Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
File: 2QrRERMYMAumeOiOBQKx_FHjU3k.mft (raw, json)
Hash identifier: RtXBQb6FlqoQj/6nEQN6oolkvCrYDwUp/rgxhyrcum4=
Subject key identifier: AB:9A:DD:98:0C:09:7C:EE:32:6E:D7:34:D2:52:19:64:B8:16:1F:74
Authority key identifier: D9:0A:D1:11:13:18:30:0B:A6:78:E8:8E:05:02:B1:FC:51:E3:53:79
Certificate issuer: /CN=d90ad1111318300ba678e88e0502b1fc51e35379
Certificate serial: 0199FE0FCD9BACD611E3B48C344C39452ECF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
Manifest number: 02ED
Signing time: Sun 19 Oct 2025 20:01:12 +0000
Manifest this update: Sun 19 Oct 2025 20:01:12 +0000
Manifest next update: Mon 20 Oct 2025 20:01:12 +0000
Files and hashes: 1: 2QrRERMYMAumeOiOBQKx_FHjU3k.crl (hash: K63aaEsXB85X7pauzJTmW7gdGWZwnaFXrTXnwPhXVws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:0f:cd:9b:ac:d6:11:e3:b4:8c:34:4c:39:45:2e:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90ad1111318300ba678e88e0502b1fc51e35379
Validity
Not Before: Oct 19 20:01:12 2025 GMT
Not After : Oct 20 20:01:12 2025 GMT
Subject: CN=ab9add980c097cee326ed734d2521964b8161f74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:78:ff:80:0d:1e:78:9e:02:75:8b:df:d7:4f:
aa:53:1d:b7:bd:0d:bd:1b:02:30:a9:a5:e2:07:79:
4e:10:b8:7b:22:6e:8c:27:41:4a:0e:24:8c:d4:f8:
9c:05:69:79:06:71:55:52:0b:4b:16:ee:b5:d5:ce:
91:8d:26:7a:88:4f:3c:75:c0:9b:85:ed:f0:04:92:
c2:7c:8b:ba:50:32:a5:15:fb:35:ad:9a:85:fa:c8:
f4:7d:1a:f2:5f:5b:53:3b:e6:8e:f6:44:4e:bb:7b:
94:7e:6c:6b:b5:46:ec:05:54:18:48:8c:31:4e:15:
ea:65:bd:9d:31:b2:4a:9a:92:34:4c:f8:42:91:96:
1f:97:20:9b:ab:64:0e:c3:08:5b:b8:e4:1f:ee:80:
9a:ae:da:95:61:54:1a:b9:17:7a:a5:02:a0:f4:5a:
aa:e6:fc:15:36:5a:87:45:1b:12:78:f6:bc:88:29:
22:69:3d:8e:7c:ad:1c:a3:d9:12:30:b1:9d:ee:2b:
1f:ee:b1:c5:49:c6:da:c8:b2:3e:a5:b1:39:f3:96:
0f:b9:8b:36:9d:aa:9e:d2:29:a4:d0:d3:d8:e1:89:
41:6f:ed:2c:34:4b:a4:da:d4:c4:31:06:e5:99:6f:
77:e8:96:3b:a9:cd:16:b0:27:a0:03:df:17:b1:a2:
8b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:9A:DD:98:0C:09:7C:EE:32:6E:D7:34:D2:52:19:64:B8:16:1F:74
X509v3 Authority Key Identifier:
keyid:D9:0A:D1:11:13:18:30:0B:A6:78:E8:8E:05:02:B1:FC:51:E3:53:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:02:c5:99:7d:bc:ac:9a:3d:58:8f:f5:a9:e0:44:92:f1:b4:
4f:61:28:89:6c:79:e0:7c:ce:97:a4:58:fc:25:0d:ba:44:36:
43:ac:50:85:9c:df:ff:89:9c:df:4c:aa:c0:3e:59:bd:d3:7e:
3e:7b:9d:14:77:ce:6b:4a:d6:47:05:e3:00:01:73:b2:d3:59:
18:92:41:1c:56:95:3d:ed:ae:aa:06:34:50:21:cb:b8:3b:02:
9a:87:74:f5:89:80:0f:b5:7b:5c:5d:34:cc:13:46:57:8f:e5:
f3:01:f7:52:a2:7d:f8:f1:28:b8:44:b5:cb:1f:64:2b:39:4f:
14:50:31:ae:ec:32:af:38:8a:ca:0b:eb:ef:bd:b9:0d:b8:e4:
a0:26:44:82:61:ec:e9:98:82:c3:3f:13:44:a8:5b:68:9c:b3:
2a:a4:13:0f:ca:a6:34:ab:ec:fc:c0:a5:0a:9f:9b:c6:21:07:
57:c7:a8:37:ac:62:c1:2f:04:df:1d:30:05:4a:34:04:bf:da:
71:23:48:1e:b7:49:9c:89:8d:fb:63:42:60:c1:9e:05:28:2d:
61:eb:73:ef:1a:6a:c2:a9:95:19:38:d4:37:4e:26:4d:fd:ce:
58:fe:db:c6:f8:aa:70:5c:24:c4:70:bc:fd:36:3c:ed:f8:95:
bc:a9:7b:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:31:15 2025 by rpki-client