Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: FaaLi2ebaGAsDikxxHusdBL/mEfSSqU5fLa2pUL5IIU=
Subject key identifier: 50:6D:E9:C6:44:84:CC:A1:24:C2:5E:9F:20:EC:BD:C4:78:13:18:1E
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 0198D65FC52135F27C566E4E30F5DF5E62AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 1357
Signing time: Sat 23 Aug 2025 10:00:57 +0000
Manifest this update: Sat 23 Aug 2025 10:00:57 +0000
Manifest next update: Sun 24 Aug 2025 10:00:57 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: oBxNNJemDcNtM/AemrXgr3urhUqtnZTNEHEm0Al7QTU=)
2: ogQz1j5jLQsKEpzhS2JSyEZnZ6I.roa (hash: B7xqxcI+bkCsaT71C5rhEWIjLfcjAKzC1lxv7kehuvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:c5:21:35:f2:7c:56:6e:4e:30:f5:df:5e:62:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: Aug 23 10:00:57 2025 GMT
Not After : Aug 24 10:00:57 2025 GMT
Subject: CN=506de9c64484cca124c25e9f20ecbdc47813181e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:8b:2b:ee:94:80:7e:33:d2:fe:26:8e:67:13:
d8:d5:3f:38:0d:de:13:7b:02:a4:8a:92:cb:a3:29:
d2:8e:aa:fc:40:c5:68:99:9b:42:53:d5:46:37:48:
4d:24:f5:6e:d8:1a:cd:63:a8:cd:95:70:31:a0:0d:
3d:de:bd:41:9b:d0:61:04:35:bf:fe:ce:83:8e:d6:
78:cb:30:7f:e9:93:eb:1e:29:c1:e3:03:fb:c2:58:
cb:60:2d:0d:a1:cf:63:00:11:a6:31:28:3d:6e:3a:
df:7b:f3:89:9a:5c:41:30:d4:d9:0a:3c:2a:3d:38:
da:e3:dc:3e:db:cb:8b:3b:a0:b0:17:51:fe:2b:e0:
e4:de:14:39:1f:4a:51:ba:2c:17:7a:4c:cd:bd:02:
f6:55:5c:66:f0:55:7f:2d:4b:ac:96:16:bd:ec:ab:
f1:72:83:38:39:83:71:0c:c1:36:e8:34:32:7a:36:
5e:fe:81:46:03:0c:b0:32:a4:47:f6:28:77:e0:66:
3b:c0:1c:1a:7e:9a:23:fb:f3:13:5f:36:bf:ff:5f:
b5:c1:20:3f:26:ef:de:0d:51:a6:ce:d3:98:e3:67:
e2:3b:97:b3:88:7c:d3:67:06:d7:05:86:9f:2e:b6:
75:d3:89:a8:ab:95:78:b9:84:2a:72:6e:ce:87:e4:
51:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:6D:E9:C6:44:84:CC:A1:24:C2:5E:9F:20:EC:BD:C4:78:13:18:1E
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:ff:2b:e5:d0:8e:67:e7:42:84:ab:cb:b5:5f:60:d9:21:28:
e3:48:e0:ab:0a:1a:42:90:7f:90:2b:22:7e:d1:f1:65:ea:7f:
9a:c9:06:f0:18:ac:10:b3:e4:77:a0:8e:d3:f4:f4:9b:c0:92:
47:75:d2:13:77:ee:7e:11:f4:d9:bf:9b:2d:b3:bc:9e:da:26:
aa:13:3d:cd:8b:a9:ee:57:fe:a9:ae:38:04:a1:30:84:bf:b5:
cd:8b:20:95:9a:33:37:d6:f9:21:8e:6f:80:23:64:ff:f8:84:
3b:c7:53:d7:08:92:f6:53:81:c2:b3:01:39:a9:ec:02:79:13:
97:ec:4c:59:1d:97:6a:5e:fd:ad:d8:21:6f:ea:7a:71:ef:32:
0a:fb:2e:e6:a3:09:ea:16:7f:49:ae:33:e8:ec:71:51:66:e5:
d2:01:9f:2b:c9:f6:a5:a8:bb:07:7a:31:54:f2:b0:85:81:de:
7b:c4:57:4b:0a:52:10:44:26:50:de:ab:99:4f:c2:f7:48:29:
aa:79:84:7a:ef:2f:01:cf:bc:82:6b:3c:cc:a7:f2:b9:e9:eb:
09:69:2c:07:54:7c:58:89:2a:4f:97:78:77:1a:b5:22:a7:97:
84:2e:d4:ab:c2:0c:c0:df:eb:4d:04:7c:1f:d6:27:b5:f8:bc:
d3:1a:ba:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:09:29 2025 by rpki-client