Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
File: 2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft (raw, json)
Hash identifier: jElJK1Jt55o5THe1yPjVj/W3/BzEXIGI4hIpGC4Nbuk=
Subject key identifier: 60:7C:E6:9E:F5:83:C0:47:49:DD:31:03:C2:E1:54:6F:2C:87:81:5A
Authority key identifier: DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
Certificate issuer: /CN=da70c441fb892b8c9816534885069fcd3300c9a4
Certificate serial: 0199FAD84ED9A36813FB7B5B0E2630C31ED9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
Manifest number: 0E24
Signing time: Sun 19 Oct 2025 05:01:43 +0000
Manifest this update: Sun 19 Oct 2025 05:01:43 +0000
Manifest next update: Mon 20 Oct 2025 05:01:43 +0000
Files and hashes: 1: 2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl (hash: 530dBKQICyCByt4BoWuUvS0WsZFgm9yF+NGmCkhZMlM=)
2: 6MpCaf0UOBYn8TQkxejiZakptqM.roa (hash: ng/NGbK8yrrWtQu9zhuJZevZ0uFrzLg7FL/FvO6/2MU=)
3: KV03Rnxi6WRZwO1a4oGeC3HanlY.roa (hash: 7zq8HVJc+s32NHnBgUroFGKyISFlCLE015+0grkcycE=)
4: VEU2Xx_W7oXurM3BP9vIKZCMG4o.roa (hash: o9K/DHxqI5B4HDKoeQx+W7Rwvv3Sj+2t3qcauvi8Xig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:4e:d9:a3:68:13:fb:7b:5b:0e:26:30:c3:1e:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da70c441fb892b8c9816534885069fcd3300c9a4
Validity
Not Before: Oct 19 05:01:43 2025 GMT
Not After : Oct 20 05:01:43 2025 GMT
Subject: CN=607ce69ef583c04749dd3103c2e1546f2c87815a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6e:fd:1a:34:b6:7b:8b:86:f4:0e:d9:37:fe:
b7:5f:67:fe:45:7a:8e:d2:bd:03:15:65:4d:5a:ca:
9d:05:b9:c1:ac:9a:4f:8f:ac:cb:e4:e8:d0:dc:ae:
09:81:b5:96:8b:e7:31:a4:64:0e:be:a9:eb:53:0c:
67:86:d0:86:d2:97:d4:db:c5:73:0c:75:fa:db:09:
9b:25:7a:c6:63:47:56:e3:8d:77:69:76:a0:1b:47:
2c:53:1f:1a:97:73:7d:d4:83:e4:b8:c9:8d:30:24:
76:46:9f:b3:a5:6c:b7:53:58:67:26:94:df:da:6e:
ef:07:4f:d4:69:cb:ed:f0:d1:84:17:8b:dc:fc:80:
2b:ba:b0:3c:dc:8a:a0:de:74:88:0b:a6:fd:aa:91:
a1:df:4f:96:79:40:6b:72:f1:74:04:18:9c:8b:20:
5a:e8:f3:e1:1b:06:a8:5e:d2:2d:af:57:a2:68:c5:
8c:08:17:8e:44:7e:97:77:9d:1b:3d:8a:f4:0a:d0:
6d:77:f1:93:6f:5c:f7:e0:4b:88:b5:46:d8:0b:0b:
29:8b:3d:df:e3:48:bf:cc:02:ba:54:64:cf:7b:c6:
67:3c:df:ab:a9:49:6b:35:3f:64:39:ff:ab:05:54:
cf:3f:64:ca:74:4e:77:e9:ca:a2:1b:3f:e7:1d:16:
dc:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:7C:E6:9E:F5:83:C0:47:49:DD:31:03:C2:E1:54:6F:2C:87:81:5A
X509v3 Authority Key Identifier:
keyid:DA:70:C4:41:FB:89:2B:8C:98:16:53:48:85:06:9F:CD:33:00:C9:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nDEQfuJK4yYFlNIhQafzTMAyaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/e53de5-1b5f-4467-a68c-15fc0b68f844/1/2nDEQfuJK4yYFlNIhQafzTMAyaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:72:28:79:82:96:7c:ce:09:9f:20:b3:3b:62:a3:ec:f6:53:
ed:e6:bc:a4:50:4e:59:aa:0c:4d:7a:e4:58:7e:e6:7c:fa:b3:
fe:8e:31:d1:8e:00:21:dd:19:59:e5:af:23:db:cb:6b:bf:1a:
7f:0f:c7:5f:bb:cc:dc:8e:2a:ea:8a:27:7f:46:09:d3:63:65:
ed:71:1a:50:eb:d5:b4:9d:ec:9d:29:82:fc:20:d8:ad:b3:a7:
a7:83:d2:3b:5c:8c:78:b3:61:e6:3f:7d:2a:a3:4f:d0:1c:18:
ea:4b:15:46:f7:9b:c0:c5:06:c1:0e:56:0d:d2:50:a6:42:8a:
76:ad:8c:27:ad:8a:df:3d:de:59:9c:6d:07:81:bc:f1:80:00:
49:92:00:29:f2:f2:0a:fb:ea:9a:ac:93:3f:dd:4f:d7:aa:df:
3c:ba:98:ae:8f:c0:13:54:e1:cc:50:c9:7a:6e:4f:7c:3f:49:
05:34:6b:f4:28:57:b9:33:91:ad:5f:b0:57:04:41:20:d0:ba:
78:70:fb:ca:44:f3:9c:84:99:67:12:86:69:00:89:46:0d:a4:
d0:56:2d:2e:06:c6:e8:c7:56:c0:b6:82:a4:d9:57:39:93:1b:
e9:3d:97:1a:c6:bc:49:8c:70:e8:90:40:13:d8:24:ba:96:fb:
8a:a8:40:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:14:27 2025 by rpki-client