Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: /hSUrKlGsVmqhfwnIo6slmNG4z/EWxLCt5ugwsy2DI4=
Subject key identifier: 09:3B:B4:87:A7:6F:9F:30:79:6E:5B:81:5C:68:DD:A7:50:22:68:79
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 0198D73B13FA5C82C412EA8F8CACE1A5E805
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 0F5B
Signing time: Sat 23 Aug 2025 14:00:29 +0000
Manifest this update: Sat 23 Aug 2025 14:00:29 +0000
Manifest next update: Sun 24 Aug 2025 14:00:29 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: kpA6u/vtXAAZ+8kkgLykFpxgyWxhJfo1kkWPyj5hTIQ=)
2: fvccoh-XRGUydolEQwVKUg__llM.roa (hash: MESTegxG3uX73jrknXUqcZY7a9Gll4oI6clWX78ISS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:13:fa:5c:82:c4:12:ea:8f:8c:ac:e1:a5:e8:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: Aug 23 14:00:29 2025 GMT
Not After : Aug 24 14:00:29 2025 GMT
Subject: CN=093bb487a76f9f30796e5b815c68dda750226879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ab:3b:32:54:10:4b:9d:c5:05:06:98:57:d4:
49:01:ff:dc:70:19:86:68:04:09:97:58:e7:83:13:
2e:04:30:86:1c:86:db:c0:14:db:25:6b:77:3d:96:
a3:b1:dc:20:50:d0:59:00:7b:30:b4:bf:df:7b:c5:
fc:a2:98:44:11:50:1f:82:6d:2b:3b:b0:d4:81:d3:
9f:2b:26:90:0b:ce:d1:01:ac:e8:c7:c9:f9:26:6d:
15:6a:51:7d:6b:18:30:67:3c:07:e1:ec:58:b6:ce:
25:7d:9a:5a:63:00:b3:b8:49:98:61:d6:86:31:d8:
2d:84:39:ac:3c:45:d9:a9:20:79:c2:7d:e4:8a:24:
a3:ed:cf:12:1c:83:f8:75:31:4e:c5:ae:e7:04:af:
43:d0:a9:76:05:09:54:44:fb:2f:ef:fe:1f:7e:08:
98:19:e9:06:87:28:d3:79:ea:6e:97:5c:9c:62:a2:
41:7f:86:fa:a6:f7:86:4d:93:3c:ef:c0:33:47:3d:
7a:af:ed:4d:df:16:c1:16:22:dd:e8:66:5e:3e:16:
72:8e:e8:94:9c:d2:83:28:13:fa:c8:cf:df:a9:ef:
a1:48:fd:56:70:9d:be:1a:6d:46:d0:a2:ef:27:c4:
23:a8:91:c7:26:68:7f:f9:fc:26:a8:4e:1d:2d:0d:
e4:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:3B:B4:87:A7:6F:9F:30:79:6E:5B:81:5C:68:DD:A7:50:22:68:79
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:a6:df:2b:4a:60:50:7b:eb:96:52:ea:a4:94:95:c8:83:84:
51:78:4a:5b:a1:b3:04:b1:5a:85:21:b3:cf:02:8d:98:42:9b:
6f:bc:f1:03:10:fe:4a:9b:18:86:cf:93:f3:fa:ea:c1:d2:5f:
32:e2:56:c5:26:fd:f2:58:af:a2:86:2e:6e:0c:13:48:f9:38:
d8:09:ad:a0:31:7a:94:b7:a6:5c:e3:90:34:9f:ad:d8:31:a8:
6e:5c:2e:6f:3b:6d:3b:15:4a:62:90:ee:ea:90:c7:6a:13:cb:
64:f9:c0:f9:eb:7e:cc:b2:31:92:8c:3b:9d:4d:b2:18:37:ee:
5f:ed:82:46:53:23:ee:21:68:c3:d7:a7:ad:95:cc:ad:ee:90:
86:5b:d5:ae:3f:21:f1:cb:e4:8b:15:ca:b0:82:0d:ef:10:0f:
b6:b9:79:30:2b:bc:0b:70:c5:40:59:c3:5f:ee:6e:23:47:a2:
06:8e:e9:89:46:1d:dc:f6:73:a4:1c:71:56:8c:03:19:d1:f4:
3b:6c:b6:73:c1:50:52:39:0c:02:0a:de:b8:27:75:51:01:3d:
25:cb:bb:84:5a:fe:23:c9:97:60:f9:95:84:77:ee:9d:2a:a5:
a5:9d:05:d3:37:29:fa:c9:7f:a3:37:08:64:07:46:c4:4c:6d:
1a:05:64:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:06:51 2025 by rpki-client