Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
File: 2My6s6LYEMX6KdzanVAgJhbvueg.mft (raw, json)
Hash identifier: lXgSEo9GAykCUZ8n/vrDJlY8C20mUm361El+7tTOAvc=
Subject key identifier: 0E:EF:24:90:CB:BD:8C:D0:3D:EE:15:99:A7:0A:21:9A:52:B5:D1:94
Authority key identifier: D8:CC:BA:B3:A2:D8:10:C5:FA:29:DC:DA:9D:50:20:26:16:EF:B9:E8
Certificate issuer: /CN=d8ccbab3a2d810c5fa29dcda9d50202616efb9e8
Certificate serial: 0198D7A8C24ADA6D32846749C3588D3DDE7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
Manifest number: B5
Signing time: Sat 23 Aug 2025 16:00:17 +0000
Manifest this update: Sat 23 Aug 2025 16:00:17 +0000
Manifest next update: Sun 24 Aug 2025 16:00:17 +0000
Files and hashes: 1: 2My6s6LYEMX6KdzanVAgJhbvueg.crl (hash: rq3/TaD//Ug2FzUoOe9R0vdbrbeTeM5axpoirXEQu84=)
2: KOSoig2OcfAUHpP5S4cPuKe0-qQ.roa (hash: h7WOd3FoOyE3z3s6Su64D7SfxJalvzda0YokBEiVb1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a8:c2:4a:da:6d:32:84:67:49:c3:58:8d:3d:de:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ccbab3a2d810c5fa29dcda9d50202616efb9e8
Validity
Not Before: Aug 23 16:00:17 2025 GMT
Not After : Aug 24 16:00:17 2025 GMT
Subject: CN=0eef2490cbbd8cd03dee1599a70a219a52b5d194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:43:c5:e3:68:aa:14:84:8d:6e:1b:c5:ef:13:
8c:e9:cf:1a:20:a1:d5:8e:4f:53:9f:36:be:83:f4:
8e:a0:56:c0:78:b4:72:f5:de:b4:89:19:16:2c:5e:
d9:2a:5a:c0:a1:17:00:96:d7:33:5f:1e:6f:eb:e5:
7b:19:bf:42:e2:0d:8a:01:b8:d6:76:96:52:34:07:
bd:84:46:0f:a9:74:12:d6:8c:f9:6d:2f:f2:26:b8:
04:a1:22:46:ea:49:b5:67:cf:ab:16:43:9a:92:b6:
a9:08:00:b3:3f:8e:70:a3:cf:85:f0:30:07:65:ac:
f1:02:7b:ff:3c:ea:6d:c7:e9:71:ef:10:77:c2:b3:
ff:c6:3f:55:62:52:0e:df:be:b8:2b:7d:8a:08:d3:
65:47:da:d1:e1:a9:23:c6:b9:72:4d:49:16:12:85:
72:2f:35:f0:97:26:c3:44:1d:b6:79:e1:b1:12:4f:
e8:25:a5:15:4a:e1:6a:16:0e:49:76:fc:64:f6:46:
87:52:01:a6:36:63:93:ed:62:1a:43:66:8a:1b:21:
55:cc:6b:9a:9e:c2:b5:40:3d:3d:a1:cd:d2:af:92:
f0:da:87:2d:87:af:42:6b:e3:96:55:4c:a6:00:d6:
34:5c:48:f1:95:cb:a0:f2:af:07:51:37:c7:71:d8:
ce:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:EF:24:90:CB:BD:8C:D0:3D:EE:15:99:A7:0A:21:9A:52:B5:D1:94
X509v3 Authority Key Identifier:
keyid:D8:CC:BA:B3:A2:D8:10:C5:FA:29:DC:DA:9D:50:20:26:16:EF:B9:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:a0:46:2b:36:d0:f4:29:11:cb:ac:13:78:86:ca:a0:79:aa:
25:c8:32:b2:c7:4f:7e:ed:f2:ae:f4:3b:7a:25:7b:16:8e:97:
60:43:80:08:b8:f4:df:3c:39:2f:ec:47:89:6f:1d:19:51:1c:
95:df:c6:5b:95:6c:2c:df:0a:f3:93:a7:b7:3b:af:29:18:f3:
3e:21:84:f7:3f:8c:dc:4b:61:15:58:dc:f2:a7:1f:e8:37:15:
d4:63:d2:d1:f7:47:33:7c:47:c2:fb:29:b4:9d:c6:4d:ea:7a:
54:94:f2:f4:d3:8f:de:c0:2a:70:39:f2:40:8c:40:85:e1:12:
5a:ee:b5:98:00:b8:8e:79:70:50:91:42:2c:82:d0:ee:c3:70:
18:2f:b0:a5:e8:16:25:ed:72:35:1e:f4:6f:05:87:41:a0:81:
1f:35:3f:6f:b2:ed:21:b8:1a:48:f4:c7:ce:fb:6c:43:40:6b:
90:b0:2f:b0:7e:f2:cb:53:b3:96:3c:d6:6d:73:50:80:a2:73:
a8:07:af:0e:8c:02:d6:78:b4:01:59:c8:98:1b:ec:10:ce:03:
8c:60:1f:a5:f2:7b:01:7d:63:39:45:82:5b:29:a9:96:2c:a6:
25:22:dd:54:65:ec:c8:5a:74:c4:82:57:56:79:83:8c:63:45:
69:c3:4d:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:33:22 2025 by rpki-client