Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
File: 2nGl-6KA1tAY7MOp1-WMPGEeav0.mft (raw, json)
Hash identifier: afcOGvCQ6/pKaQc2Po0WXSSGgADVNP6ZrEZZ+5uZx8k=
Subject key identifier: 18:A8:B1:BA:02:0D:81:2E:FA:84:95:4B:08:E8:AA:75:30:8A:17:75
Authority key identifier: DA:71:A5:FB:A2:80:D6:D0:18:EC:C3:A9:D7:E5:8C:3C:61:1E:6A:FD
Certificate issuer: /CN=da71a5fba280d6d018ecc3a9d7e58c3c611e6afd
Certificate serial: 0199FDD8D0B605D37B61A3A64B30B0024BB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2nGl-6KA1tAY7MOp1-WMPGEeav0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
Manifest number: 16DF
Signing time: Sun 19 Oct 2025 19:01:08 +0000
Manifest this update: Sun 19 Oct 2025 19:01:08 +0000
Manifest next update: Mon 20 Oct 2025 19:01:08 +0000
Files and hashes: 1: 2nGl-6KA1tAY7MOp1-WMPGEeav0.crl (hash: 7v7JYnIPr1lKi+0NM324oq1AcRlPk+mpEE2lNp2U0BM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2nGl-6KA1tAY7MOp1-WMPGEeav0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:d0:b6:05:d3:7b:61:a3:a6:4b:30:b0:02:4b:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da71a5fba280d6d018ecc3a9d7e58c3c611e6afd
Validity
Not Before: Oct 19 19:01:08 2025 GMT
Not After : Oct 20 19:01:08 2025 GMT
Subject: CN=18a8b1ba020d812efa84954b08e8aa75308a1775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5d:05:ec:40:d7:59:b7:38:69:23:6e:2e:80:
8f:b6:a9:18:53:13:49:6f:4b:a8:67:e3:44:26:43:
88:36:7d:7c:c8:d3:30:75:4c:82:21:a6:23:ea:5d:
3a:9f:b4:c5:f1:c8:c8:56:cc:28:04:1b:f5:18:b8:
72:93:3a:2c:67:43:67:02:99:84:03:a4:24:da:9a:
83:2e:b3:29:91:18:6e:07:89:1d:25:e5:13:87:40:
8c:d7:3e:19:c1:93:e3:94:ea:60:24:f4:b8:28:fe:
47:20:d3:57:e9:05:44:96:6d:46:ac:d0:83:6b:30:
55:f0:08:e7:14:6e:fb:9c:57:f5:4b:a4:fd:85:da:
ca:a0:f6:f5:df:2a:d3:21:b7:0a:38:09:d9:d8:62:
59:92:f1:b1:f3:3f:0f:ed:e3:fb:ea:ab:13:52:21:
3c:b1:06:f0:a3:e7:06:8a:5e:01:6c:ac:2e:7a:5f:
4b:4e:b3:33:c9:a7:4e:5d:d8:be:6c:3b:37:e2:4c:
bb:b1:ea:fd:10:53:6a:22:7e:22:70:2c:31:52:93:
21:31:34:64:6b:89:ba:ae:36:74:e9:04:fc:4d:a8:
b5:1c:1b:9f:e8:43:ed:6c:09:30:ad:e0:98:72:4f:
f5:80:20:7f:23:ca:88:e8:6b:1c:c9:43:69:5e:33:
8b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A8:B1:BA:02:0D:81:2E:FA:84:95:4B:08:E8:AA:75:30:8A:17:75
X509v3 Authority Key Identifier:
keyid:DA:71:A5:FB:A2:80:D6:D0:18:EC:C3:A9:D7:E5:8C:3C:61:1E:6A:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2nGl-6KA1tAY7MOp1-WMPGEeav0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/242692-a050-4783-8f7f-4c240a973d1e/1/2nGl-6KA1tAY7MOp1-WMPGEeav0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:09:c8:f4:7b:03:db:ab:bd:a1:0d:46:ce:1e:28:c3:c7:39:
98:ba:d7:d0:b6:56:a1:29:d8:36:65:de:e5:e9:b2:fc:e9:41:
7a:a4:41:9f:cc:15:9b:79:02:2a:d5:ac:83:18:de:f0:12:af:
e1:8e:5c:f4:9c:c8:cf:0a:74:92:de:55:7c:1d:6c:c0:65:10:
d3:32:f0:ab:cf:8c:18:62:70:57:c8:4e:29:64:9b:d3:7a:fe:
a8:13:3d:2b:df:2c:6c:4a:67:11:de:01:e9:c7:89:f5:3c:84:
20:95:c0:59:d0:b4:bd:e0:c8:46:8a:21:40:6b:3a:d2:de:18:
93:04:b4:d0:cf:a6:a5:44:3f:bb:77:83:13:eb:15:9d:0d:b3:
70:41:88:a8:bd:77:f4:28:a9:10:93:96:35:fc:d1:a6:c2:36:
59:6c:3e:af:09:1f:14:2a:d0:5a:05:6d:f7:d7:37:90:b8:44:
6c:1c:a9:7c:a6:5e:4c:ab:71:23:3b:09:b4:fa:1a:ec:25:43:
0a:b3:e5:38:f2:de:59:6c:78:19:48:d3:4c:9c:c4:1f:a1:5f:
61:c0:c4:46:8c:56:d8:33:f4:df:83:4d:80:62:ee:b7:b6:d7:
6b:a6:95:5c:79:53:bb:53:4e:76:e8:cb:ae:f6:fb:32:15:32:
d3:22:f8:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:03:06 2025 by rpki-client