Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft
File: 2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft (raw, json)
Hash identifier: sQlkwlAqC1/NIg9lqmZvQNY0DNYhSaBL9mtinSLrNIs=
Subject key identifier: 74:53:59:94:2F:5E:4C:97:88:01:12:B1:62:C5:FF:9A:98:19:83:5E
Authority key identifier: D8:9B:44:E2:C0:57:F0:1A:99:26:1F:94:BB:F6:DA:1B:F1:86:5F:39
Certificate issuer: /CN=d89b44e2c057f01a99261f94bbf6da1bf1865f39
Certificate serial: 0199FBEC3FD8170A4EC879D0B7A398E3885F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JtE4sBX8BqZJh-Uu_baG_GGXzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft
Manifest number: 0C48
Signing time: Sun 19 Oct 2025 10:03:07 +0000
Manifest this update: Sun 19 Oct 2025 10:03:07 +0000
Manifest next update: Mon 20 Oct 2025 10:03:07 +0000
Files and hashes: 1: 2JtE4sBX8BqZJh-Uu_baG_GGXzk.crl (hash: +ph8nHccqH3Lfo5WhnvVYTKNOjWYgGkq54LPT4GDHOU=)
2: pEoCff1DtYoEMHzC9EANzQRBsC8.roa (hash: +m2VMtZgdFPS2/0zJPg1ZLBtRhUd6KXSgxAw6jiEMMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2JtE4sBX8BqZJh-Uu_baG_GGXzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:3f:d8:17:0a:4e:c8:79:d0:b7:a3:98:e3:88:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89b44e2c057f01a99261f94bbf6da1bf1865f39
Validity
Not Before: Oct 19 10:03:07 2025 GMT
Not After : Oct 20 10:03:07 2025 GMT
Subject: CN=745359942f5e4c97880112b162c5ff9a9819835e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a3:7b:cb:be:cc:18:d2:3f:b9:f2:38:90:f0:
b3:db:17:d1:6e:a9:ec:40:da:77:da:ac:3f:55:04:
65:c5:c4:59:1e:21:74:60:b2:3c:53:02:e4:c9:d7:
8a:e3:53:e6:32:36:3d:8b:e4:e1:bf:77:d6:50:a2:
6c:e1:9a:5c:20:bc:02:06:ca:f7:28:9f:29:c6:74:
9e:0c:bb:c2:0b:10:b2:2a:35:c3:70:fb:01:66:bd:
91:73:89:67:0d:cd:00:29:ab:2e:f0:b9:7b:09:19:
70:dd:35:7a:12:fa:7a:95:cd:25:df:d4:a1:bb:65:
de:8d:99:1e:da:75:3b:fd:25:3b:f3:75:fe:62:25:
e6:94:67:29:32:cb:ca:f8:70:54:01:1b:10:21:34:
8a:e6:76:a4:97:ac:fa:d4:a6:d9:fa:90:40:1a:1d:
61:c3:8e:5b:2a:81:8d:70:64:29:74:b7:7e:35:87:
8a:4b:64:fd:df:a1:d8:9d:b7:c2:19:9f:82:f9:3e:
4e:75:7a:ae:c3:d5:a4:b7:56:b0:57:db:e6:43:36:
2f:bf:82:79:b6:6a:fb:67:c0:96:99:b9:bd:8e:98:
c1:4e:12:e8:79:fa:30:9f:4b:65:32:5f:6e:ce:66:
69:01:b4:dd:ea:f4:bc:1c:87:99:8e:65:22:27:39:
59:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:53:59:94:2F:5E:4C:97:88:01:12:B1:62:C5:FF:9A:98:19:83:5E
X509v3 Authority Key Identifier:
keyid:D8:9B:44:E2:C0:57:F0:1A:99:26:1F:94:BB:F6:DA:1B:F1:86:5F:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JtE4sBX8BqZJh-Uu_baG_GGXzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:6a:76:2f:b3:87:8e:e6:41:5e:5d:9c:41:eb:2c:2f:55:8f:
8e:fb:98:45:21:4a:98:7d:57:57:55:00:90:3a:53:86:c0:96:
79:6a:43:24:84:d5:dc:f0:03:ab:4e:4a:ce:11:67:3a:1b:52:
e2:60:9a:81:f0:55:a1:5d:dd:06:d7:80:d8:ed:a8:83:37:37:
0a:32:62:8a:31:40:85:89:fc:d1:e1:da:8a:8e:c3:95:d2:0f:
b6:bf:c1:87:d8:64:5d:09:6b:8b:6d:17:32:97:d4:9a:fa:20:
5e:60:a1:f1:80:a4:2f:df:9a:7c:44:57:29:eb:88:bf:c7:bb:
47:09:74:74:47:ae:09:ec:79:42:70:1f:a2:44:fb:8e:c2:7d:
3d:a5:38:d1:c4:1d:99:4d:39:59:34:4e:ae:70:63:37:c5:20:
c5:44:df:10:7b:4b:b0:dc:e8:c7:63:ef:02:15:68:e4:40:ee:
f4:3e:d5:f4:3f:08:7b:5c:1b:4c:4f:c8:9e:fc:02:40:55:35:
ac:86:7d:fc:31:48:72:68:0d:a0:77:73:6e:2a:8f:d4:b8:1d:
2e:1f:6e:89:9d:7d:be:56:3d:52:59:f4:6f:b8:fe:75:e9:40:
62:29:5c:48:e9:5c:45:37:9f:d0:6d:68:16:b0:ce:19:a7:96:
e6:ad:fd:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:26:47 2025 by rpki-client