fd:02:
67:ff:60:66:12:5a:15:69:bf:f2:be:b2:0a:d5:60:e7:9a:f9:
c9:bc:9b:51:de:f8:af:e9:6d:87:c6:a8:3c:ce:82:e2:40:a8:
4b:99:6c:52:76:0b:e6:17:40:5a:51:da:04:87:18:67:5d:ac:
d2:26:8f:cd:5b:59:4b:5f:05:80:47:7f:11:8c:79:78:70:a0:
63:f2:a7:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:44:48 2025 by rpki-client