Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: 5LzCYCr75LULMcAa2/Nqjc3o33tVwWqd+xN/zoC0UAY=
Subject key identifier: CC:26:61:8E:B0:BD:7A:4C:A7:B5:30:F1:DB:CB:F6:12:20:6A:F9:F9
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 019A07EDCF3EEF376D31B3DFBF5F62E6EA2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 0396
Signing time: Tue 21 Oct 2025 18:00:16 +0000
Manifest this update: Tue 21 Oct 2025 18:00:16 +0000
Manifest next update: Wed 22 Oct 2025 18:00:16 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: TubQe4HC1jDZAl3tARK4EX8Pw/VD6sPNXuuHfuiAVoY=)
2: S9_pIBHq75Wq7oGW-jAli5gxMaE.roa (hash: cpq5fUvjVAhKKLO06wh9HRGgk0x/xpun3Cli9g36l8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:07:ed:cf:3e:ef:37:6d:31:b3:df:bf:5f:62:e6:ea:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: Oct 21 18:00:16 2025 GMT
Not After : Oct 22 18:00:16 2025 GMT
Subject: CN=cc26618eb0bd7a4ca7b530f1dbcbf612206af9f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7e:28:6d:c5:f3:49:fc:e2:6f:b1:4e:6b:60:
12:69:b7:a7:9d:18:f3:88:01:d9:52:ca:dc:d2:1b:
e7:0a:10:db:b3:f9:8f:22:30:ac:fa:dd:dc:ab:b5:
d2:ca:b3:01:ea:b3:64:56:fc:d0:b9:67:94:9d:f7:
55:33:ab:e4:8c:a1:16:c4:57:81:b9:6f:77:5a:50:
40:e6:13:b4:ea:39:46:e3:e5:a0:e2:06:dc:bc:0d:
70:4f:0b:71:63:88:84:09:74:b3:ac:68:91:3e:6e:
b3:40:ab:d4:e3:e4:4f:8e:56:5e:bb:30:3a:73:d1:
45:0e:ec:be:07:66:6b:5b:87:a1:8f:af:a0:94:b8:
96:23:b4:70:e6:a8:7a:7e:3e:4f:e7:d4:36:c4:63:
4b:13:f1:e4:49:e9:ff:a7:a8:46:ca:a0:34:f5:17:
56:10:49:3c:63:2a:e2:58:34:83:85:12:26:f1:dc:
ff:e9:d8:72:96:9c:36:de:f5:7f:5e:c9:b6:09:ef:
0e:c3:9a:c7:cf:c2:c7:95:84:d8:5a:0c:0f:ee:c4:
0e:07:68:d2:c0:f2:61:88:68:06:fd:93:0c:c5:96:
23:e7:f7:8e:19:07:3d:3a:08:99:88:f6:6c:9e:68:
4a:db:8f:bd:17:f4:12:9f:0c:d6:41:4c:d4:bb:6f:
6a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:26:61:8E:B0:BD:7A:4C:A7:B5:30:F1:DB:CB:F6:12:20:6A:F9:F9
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:84:d5:86:29:7f:64:f3:8b:de:ba:0e:13:d9:ef:1f:aa:28:
56:d0:bc:98:e4:d1:70:f4:65:84:85:45:3e:dd:8a:26:07:89:
d2:08:f6:0f:86:6e:05:b2:73:45:cc:4f:bc:30:b8:c9:95:ff:
1c:86:b2:d1:cd:80:23:06:10:19:14:97:06:79:41:5b:a2:ed:
30:e0:70:36:bc:27:46:b4:8a:db:19:96:8d:d0:98:ae:62:11:
bc:e3:15:75:1d:07:83:db:ea:bf:9b:a1:2e:3e:02:74:22:9a:
6e:e6:f0:69:32:2e:39:a3:14:a9:6b:59:cc:82:08:02:37:9d:
37:53:c6:68:e1:10:ea:25:27:e5:70:d2:99:69:ec:f5:ab:71:
fa:f0:0a:f3:d4:52:8b:40:28:25:54:ac:12:fa:03:46:15:db:
1e:a5:83:f9:df:d5:4a:cc:7b:79:2b:d6:22:c9:9c:00:81:fa:
0e:e4:28:8d:8d:be:d6:62:fc:10:7e:72:3e:f2:1d:b2:08:18:
7c:5b:c2:c0:37:fc:c0:b5:6c:13:69:95:e0:64:42:eb:9d:d7:
ab:d3:11:1b:64:e8:01:b3:9f:70:46:52:e1:bf:f7:2f:d0:65:
89:86:e0:f4:fc:2a:65:27:33:3a:65:7b:5b:4a:ce:35:52:fc:
16:79:85:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 00:29:52 2025 by rpki-client