Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
File: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft (raw, json)
Hash identifier: QuKAXlG+k64ViiKSebdcnKpjzS84LNIhV/BP2fBMRl4=
Subject key identifier: 6D:29:16:51:07:E4:EC:E6:1B:BD:48:11:5E:47:25:54:D4:45:F8:18
Authority key identifier: DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
Certificate issuer: /CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Certificate serial: 019A00A33D1C848F8B43C696E7411BE8832B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
Manifest number: 0526
Signing time: Mon 20 Oct 2025 08:01:29 +0000
Manifest this update: Mon 20 Oct 2025 08:01:29 +0000
Manifest next update: Tue 21 Oct 2025 08:01:29 +0000
Files and hashes: 1: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl (hash: 719q2dRE5UwXHHyh779t4p0aaGAqdTt0Jy4Msn09Yww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 08:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:a3:3d:1c:84:8f:8b:43:c6:96:e7:41:1b:e8:83:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Validity
Not Before: Oct 20 08:01:29 2025 GMT
Not After : Oct 21 08:01:29 2025 GMT
Subject: CN=6d29165107e4ece61bbd48115e472554d445f818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d3:43:f2:41:5e:a0:a8:36:5e:b2:f4:2c:f0:
21:f1:68:53:cd:d8:bd:df:09:ca:fc:a9:28:35:c7:
cf:32:66:fc:ba:6a:fe:49:1c:6c:de:e1:a0:8a:01:
b0:dd:87:5f:ea:25:f7:16:70:e2:cf:a9:a8:31:2c:
18:30:02:24:96:07:86:08:f1:54:6a:97:63:bd:cf:
76:32:58:e4:f4:f3:fa:fe:69:fb:a5:73:36:8e:fa:
2a:3f:cb:3b:20:53:cd:25:c2:0e:41:26:c1:f7:71:
7d:4d:98:00:7f:35:64:63:25:ce:f9:94:a7:0a:64:
0e:d0:0e:5c:21:8c:56:a0:d9:8c:84:c3:4f:d4:73:
a4:2e:3e:74:73:74:8f:4c:49:ba:ab:12:91:a9:3a:
14:2d:f6:ee:bb:57:8c:54:49:c6:45:c0:bc:e4:1a:
6c:64:69:50:fc:6d:2b:6c:f9:bf:8c:bf:34:b7:24:
08:f8:5e:83:61:aa:57:9d:18:5e:a7:a4:ee:17:6e:
b3:20:dc:59:49:5f:8d:4a:56:3b:1e:5d:dc:2a:81:
ab:1e:76:1a:b6:aa:dc:3f:9e:bf:11:c1:ce:95:2d:
b0:16:ae:bb:dc:39:7b:97:74:25:4f:a3:33:82:14:
16:6b:67:17:6c:ff:12:67:2a:1d:a6:e3:a3:97:1c:
7e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:29:16:51:07:E4:EC:E6:1B:BD:48:11:5E:47:25:54:D4:45:F8:18
X509v3 Authority Key Identifier:
keyid:DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:c3:8a:92:ea:ea:64:7e:7d:16:08:6a:b7:a1:61:74:40:75:
17:2d:ad:b0:76:d2:fe:8a:4d:a8:f2:02:c4:dc:31:ff:f2:91:
f3:b2:58:4f:1d:df:2e:06:22:d9:15:48:94:50:0c:2f:bc:ad:
0b:57:9f:17:45:7e:06:73:d0:59:27:ba:6e:c6:76:a4:1d:ae:
78:a2:0d:fd:52:ca:c1:9f:09:2f:2c:3c:a4:6e:cd:d0:a1:0f:
fa:28:d9:38:37:a0:b4:a1:da:5a:03:55:db:d4:66:f4:b1:14:
d8:68:89:ee:40:81:55:3e:c0:df:20:89:01:00:1b:78:72:8c:
b5:9a:36:d0:8c:cc:81:b7:0f:13:56:6b:2f:37:25:fd:23:ec:
70:9e:78:3e:54:68:ae:91:93:fd:d8:d3:fc:ef:be:7f:f4:9b:
7f:7b:af:65:63:9d:d7:77:6d:7e:2b:dd:3c:88:f6:7b:9a:43:
a8:88:75:2f:b2:ae:f4:e9:1b:17:82:8b:e8:c1:1d:36:02:29:
35:ab:18:21:30:d7:74:48:98:ab:17:2f:f9:0b:67:80:fa:d5:
ac:5a:d0:bb:6a:c9:c6:2f:09:79:70:bd:d6:69:3b:81:37:59:
d3:44:6e:b3:68:b9:05:8d:a7:82:40:24:4f:e4:32:fd:05:27:
a1:35:2a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:33:42 2025 by rpki-client