Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
File: 2m3EGSZFyEKk-i-II08uWhhMdmQ.mft (raw, json)
Hash identifier: l4xDYcmEKz4cnFaM2D4VNm/eifnp3YMGRFo53nowyS4=
Subject key identifier: 69:42:60:EC:0F:C6:58:6E:F6:C3:BE:3E:B6:DF:11:96:B1:C2:C7:16
Authority key identifier: DA:6D:C4:19:26:45:C8:42:A4:FA:2F:88:23:4F:2E:5A:18:4C:76:64
Certificate issuer: /CN=da6dc4192645c842a4fa2f88234f2e5a184c7664
Certificate serial: 0199FBEBF57127F6BF0C64E063D552C1AED4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
Manifest number: 083F
Signing time: Sun 19 Oct 2025 10:02:48 +0000
Manifest this update: Sun 19 Oct 2025 10:02:48 +0000
Manifest next update: Mon 20 Oct 2025 10:02:48 +0000
Files and hashes: 1: 2m3EGSZFyEKk-i-II08uWhhMdmQ.crl (hash: GK1Kxds0fnWuge7/LkMBLa7C5lTuNJnlnqPbIn0mgRw=)
2: JwOlXzHs1rdGVXlkVOqZWuxz-yI.roa (hash: PGrtrfZNHqKpdplaHtlzlb/8zTI8cEQQrTdbVPKqLz0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:f5:71:27:f6:bf:0c:64:e0:63:d5:52:c1:ae:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da6dc4192645c842a4fa2f88234f2e5a184c7664
Validity
Not Before: Oct 19 10:02:48 2025 GMT
Not After : Oct 20 10:02:48 2025 GMT
Subject: CN=694260ec0fc6586ef6c3be3eb6df1196b1c2c716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:79:f7:14:d9:de:e2:15:55:ad:51:0d:42:e2:
cd:fb:f3:d8:30:4b:a7:ae:2c:84:78:a7:ce:03:b5:
c8:05:66:8d:71:f8:d3:b9:16:e4:33:a6:14:83:cb:
d5:2d:51:c8:9c:d1:27:30:a6:44:9f:79:e8:dc:b5:
31:ca:43:e1:86:62:96:40:74:da:18:ce:7a:de:6e:
f6:dd:7a:b1:97:f2:0a:c9:10:73:cb:6b:6c:83:7b:
60:65:81:8d:4a:1c:48:4d:1e:e2:a7:c4:86:e2:1f:
c9:50:20:33:31:9f:0f:df:74:a3:71:4d:d3:fa:fe:
99:23:38:f2:bc:a1:c5:b7:8e:0f:6e:1c:a0:73:0a:
15:a6:ee:5e:1e:04:e9:55:6c:83:e8:a5:58:e2:78:
cc:28:a6:77:93:91:24:5f:7a:bc:34:62:fc:c1:9c:
93:8e:d0:c1:fb:50:2c:f7:59:e2:95:46:f2:82:5d:
1f:e6:41:db:5e:40:e0:59:91:9d:6c:a4:40:46:5b:
84:9b:76:29:87:14:4f:3d:f4:c9:e5:16:b9:4b:7f:
c8:fc:2a:bd:41:ac:b3:ad:72:6f:9c:3c:2e:83:69:
b9:37:86:86:ab:7a:ca:0a:5f:41:cd:0d:a3:48:f2:
2a:a9:f7:36:08:e4:54:69:cf:ac:f7:47:e5:f9:7b:
76:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:42:60:EC:0F:C6:58:6E:F6:C3:BE:3E:B6:DF:11:96:B1:C2:C7:16
X509v3 Authority Key Identifier:
keyid:DA:6D:C4:19:26:45:C8:42:A4:FA:2F:88:23:4F:2E:5A:18:4C:76:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2m3EGSZFyEKk-i-II08uWhhMdmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/23c57c-b8a7-49a5-9c05-eef70aab035e/1/2m3EGSZFyEKk-i-II08uWhhMdmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:fc:85:86:32:f5:47:9e:4f:ec:1d:62:48:d5:b5:ff:97:42:
9a:67:b7:fe:51:50:da:f6:2f:a2:42:5b:42:dd:78:83:67:1b:
0a:b5:a8:cd:4b:95:f9:e7:8a:62:b9:d4:ca:4e:5f:3b:26:21:
40:54:94:69:82:fd:3f:0e:93:d7:6f:e6:88:bd:9c:10:e3:e7:
e4:91:2b:65:00:cf:a2:09:42:ea:02:a1:9f:a8:4e:ab:ea:78:
ed:48:0a:c7:6f:1d:5d:95:00:45:13:4a:f4:90:78:94:d6:f7:
b7:5c:a2:72:32:f0:fe:15:d7:e0:c6:93:c7:01:33:10:17:81:
87:93:0d:7f:51:8a:ef:7f:1c:da:fb:13:ea:a6:6b:ac:8f:95:
a5:dc:f1:0e:bb:80:b9:4f:ff:90:d6:a4:a2:68:17:36:74:7d:
d4:f0:2b:ab:2e:d3:a5:23:28:35:78:a5:56:70:7b:00:17:1c:
1e:d9:fe:4a:da:61:5e:3e:f5:92:39:d8:15:ec:77:99:d7:2c:
f8:69:17:2c:06:fa:7a:26:59:5c:93:b6:b5:d6:12:e1:82:74:
89:e2:0f:bc:a6:6d:46:92:42:2f:0c:af:52:81:c8:0c:68:41:
ea:d7:04:4c:dd:81:09:26:e5:ab:a2:08:56:07:be:83:42:ef:
77:09:e7:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:27:29 2025 by rpki-client