Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
File: 2q_pD50IEzTMko7e6bxzFUBwjf0.mft (raw, json)
Hash identifier: 0IlYiRcCO5V6UmwVX0Tqg9YBpEniCPLvqRCVEHSYFnU=
Subject key identifier: 55:06:E0:8E:F6:E5:EF:7A:A9:EA:6B:DD:A8:56:A4:9D:23:39:8B:6F
Authority key identifier: DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
Certificate issuer: /CN=daafe90f9d081334cc928edee9bc731540708dfd
Certificate serial: 0199FDD9ACC0197A4811C634CDDBE68288AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
Manifest number: 0A38
Signing time: Sun 19 Oct 2025 19:02:04 +0000
Manifest this update: Sun 19 Oct 2025 19:02:04 +0000
Manifest next update: Mon 20 Oct 2025 19:02:04 +0000
Files and hashes: 1: 2q_pD50IEzTMko7e6bxzFUBwjf0.crl (hash: xlvP9pNeiGES7mOTavIAABm8FfHqDOoqmQmBz2Bo1QY=)
2: ptCjyawSJ9frfP9fH_ikMswCnsI.roa (hash: qlAjQ7L6msxhMlwj1dEaHE32m8HH4N1buR0Bga+2/Qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:ac:c0:19:7a:48:11:c6:34:cd:db:e6:82:88:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daafe90f9d081334cc928edee9bc731540708dfd
Validity
Not Before: Oct 19 19:02:04 2025 GMT
Not After : Oct 20 19:02:04 2025 GMT
Subject: CN=5506e08ef6e5ef7aa9ea6bdda856a49d23398b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:02:84:af:db:d2:8e:82:d6:c2:fd:51:20:31:
76:55:69:04:3c:a8:7d:34:8b:51:d1:89:a4:bf:36:
91:3b:fa:0e:28:11:ef:98:c3:c0:67:47:45:08:00:
f5:7f:0a:ec:df:d6:00:18:5f:1e:1b:e1:e5:9f:4a:
60:e7:03:a4:bf:b3:77:e5:31:09:b6:8a:ae:8a:5f:
f6:b3:6b:e4:ae:74:08:91:6d:b8:bf:ea:a2:2f:55:
88:67:b2:c2:b5:bf:3c:3b:f6:87:6e:36:aa:03:54:
53:ac:c5:39:ee:b1:0f:01:d6:fe:f7:6f:e0:c8:e4:
5f:f6:b7:58:61:38:b2:5c:67:a4:df:97:de:00:3b:
e4:31:e0:67:4f:d9:18:0a:a3:2b:52:e8:4c:fb:3c:
28:85:f2:78:2e:27:ea:03:b2:62:2d:99:3e:9f:73:
8f:5a:66:3d:34:18:52:ac:e6:cb:e6:6d:46:af:ce:
7a:8b:b5:ec:64:7f:79:93:bd:57:dc:5d:89:3c:be:
09:33:48:49:ca:1c:3c:e1:20:71:e5:ba:9d:d8:6f:
7e:bc:64:de:c1:09:4e:ea:4b:06:f3:f2:cc:f9:5b:
67:4e:97:25:62:e1:3c:ef:96:e4:cc:6f:20:6e:82:
18:30:0f:66:e3:b2:5a:72:42:bd:86:e2:97:70:28:
48:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:06:E0:8E:F6:E5:EF:7A:A9:EA:6B:DD:A8:56:A4:9D:23:39:8B:6F
X509v3 Authority Key Identifier:
keyid:DA:AF:E9:0F:9D:08:13:34:CC:92:8E:DE:E9:BC:73:15:40:70:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q_pD50IEzTMko7e6bxzFUBwjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8bb3c1-199d-449b-ac46-bbd92ccafa88/1/2q_pD50IEzTMko7e6bxzFUBwjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:75:37:63:53:29:dd:84:55:4a:89:1a:8f:aa:2a:f0:f4:51:
19:61:01:d6:82:a3:77:71:2c:99:cd:e9:56:ed:f7:f0:0d:25:
f2:8a:06:7d:b1:bf:55:f8:52:ff:c7:bf:f7:92:98:24:21:fb:
12:21:39:35:11:c7:ad:26:3f:34:5f:d9:55:e5:42:f0:64:38:
e3:72:be:08:1e:c9:cb:d8:1d:a0:31:23:62:d2:e7:43:ac:8d:
b2:60:b6:b8:4b:f5:4e:d2:9a:b3:41:62:39:77:88:fa:fa:bc:
52:ac:1c:2d:a1:bc:f6:cc:c7:7c:88:6c:9f:bb:7d:37:0a:ef:
36:b7:bd:6b:81:16:ff:05:9e:88:33:d1:18:44:ee:b5:a7:ea:
0d:07:55:a7:83:e3:27:41:84:dd:b1:ec:93:37:43:7b:c3:5b:
46:70:2e:54:c0:eb:24:3e:51:66:39:e8:9a:ef:20:f6:3f:c6:
e5:e1:ef:30:77:29:c3:62:56:86:98:5f:c9:c7:16:ce:5f:e3:
d5:67:e1:c6:50:a6:7a:5b:0b:47:d7:91:e3:6c:00:a2:6c:3f:
58:2e:7c:4b:5f:71:a2:63:c2:b9:33:35:5e:fc:93:b8:42:ac:
01:da:4b:76:b4:e1:7a:e3:26:fa:79:a1:17:24:06:68:17:2a:
ec:00:34:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:03:15 2025 by rpki-client