Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
File: 2YtaX7E4aD0ajMcBn3iXC65ngig.mft (raw, json)
Hash identifier: SxSQhtWZJAFPLiALBaN2EzAH8/cIBona+OOO2NgA/Ak=
Subject key identifier: 07:26:1F:A4:C0:A1:FF:BE:75:33:2F:10:E7:B4:1D:1C:A6:CE:9F:98
Authority key identifier: D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
Certificate issuer: /CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Certificate serial: 0199FB0EC4DD10D85C8F65EB890D83C08A79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
Manifest number: 100B
Signing time: Sun 19 Oct 2025 06:01:13 +0000
Manifest this update: Sun 19 Oct 2025 06:01:13 +0000
Manifest next update: Mon 20 Oct 2025 06:01:13 +0000
Files and hashes: 1: 2YtaX7E4aD0ajMcBn3iXC65ngig.crl (hash: A/bSVFFO9vSfhNPZXo8wZzYLrZ7Z6ufjz0J2XqdgiqY=)
2: pGBMbGUVmfmMQKR1-BVF--sKK7U.roa (hash: ayj/a/EtllFNMGD1HzcA6KglHzS5bxHd+NVb8RRWcAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0e:c4:dd:10:d8:5c:8f:65:eb:89:0d:83:c0:8a:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Validity
Not Before: Oct 19 06:01:13 2025 GMT
Not After : Oct 20 06:01:13 2025 GMT
Subject: CN=07261fa4c0a1ffbe75332f10e7b41d1ca6ce9f98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f6:a9:a1:42:47:e9:27:f9:70:38:7f:6d:09:
ad:d7:cf:13:04:24:28:15:a5:2f:a8:f1:ce:ce:98:
ec:e4:f2:bf:35:17:3e:01:bf:82:ae:0c:85:29:0a:
f9:91:cb:65:7c:f5:49:6c:e2:bd:63:b5:d3:e9:09:
04:3e:a9:a4:14:d6:c8:b8:ba:ca:90:f9:2f:dc:1a:
28:82:eb:7b:5b:5c:24:5a:f8:f5:8c:d8:d6:5b:c9:
6d:1c:3e:4b:9f:42:a0:d1:7f:05:65:72:c3:20:d4:
a9:cb:3f:93:b2:c7:62:7b:1c:f8:15:7b:39:2d:54:
9a:6b:82:ee:db:13:16:f3:5a:48:65:61:08:ff:f7:
55:88:b5:d7:1e:7e:d4:e1:6f:c5:4f:71:a0:87:f8:
5d:a8:02:fa:44:94:84:5b:72:2e:39:51:f4:28:a1:
d2:05:6b:c6:1d:22:23:43:cf:d1:23:16:ef:0b:92:
be:2e:79:ac:fb:92:f1:23:f8:7f:d7:a8:40:8d:27:
4a:04:42:51:d6:7b:0f:6c:cf:3a:60:e9:51:ef:b3:
1a:42:e9:2c:3e:d8:01:29:cd:b1:f0:28:45:59:2e:
5b:23:a5:0f:8c:35:b0:1f:c5:d7:55:49:c6:31:36:
af:1d:5b:f5:1d:71:79:48:33:0d:37:be:3c:9e:92:
2c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:26:1F:A4:C0:A1:FF:BE:75:33:2F:10:E7:B4:1D:1C:A6:CE:9F:98
X509v3 Authority Key Identifier:
keyid:D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:69:72:08:31:77:e5:f5:46:4c:73:80:63:76:93:f1:c2:70:
0a:61:c7:bd:b2:84:06:77:07:26:0d:f2:9b:23:9c:79:24:78:
da:ac:75:93:c4:e7:00:cf:74:cc:73:88:7b:c5:78:b2:c7:5e:
9e:85:ec:35:ff:a4:f2:90:61:95:ad:34:38:c5:8c:60:98:f4:
34:1e:33:5c:f7:98:76:29:74:e8:20:b3:61:2e:70:8e:b5:ba:
e0:ed:e6:54:ec:89:84:fc:0a:92:84:cb:3c:1d:7d:7d:58:f2:
ee:2c:b3:ad:cb:5d:43:5f:47:1f:7d:f7:2f:5f:e5:40:72:fc:
6d:33:43:fa:27:eb:5b:d8:5f:cb:ee:c5:e2:a6:d0:2e:69:f3:
5c:a2:41:bc:bc:a8:e7:be:1b:e4:d6:5f:ad:38:84:97:0c:36:
f0:88:7c:61:8b:49:91:e4:3d:02:ff:4c:1e:ed:3d:d1:17:7a:
29:63:21:d7:74:93:36:2f:16:13:58:65:ba:cc:29:c7:3e:a2:
be:a7:72:1f:69:4a:0d:29:77:8a:9e:f4:ec:f2:ac:f4:38:ce:
0b:af:b2:b2:28:45:f6:30:e7:6e:05:37:53:a6:25:ff:d8:9d:
c3:bf:6b:cd:f4:eb:bb:bc:8c:1f:a7:6e:65:ab:55:dd:64:94:
5b:58:9d:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 12:52:31 2025 by rpki-client