Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
File: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft (raw, json)
Hash identifier: rba2yFhUf2D09aZCi2ZoWEFiFlklPtX87oO75m10a8Y=
Subject key identifier: F1:A0:E9:FA:CC:08:13:02:79:BB:86:3B:60:D3:F2:3E:5A:0F:E1:E0
Authority key identifier: DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
Certificate issuer: /CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Certificate serial: 0199FD33FB91D8453310B75869DFB9C58505
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
Manifest number: 0E72
Signing time: Sun 19 Oct 2025 16:01:06 +0000
Manifest this update: Sun 19 Oct 2025 16:01:06 +0000
Manifest next update: Mon 20 Oct 2025 16:01:06 +0000
Files and hashes: 1: 2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl (hash: m4Am8NImsOW9L89o7qt2Wv8x1O3J6t8GddF5T91CqyU=)
2: nEst59VNXuZ4VJfEimqfkDoIWMw.roa (hash: MVYyTOwc+4oCrDyXY6sI17JYzQycO6fjKklmhjG1KnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:33:fb:91:d8:45:33:10:b7:58:69:df:b9:c5:85:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da73a39a0e045ddfaef502f1fd91c6cc16509459
Validity
Not Before: Oct 19 16:01:06 2025 GMT
Not After : Oct 20 16:01:06 2025 GMT
Subject: CN=f1a0e9facc08130279bb863b60d3f23e5a0fe1e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:c8:c3:e8:0c:f1:2a:34:29:36:af:80:e6:f7:
42:73:db:8a:e6:40:62:c5:13:ee:2d:b0:f6:34:54:
1b:1d:df:6b:43:88:46:ea:2d:20:a4:71:2d:17:15:
70:5e:de:06:b6:f2:f5:b4:d2:a3:cf:24:2a:e5:8e:
82:f0:4d:3b:e6:e8:21:b5:5f:17:aa:81:9d:f1:a1:
70:77:37:af:cd:e6:f3:28:d6:f3:60:79:64:f3:94:
e4:92:1e:67:fb:be:8f:eb:99:38:22:cb:bf:30:e6:
58:fe:22:eb:b7:2b:55:0a:3e:f3:ff:3c:f0:88:9a:
45:db:7f:9b:1d:6e:33:47:78:4d:92:fd:86:df:f5:
8c:3e:ed:49:eb:a8:02:94:71:2b:96:31:56:44:c0:
a3:73:3e:2d:06:82:38:88:f5:15:a6:88:09:20:20:
3a:76:07:a0:4b:4d:8c:86:65:21:e8:4e:ad:f8:4d:
c2:29:58:ce:1b:c1:a6:b1:f4:96:41:d4:6d:e5:c1:
d6:ee:98:b8:68:3e:8a:ac:1a:0e:d0:9d:26:89:3c:
52:c2:d1:3e:30:58:b7:12:3b:4a:99:be:42:3a:94:
ce:1b:bd:bf:ae:e9:27:2e:81:17:50:cd:60:46:af:
15:0c:77:7a:76:b6:ff:a9:23:16:88:51:19:fc:7f:
32:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:A0:E9:FA:CC:08:13:02:79:BB:86:3B:60:D3:F2:3E:5A:0F:E1:E0
X509v3 Authority Key Identifier:
keyid:DA:73:A3:9A:0E:04:5D:DF:AE:F5:02:F1:FD:91:C6:CC:16:50:94:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/1737fc-b221-4ff0-bfa7-5d674caddd6f/1/2nOjmg4EXd-u9QLx_ZHGzBZQlFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:d9:4d:2b:f7:5d:5d:a0:45:61:69:09:db:0f:bc:77:a6:0e:
5d:1f:96:11:ce:5d:e6:bb:7a:6a:7b:72:f8:22:03:b8:96:62:
d9:b4:9f:5c:d8:c3:93:b2:b7:93:ba:6e:13:45:10:bb:5f:5d:
1a:da:7a:7f:df:52:79:09:b4:64:72:26:38:f8:81:2e:95:64:
d1:1a:f1:72:ad:a5:77:e3:c6:a5:4b:89:4a:a6:ad:61:5d:62:
ab:94:b0:73:c7:30:4c:4c:7a:9f:c0:4f:62:b3:ea:a8:d7:a5:
df:f1:70:53:fd:4e:78:5e:dd:00:79:58:ce:80:e5:d9:24:b7:
c7:f0:4f:41:71:95:0c:fb:82:2f:6c:cd:11:a8:33:9b:65:c6:
37:6c:13:25:3f:6a:6f:3b:64:17:95:3b:60:cc:0c:05:f9:55:
1b:0f:5a:46:bc:99:d7:b4:b2:fd:ca:41:45:08:37:3a:12:43:
7a:8c:b5:f5:2e:7e:7e:75:64:1f:13:c9:3f:0c:7f:a2:0f:1c:
83:32:7e:d2:73:0b:68:85:52:e4:5d:c8:31:9c:5f:d6:89:9a:
64:85:c6:b9:8f:1e:3f:a5:5d:4b:cc:79:1e:66:89:a8:0e:49:
8a:6e:b3:31:5e:96:96:54:36:28:2f:ee:02:ba:ee:31:b3:3b:
a9:cb:30:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:49:32 2025 by rpki-client