Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
File: 2IUFXXA5jPDHLM6sXlga1A8gPvw.mft (raw, json)
Hash identifier: FlIJi95qqcKlXNojITnijdJfjfN4lNxpO8ay69U5eV0=
Subject key identifier: 27:5C:F3:45:B1:A8:5B:5C:CF:F3:78:6C:E3:90:53:52:25:5D:A9:4B
Authority key identifier: D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC
Certificate issuer: /CN=d885055d70398cf0c72cceac5e581ad40f203efc
Certificate serial: 0198D54E9EAF8340A8D8F532C705134E6E70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
Manifest number: 0E13
Signing time: Sat 23 Aug 2025 05:02:36 +0000
Manifest this update: Sat 23 Aug 2025 05:02:36 +0000
Manifest next update: Sun 24 Aug 2025 05:02:36 +0000
Files and hashes: 1: 2IUFXXA5jPDHLM6sXlga1A8gPvw.crl (hash: JMrlJ1bnSueujYx2IgO5aLG/P9JQ9wJYurpRdB+nXmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:9e:af:83:40:a8:d8:f5:32:c7:05:13:4e:6e:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d885055d70398cf0c72cceac5e581ad40f203efc
Validity
Not Before: Aug 23 05:02:36 2025 GMT
Not After : Aug 24 05:02:36 2025 GMT
Subject: CN=275cf345b1a85b5ccff3786ce3905352255da94b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a7:c7:71:2a:8f:0c:8a:3a:0f:a4:23:07:16:
ed:58:38:5f:40:68:2f:5a:cc:28:41:bc:c9:51:e6:
00:1b:52:ae:8f:12:24:23:f6:78:8a:82:35:73:f3:
98:f0:81:38:4c:71:3d:71:f6:89:14:82:f9:e6:3d:
29:6c:b5:f2:15:58:aa:0a:db:5f:49:14:ef:01:be:
7f:7a:cc:c3:31:30:33:ab:d0:de:8b:7c:73:0a:ee:
29:44:df:e6:12:5b:78:97:07:7c:52:31:0c:52:d0:
73:86:5e:33:22:fb:96:4c:bc:80:8b:9d:ef:1e:2d:
62:db:95:f1:61:0e:b6:b3:a3:7d:2c:31:17:81:f1:
33:53:67:47:1a:ee:aa:7f:8d:d1:8d:de:81:fc:22:
5c:89:94:22:d1:da:4b:7c:1c:72:9d:4c:17:21:7d:
f2:2c:15:73:65:19:6d:56:8d:1b:b1:c0:ef:4a:db:
34:7e:9d:a6:a8:8e:89:f3:47:17:da:d5:8a:1d:84:
11:d8:3f:eb:f9:1a:c0:4d:05:6a:c9:d4:ca:94:70:
45:b3:19:a4:28:06:63:a1:a0:2d:b5:5c:4c:04:32:
3a:6c:94:a6:b6:c2:90:50:80:68:d2:f9:20:b2:aa:
d5:37:29:96:cc:2c:83:c5:51:c9:a5:f1:65:80:e9:
24:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:5C:F3:45:B1:A8:5B:5C:CF:F3:78:6C:E3:90:53:52:25:5D:A9:4B
X509v3 Authority Key Identifier:
keyid:D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:8c:8c:84:96:6f:40:3d:f8:b9:f8:97:e8:4a:e9:de:50:dc:
ab:f7:37:82:55:f4:d2:8b:0e:b0:14:f2:68:79:39:6c:81:60:
ec:06:6b:33:28:f8:24:21:06:4a:c5:8d:f6:1f:bc:04:42:18:
9f:e9:7a:86:d4:47:e6:6d:6d:7f:f3:61:44:1c:51:d9:f5:82:
f1:e6:67:f3:2a:70:28:fd:69:23:59:bb:fb:ff:30:1f:34:b5:
dd:85:42:0e:59:95:26:d8:71:e5:aa:3f:3d:7e:5e:dd:f2:fa:
b2:47:61:1c:47:a2:65:cf:f1:a0:30:da:da:e5:fc:fc:c8:78:
6d:01:eb:02:e5:7f:4d:ce:12:cb:59:55:a6:16:09:bc:c0:c2:
c7:51:06:63:08:80:f4:98:87:84:f3:a1:b0:2a:ed:a8:43:ff:
1f:a2:5c:5a:12:65:b4:fc:1d:54:8d:38:55:7d:31:ad:8b:7e:
ed:98:6f:a9:2a:fa:12:a8:45:74:3f:e3:d8:d1:56:17:5d:24:
66:73:7f:aa:7d:0f:96:2d:36:23:1a:36:b3:7e:86:7b:da:8b:
a8:bc:45:a4:44:6e:2f:ec:bc:9c:41:4f:3a:2e:35:86:05:8b:
01:69:6c:38:f6:4b:92:5f:ea:91:ce:c6:30:39:80:7f:88:fb:
3d:fa:24:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:43:41 2025 by rpki-client