
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
File: 2DLajUWISdX0C6bwuSCPhYXZ4j4.mft (raw, json)
Hash identifier: fepkBLxK7N3V9MdzqSegN8xJ6HLVa2mw3xhnromwyqw=
Subject key identifier: 8F:98:22:D3:DF:35:F3:2A:C6:E0:35:AF:5C:35:1A:30:39:52:4B:1E
Authority key identifier: D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
Certificate issuer: /CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Certificate serial: 0199FB45A37FE037F88B71387776FD459913
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 07:01:08 +0000
Manifest this update: Sun 19 Oct 2025 07:01:08 +0000
Manifest next update: Mon 20 Oct 2025 07:01:08 +0000
Files and hashes: 1: 0LdCYiyoo_rQZDLAQK9EXmWdrLs.roa (hash: ii+DUPaWPj2PKPLgx9rgU4vJhM6MjQajOc4FBEHl1O8=)
2: 2DLajUWISdX0C6bwuSCPhYXZ4j4.crl (hash: TAJdjBxTYm3ufVkLKmBlcENATovC8vLg0nnvakLpahk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:a3:7f:e0:37:f8:8b:71:38:77:76:fd:45:99:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Validity
Not Before: Oct 19 07:01:08 2025 GMT
Not After : Oct 20 07:01:08 2025 GMT
Subject: CN=8f9822d3df35f32ac6e035af5c351a3039524b1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5e:e0:b9:9b:d0:75:31:b0:b6:f7:b8:4c:ca:
69:20:91:8e:dd:e8:67:e9:5e:cd:69:c1:2e:0a:be:
83:c4:a0:9f:c3:82:8e:78:2a:76:a0:26:49:16:e7:
a9:55:37:e6:44:cb:d3:ce:56:e2:2f:4a:90:fc:64:
85:c5:fc:d6:7d:b3:76:24:26:e7:b9:5b:d1:67:eb:
1e:bc:9b:f3:84:6c:b0:7d:c7:0d:8f:1b:53:48:58:
33:24:88:e9:c8:9d:2c:10:81:95:1f:cc:a3:59:71:
34:1a:5e:4d:a2:03:db:7f:b5:3b:42:27:10:ec:64:
5d:7e:96:51:f4:4a:e0:ea:95:f2:fc:6e:0c:96:56:
d9:2f:a2:d2:5f:c9:bf:0d:41:f5:5d:b8:28:d6:cb:
2d:c5:a7:7e:fb:c4:a7:12:27:24:08:05:89:fb:07:
32:97:a0:ab:d3:2c:70:08:93:f9:d2:71:88:d9:df:
48:2f:ec:12:93:a7:51:50:13:51:68:b0:64:4c:73:
72:39:11:b9:4b:47:f1:68:f0:c8:92:61:8b:3c:d3:
6b:62:17:47:ea:7e:6c:a7:42:7e:ec:2b:79:60:da:
70:92:37:c3:e0:83:03:45:ff:48:9f:fd:05:9d:ed:
e1:47:e4:ea:6a:03:1a:60:45:f1:34:9a:53:b3:e7:
f1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:98:22:D3:DF:35:F3:2A:C6:E0:35:AF:5C:35:1A:30:39:52:4B:1E
X509v3 Authority Key Identifier:
keyid:D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:9b:ab:77:00:be:b4:6c:61:8c:2d:02:d5:fd:d3:00:c7:92:
24:4a:90:59:d1:c5:36:fd:6d:eb:42:44:db:fd:5e:3e:7d:1a:
3e:ff:8b:fb:c0:af:51:a7:3a:d2:39:c8:d4:86:be:3b:8a:58:
bd:9c:d6:1b:e0:78:21:d1:f1:62:5d:9c:30:27:12:8a:5c:21:
ba:bf:d7:70:5f:7c:b7:76:de:51:0e:d3:c4:ce:82:ea:40:63:
c5:ea:76:6c:9b:5f:ad:43:39:0e:86:ff:8e:cc:a1:5f:32:f2:
40:bd:ac:f8:b2:b6:16:80:5f:bd:c6:4d:83:21:a9:da:27:d5:
41:15:f5:e4:3f:d8:70:c2:ec:43:b0:97:25:94:67:f5:89:58:
85:52:99:36:d2:6e:46:69:29:22:83:b9:f9:99:3f:f2:7b:4b:
4d:f3:65:33:c3:1f:a7:82:c8:8e:85:93:0b:ea:6a:e1:fd:cf:
49:a4:57:74:18:82:e0:48:49:d4:c5:96:4c:8b:2a:9c:8a:f8:
57:18:c6:a6:ae:44:12:18:94:50:f2:a9:ce:2a:e7:91:57:4b:
db:cd:78:5d:1a:f1:60:47:2c:1f:c1:a3:2c:75:91:4d:18:f4:
1f:e5:1c:b4:db:9e:5c:67:a4:52:ff:79:39:3e:fb:b4:19:25:
cf:b0:c6:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:06:44 2025 by rpki-client