Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
File: 2wU2Dphzgl911nHa8WJKUumFOQw.mft (raw, json)
Hash identifier: tkmDHiTD5uct3p1MPoQX12PL5c6rAAZRwOsR9lsRtuk=
Subject key identifier: FF:84:74:9B:6D:CE:16:90:56:98:BA:C1:C5:27:E8:9E:7E:6B:4C:4E
Authority key identifier: DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C
Certificate issuer: /CN=db05360e9873825f75d671daf1624a52e985390c
Certificate serial: 0198D5F16DEDCFD3FCDF6DD12FFF60B1BDC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
Manifest number: D2
Signing time: Sat 23 Aug 2025 08:00:25 +0000
Manifest this update: Sat 23 Aug 2025 08:00:25 +0000
Manifest next update: Sun 24 Aug 2025 08:00:25 +0000
Files and hashes: 1: 2wU2Dphzgl911nHa8WJKUumFOQw.crl (hash: f+PVcECWWNsDHjT8QQm4hwmiPrQm1BIWkczaPDea9wI=)
2: dT_BFnqui1qPfatUh1gogWMYRho.roa (hash: Znmqpd0eQxFE3KRHa1gq7DMVat4pWLiZVr8QQEm1djI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:6d:ed:cf:d3:fc:df:6d:d1:2f:ff:60:b1:bd:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db05360e9873825f75d671daf1624a52e985390c
Validity
Not Before: Aug 23 08:00:25 2025 GMT
Not After : Aug 24 08:00:25 2025 GMT
Subject: CN=ff84749b6dce16905698bac1c527e89e7e6b4c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:80:07:70:96:77:f2:e5:e0:e5:30:5b:ec:8c:
33:96:01:f7:e7:59:bc:b2:f6:68:30:a2:45:29:a8:
ff:c2:91:08:9f:7f:08:f4:fc:f1:54:4c:48:ad:23:
c0:7f:4d:f6:96:c3:43:ad:7e:e6:03:7c:69:20:74:
4d:9f:e3:e7:bc:34:ce:34:58:8c:cc:48:e2:35:1b:
6b:c7:72:31:44:7b:ba:99:5d:be:b4:c4:3c:30:6b:
7e:97:7c:f5:e4:bb:24:e5:34:74:1c:b9:13:b9:47:
8c:c3:91:01:d8:cf:5d:5a:7e:59:89:26:77:f7:d0:
8e:8d:a1:a0:b1:e0:42:da:70:68:fb:ca:15:6e:ed:
d0:d3:12:3e:07:b2:00:fc:3a:ec:c3:59:f1:53:e2:
7b:1a:4f:cc:8c:d5:a3:11:f0:c0:52:c8:e8:5b:70:
77:88:04:2d:71:95:a4:9e:d2:cb:57:36:b1:ed:ef:
67:ab:b9:14:a6:12:60:78:5c:d5:56:75:c0:6b:f1:
02:ef:bd:d6:31:fa:41:ad:44:d9:6e:2e:34:d5:e7:
1b:e6:b5:c9:0a:0b:f4:3f:a2:5c:cd:7d:4a:1a:22:
a3:f7:62:ac:b5:02:8f:17:2e:4d:b8:ca:51:b3:5e:
94:88:a8:3e:7c:61:ba:c3:67:85:b6:42:79:ba:a9:
d3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:84:74:9B:6D:CE:16:90:56:98:BA:C1:C5:27:E8:9E:7E:6B:4C:4E
X509v3 Authority Key Identifier:
keyid:DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:13:09:dc:a1:a5:06:d0:29:ad:15:a0:09:dc:7c:b3:b5:55:
2b:93:49:b1:5c:f8:e3:fc:14:4e:d1:c2:81:3f:6d:b5:83:60:
6e:47:3c:e7:10:2c:90:1d:8b:c0:9a:54:c2:67:b1:5b:ce:25:
3e:f0:e0:96:1f:7c:65:0b:2c:d9:8e:b3:ab:15:a1:32:5b:4d:
95:1a:b1:a7:ba:8a:81:6a:15:2e:aa:b7:02:96:0f:fc:bd:a9:
6a:84:d7:bd:e3:fc:12:70:39:6f:c7:3c:42:26:68:2f:9b:2b:
70:b5:31:39:b4:c8:03:62:89:c3:97:ce:7e:c5:46:23:3e:22:
5e:e9:36:62:62:6b:c0:70:33:66:d3:64:98:12:03:bc:f9:2b:
eb:0d:1d:06:15:78:35:f9:72:d4:ad:a7:cc:6d:f7:1c:e9:e1:
ed:e7:94:e4:7a:c7:cc:ac:72:fc:88:3a:1f:d1:88:41:94:b3:
99:83:79:d9:27:51:aa:d5:f8:a5:e5:7a:f2:ca:0d:df:19:2e:
e7:18:cb:77:59:56:db:34:ed:36:fd:10:6d:19:5a:2e:e0:6a:
1d:fc:47:07:93:13:12:d9:4d:10:67:50:2e:88:6b:58:0b:c9:
4b:ca:4f:87:84:68:f3:72:ce:eb:cf:8d:19:05:79:42:75:aa:
a4:6a:1f:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:59:16 2025 by rpki-client