Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
File: 2fhm-wqoOicaDLfckDAYjInSPl0.mft (raw, json)
Hash identifier: DjwLMtGDyc4zUEIGrJ5fVgXSRyzPSJnsh4KS8aSFDkc=
Subject key identifier: 91:ED:D4:70:6E:20:3E:8C:70:8F:D3:FA:B8:2A:41:C7:29:2B:3A:06
Authority key identifier: D9:F8:66:FB:0A:A8:3A:27:1A:0C:B7:DC:90:30:18:8C:89:D2:3E:5D
Certificate issuer: /CN=d9f866fb0aa83a271a0cb7dc9030188c89d23e5d
Certificate serial: 0198D5BBDF52302801D3EFAD10F2C2999DC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fhm-wqoOicaDLfckDAYjInSPl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 07:01:56 +0000
Manifest this update: Sat 23 Aug 2025 07:01:56 +0000
Manifest next update: Sun 24 Aug 2025 07:01:56 +0000
Files and hashes: 1: 2fhm-wqoOicaDLfckDAYjInSPl0.crl (hash: Lv5a2/So4YyBQ5oOTsC4AEmkH7mzOib7BoyHdbmyhuc=)
2: vaJcnuFh_402kJ74_w8V8zEZMEQ.roa (hash: zHT9dPUYaVKrJVgWZffBYu4o6dMRl6TWrXRAFSRU0bA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fhm-wqoOicaDLfckDAYjInSPl0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:df:52:30:28:01:d3:ef:ad:10:f2:c2:99:9d:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f866fb0aa83a271a0cb7dc9030188c89d23e5d
Validity
Not Before: Aug 23 07:01:56 2025 GMT
Not After : Aug 24 07:01:56 2025 GMT
Subject: CN=91edd4706e203e8c708fd3fab82a41c7292b3a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e6:f9:9e:37:70:fb:5f:c2:85:2e:90:b8:6a:
06:ff:ee:ea:be:5c:04:cb:e2:95:12:91:eb:43:69:
57:11:b6:dd:f7:fd:e6:d8:28:df:33:36:e3:62:66:
9f:43:0f:f7:23:3e:e5:1a:ac:1b:7f:26:f7:02:23:
95:90:07:87:3a:fd:d7:5a:c9:67:b3:6d:38:08:ab:
ab:32:a5:5e:6f:b0:55:06:15:6b:e6:3b:0c:07:20:
f5:a2:75:e2:c3:88:00:86:81:06:c0:df:e1:1c:16:
1e:db:9d:96:20:6a:9c:29:36:20:d4:fe:83:c8:01:
39:6e:26:3d:42:71:9e:db:d6:e3:bc:dc:21:5c:2c:
e7:0d:64:90:a3:c6:f3:4f:b2:f4:52:a7:1d:c9:90:
02:2c:e2:1b:a1:cc:f1:bb:df:ce:66:fd:ed:23:11:
04:5f:5e:a7:f7:bc:c1:e5:47:11:b6:dc:e4:01:07:
49:26:3f:61:63:98:ba:fe:48:d5:02:57:72:a5:40:
eb:c3:39:e4:53:e2:ca:a7:56:25:a4:54:47:8e:1b:
83:ad:20:80:96:3b:dd:5c:50:2d:21:9c:55:fb:73:
44:89:8d:80:bc:c4:16:03:27:7c:03:3f:ea:0e:87:
d2:3e:59:6b:c9:2a:e8:c5:c1:44:80:e8:3f:c0:2c:
43:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:ED:D4:70:6E:20:3E:8C:70:8F:D3:FA:B8:2A:41:C7:29:2B:3A:06
X509v3 Authority Key Identifier:
keyid:D9:F8:66:FB:0A:A8:3A:27:1A:0C:B7:DC:90:30:18:8C:89:D2:3E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fhm-wqoOicaDLfckDAYjInSPl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5273a4-10c8-40bf-b24f-5c1d5a6992d8/1/2fhm-wqoOicaDLfckDAYjInSPl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:c4:0d:cf:97:b1:40:93:1d:a9:3e:0d:7f:ba:c1:67:b7:9e:
48:60:fc:54:8c:e9:e1:d6:af:0e:f1:de:ab:e9:a9:8e:27:78:
51:54:fc:e5:c0:86:ce:52:08:76:d0:5d:0b:e9:80:74:3e:b1:
f0:04:09:cc:94:ae:12:4e:f2:e7:74:56:a6:28:35:63:bd:d0:
d0:64:e7:75:d6:45:0e:9f:d2:e8:5c:67:f7:9e:14:d6:eb:f7:
ce:21:09:ac:49:00:a9:8a:c8:4b:4e:2c:cb:d8:2d:af:52:c0:
30:db:02:2b:49:00:ce:73:4f:29:4e:58:d7:4e:25:be:b6:3b:
e2:ea:3a:7d:68:43:50:30:71:cc:70:75:c4:b9:d7:ff:fe:1e:
05:7d:ca:2c:88:94:fd:3e:b7:5d:49:95:88:94:44:af:bb:60:
e9:5d:32:fb:1e:48:09:37:9a:25:3b:69:cd:9c:5d:f5:12:32:
c1:ad:96:e2:b5:cc:fb:7f:c4:3d:d5:69:78:3c:97:8d:b5:13:
f9:67:c8:0f:a0:84:1e:28:0b:41:68:5f:76:8e:db:1d:d2:80:
73:cd:bb:81:1d:ac:f0:ad:4b:de:7c:61:84:02:e8:cd:d1:e4:
c2:ba:9f:fe:b1:a3:78:f1:00:3c:a1:11:aa:32:78:1d:95:e7:
17:71:c1:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:30 2025 by rpki-client