Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: F9+KYojgU2Rrt41nc10Ra+oj+Zdq3Dsriw7UaPo8oeM=
Subject key identifier: 1D:A9:B0:5D:AA:98:B1:9B:38:F8:58:0C:AF:96:58:61:AE:B4:C3:C7
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 0199FBEB11BE303F551014808176BC4DFB7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 13EF
Signing time: Sun 19 Oct 2025 10:01:50 +0000
Manifest this update: Sun 19 Oct 2025 10:01:50 +0000
Manifest next update: Mon 20 Oct 2025 10:01:50 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: F99l5a9gYNZ/OMSHnSJG1y/2CuVcE3DAAg9WFHQey7Q=)
2: ogQz1j5jLQsKEpzhS2JSyEZnZ6I.roa (hash: B7xqxcI+bkCsaT71C5rhEWIjLfcjAKzC1lxv7kehuvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:11:be:30:3f:55:10:14:80:81:76:bc:4d:fb:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: Oct 19 10:01:50 2025 GMT
Not After : Oct 20 10:01:50 2025 GMT
Subject: CN=1da9b05daa98b19b38f8580caf965861aeb4c3c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:50:dd:cb:54:80:04:46:28:4e:a3:42:cd:65:
f6:ca:d0:96:95:86:7c:a1:d1:13:94:2d:5e:4d:78:
ee:72:5d:bf:01:1a:ea:ed:a7:f7:3d:66:ad:8a:b0:
25:8f:0c:82:14:c1:ea:1f:b8:55:0e:eb:6b:0c:ed:
f4:03:58:bd:23:e4:74:6a:ff:9a:5c:b1:13:0d:0b:
76:46:6b:38:2b:2e:d1:6a:fe:d0:29:fc:1c:f1:e9:
de:66:bf:15:05:3a:90:ee:fa:93:ba:fc:64:65:fc:
1c:52:1e:c6:85:09:d7:2c:f3:69:db:f7:d4:32:2b:
03:90:59:b0:42:03:94:c5:59:8d:f1:36:96:b5:4e:
1e:f0:66:c4:af:6a:e9:bc:d1:94:b7:e8:3c:e1:70:
01:e7:85:ac:44:a2:2a:0d:eb:17:22:e5:68:5a:24:
a0:6e:a1:e5:55:3b:42:18:ab:f2:df:a2:c3:be:03:
9b:a3:79:5f:1a:70:48:58:32:b9:5c:04:ab:d3:85:
57:6d:63:b4:e8:2e:6e:04:16:e1:88:74:25:ca:d6:
e9:93:a1:b1:71:68:ec:a4:99:f3:c0:07:b1:11:80:
a3:dc:16:07:e1:21:38:ff:d7:1a:c2:27:97:4a:92:
78:55:0e:f6:ee:2b:bf:f8:18:35:cf:18:ac:24:6b:
60:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A9:B0:5D:AA:98:B1:9B:38:F8:58:0C:AF:96:58:61:AE:B4:C3:C7
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:89:eb:60:6f:52:ef:c4:f9:05:13:58:20:9e:0d:cc:f5:70:
f6:83:5c:f6:14:b0:4a:ba:e4:75:61:44:45:f8:7c:bb:23:1d:
5b:0a:56:86:3f:36:40:b7:f6:81:c5:16:d9:72:03:70:6a:8a:
34:67:24:3b:b2:e5:34:7b:24:62:63:04:ef:0d:57:15:a1:51:
c0:94:50:19:61:03:b1:fa:6c:0f:d6:54:39:e1:45:c9:2d:35:
a3:c9:42:06:89:27:2e:85:32:11:f8:95:5a:db:0e:e2:e2:1e:
21:c4:71:e1:7f:e2:7e:c2:49:b9:b7:74:df:00:e8:10:1b:fb:
eb:99:42:68:53:7c:1b:80:17:c9:00:7c:6b:8e:05:e8:a0:19:
09:49:69:19:61:0f:0b:9f:f5:a6:78:02:fa:6c:04:00:e5:a8:
8b:58:50:c5:77:9d:25:db:db:a6:bd:97:d1:0a:ad:12:22:fe:
b2:e2:ac:a9:33:b0:01:90:f2:81:cd:09:13:ae:bb:92:31:61:
88:6a:20:7c:03:86:c9:a0:75:b9:5d:7b:d1:85:0f:b9:40:26:
f4:2c:ac:7e:b3:c2:de:61:9b:fe:d4:34:f9:ee:ed:c5:8b:d9:
42:d1:e1:02:c1:9a:87:cb:b5:1d:d6:e1:bb:ed:eb:1e:5e:5e:
d3:cd:8d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:27:06 2025 by rpki-client