Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
File: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft (raw, json)
Hash identifier: u8LxFG9ew0gt5W6Pwbf/8fchUqqv8U/U1C6pTATQqPI=
Subject key identifier: C6:AD:6E:F0:A5:19:BD:5E:FE:16:7C:05:7E:95:E3:98:A3:DF:79:5E
Authority key identifier: D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
Certificate issuer: /CN=d97a77930122879a766470df8d660c98442a9932
Certificate serial: 0198D5BBEE881BB501BD64BA4B91AE2E7CEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
Manifest number: 0122
Signing time: Sat 23 Aug 2025 07:01:59 +0000
Manifest this update: Sat 23 Aug 2025 07:01:59 +0000
Manifest next update: Sun 24 Aug 2025 07:01:59 +0000
Files and hashes: 1: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl (hash: h2LGqZMEwrCbG1wJEPmlmqIqZR8JmFpxp3o0MGx29lE=)
2: HVaoDMotksZf76Ju74TL_0gQqQw.roa (hash: 6Wt6s6Ldu4cKxpBhxwlW4dbeWtmB6JUQE70sEXR7L0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:ee:88:1b:b5:01:bd:64:ba:4b:91:ae:2e:7c:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d97a77930122879a766470df8d660c98442a9932
Validity
Not Before: Aug 23 07:01:59 2025 GMT
Not After : Aug 24 07:01:59 2025 GMT
Subject: CN=c6ad6ef0a519bd5efe167c057e95e398a3df795e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6e:71:63:52:ee:04:c0:50:2a:17:0c:e4:ba:
95:e9:6d:e7:48:b4:4d:2f:d9:dc:70:49:1e:07:03:
61:cb:20:f7:98:83:29:09:4e:37:7e:58:7d:14:84:
26:55:92:55:a0:04:45:1b:36:63:d4:94:9a:11:cc:
8f:d4:27:04:15:f5:a8:80:fe:b8:d3:3f:4d:47:52:
af:3c:16:df:4b:50:ca:08:46:32:b1:0f:17:ac:e7:
3f:33:35:fe:93:bc:60:29:28:6d:d6:08:90:a6:0e:
72:14:be:63:e5:98:7a:a7:0a:61:ed:76:5f:47:21:
c7:a0:0e:15:29:a5:e6:22:27:c1:89:7a:8a:ff:ba:
54:1e:55:96:05:7e:dc:75:50:aa:a1:ce:4a:65:9a:
21:3b:f7:f7:b6:eb:37:88:35:d0:73:2c:c2:c6:79:
f4:0f:00:97:26:7b:6a:a3:bf:ab:35:6f:80:72:8c:
43:6a:1d:f6:1d:5b:15:2d:a9:ec:d8:47:e6:69:41:
91:dd:32:38:c9:87:c5:aa:0e:c9:4e:ea:79:b0:87:
c4:73:1e:e9:23:a4:dc:f9:aa:e0:e8:8a:6b:02:fd:
4d:e6:d9:59:b1:1f:ea:fb:14:1a:79:5c:11:06:e7:
fe:bf:4a:ab:63:2a:5d:9f:3d:aa:69:31:d9:be:a4:
87:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:AD:6E:F0:A5:19:BD:5E:FE:16:7C:05:7E:95:E3:98:A3:DF:79:5E
X509v3 Authority Key Identifier:
keyid:D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:dc:01:40:0d:23:70:b3:28:20:1a:9c:24:ca:5e:49:0c:50:
ce:41:c5:90:c8:0b:92:e1:38:21:1d:0c:87:06:3a:b2:20:ca:
ed:20:b5:19:66:6d:cf:55:f8:0c:2f:a1:e0:ab:ee:9c:75:ee:
88:5e:55:09:f8:de:bf:26:b1:81:82:1a:69:b7:5f:e3:d5:da:
33:fc:f3:fb:09:10:1b:ae:ea:3f:ad:9d:4c:0a:d9:c5:00:0e:
0d:41:41:6e:43:79:21:78:da:7f:9e:96:7f:86:e2:a1:4a:62:
cc:58:55:01:f6:82:cb:b3:e3:ae:bf:9b:03:16:d9:db:d0:f0:
93:1d:aa:9d:39:08:1d:7a:11:88:95:b1:39:1c:93:e1:e2:3d:
6d:62:35:e6:b3:f6:37:f5:55:2f:7f:2f:a6:2f:64:0c:85:ed:
64:80:4b:dc:be:2a:e5:46:d5:4c:23:e9:a8:97:b4:55:48:25:
fb:b1:cc:c1:82:94:10:8a:63:a0:c1:ca:e0:bb:d8:3a:db:bf:
23:bc:48:02:d9:3c:a2:0d:22:16:53:61:44:08:0b:8c:08:9e:
38:fc:51:76:40:10:88:a5:27:88:35:01:4b:67:59:8f:c8:c2:
bc:67:d9:87:b2:fb:3d:3b:89:6a:0c:02:bb:be:1e:f6:ac:b3:
4e:5e:b9:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:38:56 2025 by rpki-client