Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: R18YvxSk9VIKrM9jX1crzJ1Sd8s5GJVhpm5rd/21dPc=
Subject key identifier: DA:15:7C:43:D3:26:F1:13:1C:7E:70:9C:13:CB:37:88:A6:3B:39:35
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 0199FC58A3F0DA4881F5B51CC14CDF6ED75B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 12:01:31 +0000
Manifest this update: Sun 19 Oct 2025 12:01:31 +0000
Manifest next update: Mon 20 Oct 2025 12:01:31 +0000
Files and hashes: 1: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: XzNO4YGYii8g5fMVMJZ58MOp4uAJNuM/rhJpkNoAv+M=)
2: Lr1Je63vs8PyvkKI1_N9un3D4qE.roa (hash: hbRmpQBdQ4b6GdZPWppZ6a4wJHdosMiH1PY+13rdPiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:a3:f0:da:48:81:f5:b5:1c:c1:4c:df:6e:d7:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Oct 19 12:01:31 2025 GMT
Not After : Oct 20 12:01:31 2025 GMT
Subject: CN=da157c43d326f1131c7e709c13cb3788a63b3935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1d:c8:82:0f:b7:32:6e:df:12:60:d4:af:b8:
61:f4:27:7a:e5:52:b3:29:29:7a:23:b0:d6:f3:76:
e3:4c:18:8e:fa:86:8c:11:47:81:28:eb:af:55:f6:
aa:91:3e:2f:7e:ab:02:50:72:37:45:93:e4:c8:de:
78:95:94:58:7b:37:80:e6:e9:07:f2:27:67:d2:8a:
4d:1c:9f:33:ed:68:71:64:9f:b8:ea:df:d9:75:6f:
b1:7d:7e:2b:9f:00:6f:43:f4:a7:16:b2:c1:af:41:
e5:f9:e9:fd:48:69:3b:65:86:00:e9:cc:a3:5d:4a:
64:c3:15:69:77:61:64:0d:de:09:fd:35:99:c9:90:
f8:5e:d6:a0:20:da:76:0a:99:94:9e:b0:68:62:58:
3e:76:52:40:45:dd:61:9c:31:0b:2d:4b:b4:41:ab:
76:03:04:55:81:7f:95:47:30:07:d9:d4:08:8f:3f:
60:eb:8f:85:11:0a:c7:5a:05:fa:49:86:ac:15:1a:
92:29:4f:64:48:26:ca:d3:a4:bf:0b:a2:5d:86:48:
e4:52:b8:fa:f9:79:1f:a8:0b:7c:cb:50:71:27:5a:
28:7c:d4:4a:5b:5f:92:45:fa:b6:b8:ac:be:78:37:
5a:f9:13:5f:33:2d:4e:e0:b4:00:b6:e0:6e:f1:a2:
bb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:15:7C:43:D3:26:F1:13:1C:7E:70:9C:13:CB:37:88:A6:3B:39:35
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:f3:0f:be:88:5b:ba:27:af:d0:c2:00:53:42:6c:b7:86:0d:
70:b9:aa:af:21:a9:d5:d0:c4:c4:5c:d7:9f:cd:86:dd:9a:c4:
6c:83:5e:96:43:45:42:2f:44:a3:0f:6d:60:cc:de:6d:64:1e:
8c:79:ae:2b:d1:ac:e3:eb:73:91:2e:57:2c:76:32:fc:41:95:
ef:51:46:df:f3:99:e7:c3:c3:f5:14:fe:f5:e5:40:3e:e9:de:
bd:06:a9:03:0b:c5:01:73:0d:e2:47:01:ed:2b:d6:91:9f:98:
d1:44:bd:a3:61:16:63:34:d7:14:7b:e6:59:e5:2a:20:be:50:
15:5c:61:3b:17:63:56:c7:6f:12:46:97:4e:1f:27:98:bd:d5:
8f:a6:76:54:fd:b7:69:d7:28:9a:bd:a9:86:d8:89:83:f3:5b:
02:05:d1:63:a8:61:bf:dc:ed:5a:e7:9b:df:2c:b6:bf:8b:4b:
9b:96:e2:60:9a:c3:bb:af:64:d2:fa:d3:2a:2f:43:87:bd:be:
20:ac:0f:5c:f6:27:a6:e8:03:d2:75:e2:e9:2c:57:10:cd:35:
0d:01:e4:36:41:6c:51:cc:82:69:46:df:13:3b:86:53:d9:cd:
96:5e:80:eb:cc:42:ee:45:b4:9b:57:51:dd:55:87:2b:b8:e1:
d2:f8:25:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:19:29 2025 by rpki-client