Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
File: 2jQhazvZIbbGYYeoyGpKS7DuUj8.mft (raw, json)
Hash identifier: rEQ5yeZMBduqUUuRPHe89cRA52rWyjnti5ukMdX8npc=
Subject key identifier: A8:24:4C:72:CB:14:48:79:2B:5D:9B:4F:C5:B5:97:C4:FE:72:14:F9
Authority key identifier: DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F
Certificate issuer: /CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f
Certificate serial: 0199FC58CB4FA88AB4D000E649DB7793B308
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
Manifest number: 13E9
Signing time: Sun 19 Oct 2025 12:01:41 +0000
Manifest this update: Sun 19 Oct 2025 12:01:41 +0000
Manifest next update: Mon 20 Oct 2025 12:01:41 +0000
Files and hashes: 1: 2jQhazvZIbbGYYeoyGpKS7DuUj8.crl (hash: +kFOhnBaMmm5ueJnRMGglxReidluJ15Mc/N0A3BUQfE=)
2: y-rAx3x5ggb3kBBIMyQl2KhriYw.roa (hash: j/sr0gEHuELryIqb8wmwmOpvCJwyct02mKuP2NU5Abs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:cb:4f:a8:8a:b4:d0:00:e6:49:db:77:93:b3:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da34216b3bd921b6c66187a8c86a4a4bb0ee523f
Validity
Not Before: Oct 19 12:01:41 2025 GMT
Not After : Oct 20 12:01:41 2025 GMT
Subject: CN=a8244c72cb1448792b5d9b4fc5b597c4fe7214f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:54:30:91:51:01:64:57:ca:0a:cb:e7:87:ce:
32:6b:19:3d:01:5d:5e:70:19:c9:54:a4:9b:01:93:
4e:35:81:a6:dc:3a:b4:25:96:10:b8:49:ba:34:6b:
e5:da:3d:9a:4e:ee:63:13:f6:0a:33:91:eb:d3:b4:
2a:7d:a2:fa:b5:16:83:e8:bb:f2:bb:2a:96:6f:99:
17:0c:0e:11:e7:b9:44:d0:29:c1:84:1a:47:f5:0d:
4f:1e:9a:f6:37:c7:98:5a:04:ff:e9:6d:8b:08:df:
c3:af:eb:22:36:db:f0:e4:f9:53:80:28:7d:29:e2:
86:b1:b8:55:b7:19:8d:03:8b:65:4b:6e:f7:7e:ce:
1a:6e:80:bf:10:88:93:a3:22:b1:7f:b5:b5:09:e5:
e6:de:6d:07:17:dd:06:03:57:af:73:e0:9f:58:34:
76:2f:1a:0e:f1:a2:73:d6:06:2a:53:ea:db:d1:a0:
71:9b:31:01:6a:cb:f2:22:b7:08:34:01:53:d0:8a:
07:2c:b6:6a:89:e7:74:09:c9:a4:f6:f0:b5:ac:e5:
5d:0f:d3:eb:01:04:b9:0f:b8:f7:61:b2:e7:f5:32:
6a:14:33:db:c6:e8:f1:6d:30:d8:57:2b:be:49:7e:
b0:72:ba:a3:e9:ba:19:f8:fd:b4:ee:a5:f2:8c:39:
69:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:24:4C:72:CB:14:48:79:2B:5D:9B:4F:C5:B5:97:C4:FE:72:14:F9
X509v3 Authority Key Identifier:
keyid:DA:34:21:6B:3B:D9:21:B6:C6:61:87:A8:C8:6A:4A:4B:B0:EE:52:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2jQhazvZIbbGYYeoyGpKS7DuUj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/71ee7c-3c04-4a9c-9df7-0bf5905b35ef/1/2jQhazvZIbbGYYeoyGpKS7DuUj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:cc:d1:1a:b1:ab:83:e3:c8:ce:42:a7:27:8a:a0:cb:de:44:
a1:0b:85:f6:f8:60:6d:82:fb:12:72:2c:88:92:ff:7f:e0:c7:
e0:b1:1f:22:51:f7:fa:5c:3b:b5:ea:a2:7b:fe:d0:8e:2c:4b:
2b:16:50:66:4d:f4:a6:9f:d1:93:d9:0f:91:76:7e:4a:2a:5f:
bf:18:84:f1:42:0a:a5:87:81:1d:19:e3:6d:47:72:00:69:ce:
b5:a4:f7:55:f4:b3:89:fe:18:ce:4d:bd:40:36:e7:b6:83:5e:
39:85:a6:e5:8b:09:1e:bd:10:a2:74:65:1b:7a:65:c3:82:fa:
e8:88:77:55:32:ad:8c:89:f1:c1:74:81:19:c0:73:ce:0f:a8:
55:a7:90:2b:48:b1:f7:a1:45:09:48:47:9d:bf:73:94:bf:3a:
2a:c6:c5:4a:30:02:0e:59:8f:00:46:6f:4b:88:70:66:2c:86:
48:cb:b1:f9:b4:ce:a9:ce:94:18:3a:16:7c:50:c9:1a:73:26:
6b:50:32:3b:01:33:7b:b0:ca:2d:32:97:36:b1:19:18:2f:16:
87:ca:5c:6a:ac:bb:50:00:a9:47:4e:3c:63:df:49:c8:93:30:
d9:8a:85:93:fb:b4:c5:41:bd:4b:2d:d7:67:8f:69:96:58:16:
a8:17:fe:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WMtPqIq00ADmSdt3k7MIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMzQyMTZiM2JkOTIxYjZjNjYxODdhOGM4NmE0YTRiYjBl
ZTUyM2YwHhcNMjUxMDE5MTIwMTQxWhcNMjUxMDIwMTIwMTQxWjAzMTEwLwYDVQQD
EyhhODI0NGM3MmNiMTQ0ODc5MmI1ZDliNGZjNWI1OTdjNGZlNzIxNGY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFQwkVEBZFfKCsvnh84yaxk9AV1e
cBnJVKSbAZNONYGm3Dq0JZYQuEm6NGvl2j2aTu5jE/YKM5Hr07QqfaL6tRaD6Lvy
uyqWb5kXDA4R57lE0CnBhBpH9Q1PHpr2N8eYWgT/6W2LCN/Dr+siNtvw5PlTgCh9
KeKGsbhVtxmNA4tlS273fs4aboC/EIiToyKxf7W1CeXm3m0HF90GA1evc+CfWDR2
LxoO8aJz1gYqU+rb0aBxmzEBasvyIrcINAFT0IoHLLZqied0Ccmk9vC1rOVdD9Pr
AQS5D7j3YbLn9TJqFDPbxujxbTDYVyu+SX6wcrqj6boZ+P207qXyjDlpswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKgkTHLLFEh5K12bT8W1l8T+chT5MB8GA1UdIwQY
MBaAFNo0IWs72SG2xmGHqMhqSkuw7lI/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmpRaGF6dlpJYmJHWVllb3lHcEtTN0R1VWo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC83MWVlN2MtM2MwNC00YTljLTlkZjct
MGJmNTkwNWIzNWVmLzEvMmpRaGF6dlpJYmJHWVllb3lHcEtTN0R1VWo4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC83MWVlN2MtM2MwNC00YTljLTlkZjctMGJmNTkwNWIzNWVm
LzEvMmpRaGF6dlpJYmJHWVllb3lHcEtTN0R1VWo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZszRGrGr
g+PIzkKnJ4qgy95EoQuF9vhgbYL7EnIsiJL/f+DH4LEfIlH3+lw7teqie/7QjixL
KxZQZk30pp/Rk9kPkXZ+SipfvxiE8UIKpYeBHRnjbUdyAGnOtaT3VfSzif4Yzk29
QDbntoNeOYWm5YsJHr0QonRlG3plw4L66Ih3VTKtjInxwXSBGcBzzg+oVaeQK0ix
96FFCUhHnb9zlL86KsbFSjACDlmPAEZvS4hwZiyGSMux+bTOqc6UGDoWfFDJGnMm
a1AyOwEze7DKLTKXNrEZGC8Wh8pcaqy7UACpR048Y99JyJMw2YqFk/u0xUG9Sy3X
Z49pllgWqBf+DQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:26:46 2025 by rpki-client