Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
File: 2qM7UIN5nEnPntwAhit8nCGMZhM.mft (raw, json)
Hash identifier: 83YI1v50wFaHD6/OG39AvOVzpZXTbp9RsyGu4p/f14Q=
Subject key identifier: 42:29:5B:2E:34:58:D9:12:90:ED:40:F4:F1:A4:42:E8:78:C9:83:C3
Authority key identifier: DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
Certificate issuer: /CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Certificate serial: 0199FC58473EFD315D6D6A797AA833358E21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
Manifest number: 046B
Signing time: Sun 19 Oct 2025 12:01:07 +0000
Manifest this update: Sun 19 Oct 2025 12:01:07 +0000
Manifest next update: Mon 20 Oct 2025 12:01:07 +0000
Files and hashes: 1: 2qM7UIN5nEnPntwAhit8nCGMZhM.crl (hash: wo25+GuT2m+pMC17BXplx6wCPBTUJBzAap6eitIIfhk=)
2: unxQV4Al2mLpnwI70qRpIDmTnOs.roa (hash: nWcMiPSfSb9yfnTzVXtb4VL1rzMEuoLvPQwzaYNt8PI=)
3: vQ_BwqF-3Ov1ig9gZpa4J3HSW9I.roa (hash: Fg81qYF19AaSbeLDfj9BfeZ+UCo1V2TWp+mQX1SfkJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:47:3e:fd:31:5d:6d:6a:79:7a:a8:33:35:8e:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Validity
Not Before: Oct 19 12:01:07 2025 GMT
Not After : Oct 20 12:01:07 2025 GMT
Subject: CN=42295b2e3458d91290ed40f4f1a442e878c983c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0b:c5:7d:0f:e3:0d:52:82:5d:e2:53:4d:c9:
7f:31:eb:71:e3:f9:e1:a7:b2:6b:3e:4b:2a:41:73:
8e:ea:f7:f2:1d:59:c6:e6:8b:f8:88:00:18:df:98:
ac:d3:1b:55:e9:d7:0e:54:3f:53:14:57:b1:c0:8f:
79:24:57:7e:f9:09:cd:74:4b:cd:22:8a:00:f9:91:
e1:0b:4a:de:d2:0f:e9:d5:75:78:9f:ad:5b:51:fb:
66:3e:3a:7e:4e:bd:bb:f1:36:2b:cc:a4:63:76:3a:
18:73:dd:98:20:cf:c3:30:81:ca:2c:e4:37:fe:7f:
d7:20:fe:9a:b5:7b:2f:bb:5d:dc:ab:59:16:d5:78:
3b:be:ef:a6:ca:fe:4f:e3:dd:f0:ff:0a:6a:91:16:
37:01:73:1c:3b:04:0b:93:ca:69:49:89:ba:bd:c8:
58:49:68:7b:e7:73:15:56:cc:5f:e2:27:f8:f0:23:
35:61:b7:e4:1f:f1:2e:8a:13:a9:6c:b5:8e:f9:0c:
86:82:0f:0d:10:ca:77:39:24:a7:94:b7:54:03:98:
d8:71:8e:6b:75:db:36:2e:f2:16:bb:26:62:84:52:
a7:fd:bd:e5:7e:db:13:e1:b5:c6:0f:ae:52:de:96:
8a:ad:f9:80:bc:d0:ef:c3:9e:8d:28:3f:f7:b9:ed:
2e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:29:5B:2E:34:58:D9:12:90:ED:40:F4:F1:A4:42:E8:78:C9:83:C3
X509v3 Authority Key Identifier:
keyid:DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:eb:73:25:00:0f:5c:72:bc:75:78:ca:15:7c:72:68:4a:0b:
e7:15:9f:bc:67:b9:64:fc:02:83:7d:dc:a1:9e:fe:c7:5f:9e:
b7:41:dd:58:39:40:61:49:54:a1:e3:3d:5c:7f:8c:77:45:8c:
59:d9:b0:0f:04:7f:74:95:00:e4:96:c6:ff:3d:aa:09:2f:7d:
76:1b:ff:2c:86:f5:58:48:d5:51:82:c1:05:83:5e:61:9c:4d:
6c:34:1f:a7:eb:f4:5d:9d:44:d8:1a:85:9c:c4:6e:1a:1b:87:
44:f6:6f:62:f3:1e:95:e8:12:29:ba:22:8a:2b:5d:98:69:32:
a7:12:3f:2c:a7:92:0c:ce:95:f9:00:fa:4b:3f:db:49:40:71:
0f:28:99:47:f7:08:7f:ea:bf:7e:d9:b3:4c:69:2a:21:53:75:
e7:9b:23:c4:c9:a9:32:b4:ff:a8:24:f0:68:8c:aa:66:d0:e4:
64:12:f6:9a:5d:fd:81:f3:0e:37:f8:c0:e2:3d:66:41:e8:3f:
58:af:29:b2:7e:24:e7:c1:1c:5d:9b:f5:6d:86:df:e8:4e:f0:
c8:c9:8f:8f:37:8c:23:73:5b:05:ca:fb:21:aa:17:c5:d6:13:
5a:6f:ac:a4:0c:f2:f7:c1:a2:08:5c:5d:de:8f:98:95:10:5e:
81:8f:9a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:48:01 2025 by rpki-client