Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: bYprOSP8t3Ejxqf9VdJBHvqfKg+an9gyVaHAn2rWw+s=
Subject key identifier: CA:2D:EA:41:B1:33:A6:AE:CA:5A:E7:1C:38:71:9E:D9:90:81:07:AC
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 0199FDDA4C8C7AA726ED24E9183B7A919780
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 0C3B
Signing time: Sun 19 Oct 2025 19:02:46 +0000
Manifest this update: Sun 19 Oct 2025 19:02:46 +0000
Manifest next update: Mon 20 Oct 2025 19:02:46 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: T6Zdn8RY8/W22YwTbqWn5d3O0TESqOHggzdTFmHhOhc=)
2: YfAgsC_cdxTTdTc3lRuKLUA9Ek4.roa (hash: 6JxCw6QKy553BkYrq5SFqTFyUQePShSh+1QhYyHxmes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:da:4c:8c:7a:a7:26:ed:24:e9:18:3b:7a:91:97:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: Oct 19 19:02:46 2025 GMT
Not After : Oct 20 19:02:46 2025 GMT
Subject: CN=ca2dea41b133a6aeca5ae71c38719ed9908107ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ba:be:d1:aa:40:b3:73:0d:f6:79:2b:e7:18:
10:7d:38:bc:49:9f:e4:bf:f6:95:23:12:3f:75:89:
cc:4c:45:af:c5:92:4a:ba:46:e9:d6:d3:3b:89:2f:
21:c0:ef:91:fe:b5:9f:ae:10:7d:5a:2c:45:9e:18:
49:d9:7c:8b:3a:91:5d:df:d6:74:fa:6e:3d:df:64:
cc:01:df:3c:48:f0:ef:03:72:cd:89:bc:24:07:5d:
70:00:86:18:f5:df:88:e8:4b:80:3b:35:d8:67:0a:
ce:4c:84:ca:6b:08:53:2d:0a:bc:7a:97:cf:37:74:
b6:5c:11:eb:70:fb:3e:fd:b3:48:03:f2:f4:44:61:
5e:d5:99:02:2f:7e:f3:2a:b6:92:9f:b0:45:d5:8f:
6b:73:45:d4:54:95:50:af:39:75:71:fc:96:95:53:
df:5f:08:03:68:67:d4:40:5b:65:0e:e3:eb:35:72:
18:b5:c5:05:30:0a:21:d4:a1:dd:90:71:74:c1:13:
5a:9c:29:01:66:28:b7:30:56:f7:bd:e0:6a:46:a6:
03:cf:f0:0d:2d:7e:18:21:bd:12:7e:19:e6:bb:48:
d6:16:73:75:dc:6b:dc:ae:7d:2d:2e:38:72:99:c2:
e6:18:77:29:5c:df:af:1e:43:fd:ab:ae:d0:b5:0b:
89:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:2D:EA:41:B1:33:A6:AE:CA:5A:E7:1C:38:71:9E:D9:90:81:07:AC
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:de:d0:47:e3:a3:06:3e:a3:8c:a3:62:0d:18:61:e6:3b:85:
65:30:f9:b2:ef:31:f3:2e:43:2c:84:40:ad:98:b2:9a:cb:e9:
ee:62:19:f7:8f:05:d3:58:17:8d:da:05:53:89:b5:06:9e:f1:
8d:7f:b4:ab:b6:d3:b3:18:1d:c5:7b:7a:00:b8:68:e2:5e:4a:
ea:1a:b5:f4:2f:1b:94:ae:b1:0c:c0:d9:c7:0d:a0:e1:a3:02:
0f:9d:8a:0d:4a:d5:62:da:60:d1:09:f5:cb:c0:22:25:23:3e:
b8:f1:e7:7a:52:4c:2b:0e:1d:1c:b8:8e:b6:fe:b5:7d:5b:93:
08:65:4e:d0:bc:a2:50:0b:68:50:cf:67:86:ed:da:6c:02:fc:
fe:9e:d7:52:c7:c3:14:80:25:c4:c9:1c:ac:02:5a:1b:85:32:
8c:4f:3f:e8:21:7a:f1:90:c5:26:3c:49:1b:91:18:93:b0:49:
4f:1e:d7:33:0a:fb:41:13:61:49:be:af:c6:56:5e:56:df:dd:
e8:5e:29:8c:29:1b:c9:af:ea:81:4d:58:6b:d5:f3:46:56:0d:
3f:b7:e4:a7:87:ee:49:8b:e5:e7:ee:8d:d3:a1:03:08:9c:d5:
a0:f5:ac:36:19:2e:a4:04:5f:bf:32:62:bf:12:50:26:ae:fa:
a8:48:4c:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92kyMeqcm7STpGDt6kZeAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YTNjYWNkZjhmMzM1MTRiZTNhYmRjNTJjNTBlYzg2NDY3
NWU5NTUwHhcNMjUxMDE5MTkwMjQ2WhcNMjUxMDIwMTkwMjQ2WjAzMTEwLwYDVQQD
EyhjYTJkZWE0MWIxMzNhNmFlY2E1YWU3MWMzODcxOWVkOTkwODEwN2FjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp7q+0apAs3MN9nkr5xgQfTi8SZ/k
v/aVIxI/dYnMTEWvxZJKukbp1tM7iS8hwO+R/rWfrhB9WixFnhhJ2XyLOpFd39Z0
+m4932TMAd88SPDvA3LNibwkB11wAIYY9d+I6EuAOzXYZwrOTITKawhTLQq8epfP
N3S2XBHrcPs+/bNIA/L0RGFe1ZkCL37zKraSn7BF1Y9rc0XUVJVQrzl1cfyWlVPf
XwgDaGfUQFtlDuPrNXIYtcUFMAoh1KHdkHF0wRNanCkBZii3MFb3veBqRqYDz/AN
LX4YIb0Sfhnmu0jWFnN13Gvcrn0tLjhymcLmGHcpXN+vHkP9q67QtQuJiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMot6kGxM6auylrnHDhxntmQgQesMB8GA1UdIwQY
MBaAFNijys348zUUvjq9xSxQ7IZGdelVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMktQS3pmanpOUlMtT3IzRkxGRHNoa1oxNlZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8zMzNjMWEtZTRhNS00OTZkLTlhODEt
Yjc5MWI5ODlhZjI5LzEvMktQS3pmanpOUlMtT3IzRkxGRHNoa1oxNlZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy8zMzNjMWEtZTRhNS00OTZkLTlhODEtYjc5MWI5ODlhZjI5
LzEvMktQS3pmanpOUlMtT3IzRkxGRHNoa1oxNlZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASd7QR+Oj
Bj6jjKNiDRhh5juFZTD5su8x8y5DLIRArZiymsvp7mIZ948F01gXjdoFU4m1Bp7x
jX+0q7bTsxgdxXt6ALho4l5K6hq19C8blK6xDMDZxw2g4aMCD52KDUrVYtpg0Qn1
y8AiJSM+uPHnelJMKw4dHLiOtv61fVuTCGVO0LyiUAtoUM9nhu3abAL8/p7XUsfD
FIAlxMkcrAJaG4UyjE8/6CF68ZDFJjxJG5EYk7BJTx7XMwr7QRNhSb6vxlZeVt/d
6F4pjCkbya/qgU1Ya9XzRlYNP7fkp4fuSYvl5+6N06EDCJzVoPWsNhkupARfvzJi
vxJQJq76qEhM2A==
-----END CERTIFICATE-----
Generated at Mon Oct 20 00:00:32 2025 by rpki-client