Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
File: 2gszzdt5m3vPXT3OAE_bqMPoZP8.mft (raw, json)
Hash identifier: E2z4fval+qmsFR/WqOXpidoq1tXMLq1ZdBfXuJGHGLo=
Subject key identifier: EF:BF:43:25:67:43:92:35:79:34:91:11:C9:6D:01:F5:51:DE:3B:C2
Authority key identifier: DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
Certificate issuer: /CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Certificate serial: 0198D73BB0FDECD4B17EECFF8C7195885CA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
Manifest number: 0CB4
Signing time: Sat 23 Aug 2025 14:01:09 +0000
Manifest this update: Sat 23 Aug 2025 14:01:09 +0000
Manifest next update: Sun 24 Aug 2025 14:01:09 +0000
Files and hashes: 1: 17FLk26rZWNpnvEJucbEAG-7zqY.roa (hash: qMmpcRGKwOqOR5+GsVwNkgRbdBAdNorVpaMiale+nXI=)
2: 2gszzdt5m3vPXT3OAE_bqMPoZP8.crl (hash: UUZ0eFioLI++HT8ZWY6Fcf9Z7Scdq74O7XE97T4nEKM=)
3: bBGzNd5qGUUIPYH3-5zWMnwwyJg.roa (hash: 290Z2J6Jo9xanYpdqpciKr53wSmtU/PW4k3Qs+NnOTs=)
4: k29cbE30TGhu-1q8rRu7-jpqTg4.roa (hash: 9mQL8HUgIQzEZ7MXmoS/sUavd/K/UaaalJ5/ztoLSTk=)
5: s7mUu7WrVHVPJEBCCdi0H3bHpis.roa (hash: ExGJpFM76OJZURK1GFJNiBKKffY4pIrBrUBBm9tcC8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:b0:fd:ec:d4:b1:7e:ec:ff:8c:71:95:88:5c:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Validity
Not Before: Aug 23 14:01:09 2025 GMT
Not After : Aug 24 14:01:09 2025 GMT
Subject: CN=efbf43256743923579349111c96d01f551de3bc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:70:66:02:a3:6a:2d:d1:2d:6c:6b:5f:02:56:
ea:59:3d:01:6d:c6:40:8b:43:82:a6:14:38:92:44:
54:2f:53:1f:7e:0c:d9:e8:b6:f5:3c:e9:c2:35:49:
38:1a:a2:43:91:e5:87:8a:09:bf:d2:e2:1e:7e:30:
dd:1b:23:30:43:76:a7:de:63:b5:34:02:49:20:ef:
a4:78:1e:50:ad:f3:5d:86:4d:6a:61:16:ce:b7:d3:
44:e5:f8:d5:cf:93:e2:a6:a5:89:8d:51:73:65:f6:
c1:45:82:55:95:17:d5:9c:3c:18:96:59:a3:b8:4d:
65:d6:27:40:0f:ef:1e:dc:7b:94:81:25:b7:f6:08:
b3:42:a4:21:a7:bc:f4:36:8b:6b:c0:55:c1:44:ff:
81:c5:c4:2a:9c:2a:08:c2:b6:67:54:dc:ab:73:71:
69:64:8e:27:25:f2:d8:eb:fd:8d:91:f0:50:32:fa:
8a:8e:0c:60:e0:bd:d0:fb:fa:3b:bf:9d:48:c5:20:
89:73:3c:52:c6:bf:af:e9:a3:54:1c:32:da:8e:a9:
2f:6d:f9:b4:96:6c:ab:64:66:d9:19:4b:fe:84:9e:
47:91:28:13:77:6a:94:0b:d7:67:9d:b6:72:9f:34:
08:5b:1b:3b:82:42:ff:47:16:b7:f0:59:c3:0b:f3:
6f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:BF:43:25:67:43:92:35:79:34:91:11:C9:6D:01:F5:51:DE:3B:C2
X509v3 Authority Key Identifier:
keyid:DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:13:c0:a0:b4:b5:46:a0:43:5b:ba:45:66:2d:7b:21:0c:11:
8d:9c:2c:52:69:4a:1b:40:c2:de:5c:b9:b8:8f:83:fa:d7:22:
02:a7:fd:9a:20:8e:bd:f8:8b:9c:7e:66:f6:44:21:a8:84:b9:
fa:52:f4:db:83:cc:56:2a:5e:fe:20:55:37:d0:5e:40:b1:fd:
03:b3:c7:06:81:f0:1e:44:71:f6:7c:76:45:62:70:64:34:2e:
ca:4d:97:0d:75:ba:54:93:25:56:fa:1b:31:d2:79:7c:d0:d3:
3f:17:61:c8:28:06:7d:67:16:ef:2a:17:b8:d3:3f:a8:f8:ac:
d9:29:90:53:66:c6:8f:7f:2c:f8:05:ce:9b:6f:59:01:d5:1b:
61:16:65:68:da:91:fe:e5:18:ba:f5:28:06:a6:7f:1c:f4:77:
0c:84:04:a6:71:d2:a9:25:9a:c2:00:d9:b5:dd:90:ef:45:26:
76:37:c1:e1:6a:c1:39:eb:c5:fa:72:0d:80:04:d8:96:73:db:
f8:ed:52:c0:b8:0a:78:0d:6a:32:6b:2e:5f:fa:78:e3:d0:65:
fb:52:72:da:ae:fe:b9:72:90:05:ec:0e:3f:aa:b6:5c:4b:25:
c6:a4:05:ab:c6:4d:70:8f:81:58:fa:80:71:e8:6f:ca:b1:22:
5f:03:59:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:16:33 2025 by rpki-client