Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
File: 2o2nRADHVVq6J8Eon7-5CzO3miI.mft (raw, json)
Hash identifier: j3Cj/SlRlQg5RQm4yPH1oQegR4bwGtyq6YjPDyZxQGY=
Subject key identifier: 59:45:0A:01:A4:74:FE:D9:BC:77:84:C9:DD:B4:4A:6D:1D:90:EC:E4
Authority key identifier: DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
Certificate issuer: /CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Certificate serial: 019A00355085F22FC57E9AF2DA8557DCCDF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
Manifest number: 1571
Signing time: Mon 20 Oct 2025 06:01:25 +0000
Manifest this update: Mon 20 Oct 2025 06:01:25 +0000
Manifest next update: Tue 21 Oct 2025 06:01:25 +0000
Files and hashes: 1: 2o2nRADHVVq6J8Eon7-5CzO3miI.crl (hash: BmU5K2mhsq8DexFIoJYPOAka1yymhViH9VA8eyCW+zA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 06:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:50:85:f2:2f:c5:7e:9a:f2:da:85:57:dc:cd:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Validity
Not Before: Oct 20 06:01:25 2025 GMT
Not After : Oct 21 06:01:25 2025 GMT
Subject: CN=59450a01a474fed9bc7784c9ddb44a6d1d90ece4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c1:93:da:7e:23:77:70:67:16:10:8b:5a:3e:
73:41:18:18:52:27:8e:3c:bd:d3:68:38:0d:fc:37:
36:44:e2:5b:ca:98:62:6b:4c:c2:b6:0f:c6:69:e2:
98:32:52:5a:f1:9c:bb:5f:dc:30:df:f1:cf:48:d7:
5c:60:df:70:65:ac:5b:a4:fc:de:3c:8d:f6:08:11:
5e:0e:d4:c9:3c:29:6e:b8:06:de:24:01:29:18:2d:
90:9f:f3:7c:d0:eb:46:fd:1f:ce:89:55:a0:a0:46:
3e:52:94:69:a5:d9:19:0d:68:06:41:f7:9e:bf:95:
36:25:47:51:24:e8:78:13:73:5a:93:88:da:99:8a:
76:5c:d5:fb:d3:51:04:20:58:5e:ed:c2:bf:0e:6b:
eb:2e:a9:5d:25:c3:9d:35:89:06:7e:87:e3:e9:15:
29:50:54:29:6f:46:26:09:bb:7e:c6:9a:be:98:e6:
cb:f3:e9:40:30:5f:fc:c8:bb:b9:37:5e:46:ab:1d:
96:49:66:bf:5f:22:f1:c8:81:d5:26:c8:e5:60:5c:
2e:45:8a:d6:18:48:69:4a:92:28:b1:f1:fd:3f:54:
10:93:df:01:38:ed:45:a8:c5:7c:bf:cb:ca:b9:1e:
d5:8b:81:30:60:49:39:65:ef:54:79:09:8a:ef:51:
9c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:45:0A:01:A4:74:FE:D9:BC:77:84:C9:DD:B4:4A:6D:1D:90:EC:E4
X509v3 Authority Key Identifier:
keyid:DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:fb:64:a0:f4:61:4a:2a:d3:fd:73:a6:4f:02:59:fc:c6:a5:
33:3b:5f:c1:e7:6b:27:82:4f:b3:f0:57:e6:dd:c6:03:f2:b9:
02:c7:e7:75:55:7e:50:6a:30:bb:d6:27:4b:6f:d1:43:a7:fd:
0b:a4:b2:07:a9:d5:d4:52:bd:fa:27:fb:96:69:f1:46:4f:52:
9b:22:2b:35:fc:ce:1e:ba:aa:2c:24:e2:4d:1b:f0:50:34:96:
e9:0d:f7:57:44:e6:f6:b7:a6:61:8e:c2:2d:b0:dc:42:6d:30:
c3:05:d9:09:2e:e8:fb:eb:86:af:70:25:a3:2c:39:6d:99:76:
67:c2:d7:b5:c5:13:a9:38:19:95:16:81:08:a3:45:7b:5d:48:
be:81:6d:bf:52:bd:69:7c:e7:9c:35:2c:63:7a:f5:bd:63:bd:
1d:0c:7d:d0:33:49:15:0f:7c:12:f6:e4:35:c5:a1:72:ba:40:
cb:fa:e7:4a:c6:a2:2f:01:7f:d2:b2:9d:bb:57:91:8d:f2:6b:
3c:30:ca:6a:dd:69:42:4c:34:c1:50:68:23:3c:6a:4f:94:16:
c0:35:a6:99:73:84:99:03:61:87:71:fe:ab:88:16:af:16:4c:
48:20:4f:e1:58:98:8b:b2:f3:d4:4c:cc:e3:f2:e9:7b:04:bf:
d5:36:a8:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:01:53 2025 by rpki-client