
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
File: 2pxnKeHomJmE3YAtGpDonOL-Nzw.mft (raw, json)
Hash identifier: W+ndNqMCQetnJ9uti89ako2epDo9PNNyMd4vzLedbJ4=
Subject key identifier: FE:2E:44:1D:D2:EE:25:A8:61:F1:1A:6B:97:B4:2C:17:BE:2F:44:52
Authority key identifier: DA:9C:67:29:E1:E8:98:99:84:DD:80:2D:1A:90:E8:9C:E2:FE:37:3C
Certificate issuer: /CN=da9c6729e1e8989984dd802d1a90e89ce2fe373c
Certificate serial: 0199FEEB94529F95263A386E7E1F6A2E06C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
Manifest number: 16E3
Signing time: Mon 20 Oct 2025 00:01:15 +0000
Manifest this update: Mon 20 Oct 2025 00:01:15 +0000
Manifest next update: Tue 21 Oct 2025 00:01:15 +0000
Files and hashes: 1: 24_mmtOlkG05yQ7mb26MLLzNTPk.roa (hash: NN9FJFjMrEoXgY4DCGNqxgbjsbFf0mQojMZSGAkFQFg=)
2: 2pxnKeHomJmE3YAtGpDonOL-Nzw.crl (hash: ChQhmUNv0b7Jw5HxYsDjyL7OyFKg1DSHD9CwfXeWxB4=)
3: bhkCmw6Utz1WDIi1a3ZQnDXW25w.roa (hash: vuvSrc/xAi8bu4mOjDMbPo9yb6kp8ev2fK1dkeS76Yo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:eb:94:52:9f:95:26:3a:38:6e:7e:1f:6a:2e:06:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da9c6729e1e8989984dd802d1a90e89ce2fe373c
Validity
Not Before: Oct 20 00:01:15 2025 GMT
Not After : Oct 21 00:01:15 2025 GMT
Subject: CN=fe2e441dd2ee25a861f11a6b97b42c17be2f4452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9e:1e:16:46:71:9c:6d:38:7a:e7:bb:28:f4:
69:5f:3c:f3:22:f4:02:e5:d1:95:a0:8d:a6:d1:de:
b7:6a:98:de:4f:84:b2:40:e6:12:f0:f0:d9:eb:30:
fe:50:48:d3:b8:c1:90:a6:d2:68:10:51:ed:61:8c:
18:c5:00:d8:48:04:2b:e3:d6:0d:8d:29:cd:d3:0c:
fe:d7:a9:58:3c:aa:3f:e5:48:f0:81:54:77:29:4f:
e8:ed:40:3b:e8:7f:6c:69:49:03:01:d3:61:65:1a:
b9:35:66:c0:cd:c9:7e:a2:52:fb:08:dc:f5:61:37:
c0:2a:66:89:91:dc:7b:56:e0:09:27:4c:e6:e0:de:
9e:fc:1b:c2:60:0b:1c:b3:49:f6:9c:89:82:1b:52:
85:22:2c:55:20:77:45:ee:63:85:ca:cc:b7:df:03:
59:69:71:8a:40:f2:c9:8a:dd:3d:c4:fa:2f:68:14:
9f:59:c9:1c:95:1d:a7:d3:ef:2c:fc:e6:7a:ef:1c:
7c:be:66:7a:e1:fa:74:c4:cf:87:a5:c0:55:22:3d:
a4:ef:f5:24:23:67:60:2f:f4:74:bb:88:2e:a2:2b:
7b:a2:e2:93:15:2f:31:9a:10:a3:01:47:8b:d5:60:
0d:ac:e5:a4:5a:c5:88:6f:af:7e:87:31:06:e0:2f:
d0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:2E:44:1D:D2:EE:25:A8:61:F1:1A:6B:97:B4:2C:17:BE:2F:44:52
X509v3 Authority Key Identifier:
keyid:DA:9C:67:29:E1:E8:98:99:84:DD:80:2D:1A:90:E8:9C:E2:FE:37:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pxnKeHomJmE3YAtGpDonOL-Nzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/755c55-c4f5-4cb7-871d-69c68e2ef27d/1/2pxnKeHomJmE3YAtGpDonOL-Nzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:73:e4:22:7f:d8:ba:75:b0:ba:71:fa:04:dd:f5:20:1c:58:
41:0e:39:1f:8f:0c:93:2f:28:6e:c6:cf:34:6a:0f:f4:3f:24:
ba:1b:e7:21:c0:39:15:8e:68:78:31:72:c1:c7:d4:99:32:31:
51:9d:76:d7:30:24:db:ec:2a:18:35:62:a0:b4:66:d1:15:ef:
86:42:0d:4e:d5:4c:04:d6:66:9a:85:87:e7:45:6f:ec:fb:d9:
a8:d2:ff:f8:40:7a:5b:ee:9e:01:c3:06:56:45:b7:05:15:3a:
0b:f1:60:ef:69:60:0f:04:81:4e:72:f6:84:0a:1e:a3:ca:cc:
6d:b6:ed:ea:95:8a:20:66:72:55:9a:62:b9:fb:99:9f:51:5d:
49:ae:b2:31:0f:3a:ed:62:ca:e6:72:a0:47:65:27:14:99:07:
99:4c:11:b3:7d:01:ff:3c:9e:02:4f:f6:02:16:de:64:22:87:
c5:7e:25:15:16:b0:ac:ea:3c:4c:8d:8f:5b:99:4b:9e:c0:48:
04:fb:d3:6d:c7:37:3a:af:79:30:3b:69:5d:b2:6e:a8:37:ce:
64:86:2a:f7:10:d7:03:3e:e7:8c:a3:e1:6b:0f:6a:ac:39:05:
4d:e7:c4:43:6a:16:23:84:c3:82:f2:bb:32:6b:9b:a2:68:c1:
ef:7f:80:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:33:03 2025 by rpki-client