Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
File: 2KVuLWOsXam-012gHL-tIl8EvrA.mft (raw, json)
Hash identifier: aEnzFjTBGTHQ5LV+ByUlivE6XBCyvG5f04hb/I9Dl9E=
Subject key identifier: F0:89:BA:72:8F:E1:72:B4:2D:1B:71:99:B7:11:75:C9:E4:15:98:ED
Authority key identifier: D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
Certificate issuer: /CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Certificate serial: 019A006BE797D151EB197D382010578B5450
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
Manifest number: 16E7
Signing time: Mon 20 Oct 2025 07:01:02 +0000
Manifest this update: Mon 20 Oct 2025 07:01:02 +0000
Manifest next update: Tue 21 Oct 2025 07:01:02 +0000
Files and hashes: 1: 2KVuLWOsXam-012gHL-tIl8EvrA.crl (hash: 5uGsVECe96iiM4UUVGLekwik6IKIQsx0XG4A1EFesRw=)
2: RCebozhiTcCblvotMpWCdCJ1ob8.roa (hash: ZFZoBEoVJHz2x12TIIxXed5WibUd/7/bBstI8X2ocJo=)
3: nQS504JwOxjiWHwncxw2UXqZAyw.roa (hash: 3N4RSXWIhF3ipth4gfwK0f71CjoGPMdi4/hqfhot2X4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 07:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:6b:e7:97:d1:51:eb:19:7d:38:20:10:57:8b:54:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a56e2d63ac5da9bed35da01cbfad225f04beb0
Validity
Not Before: Oct 20 07:01:02 2025 GMT
Not After : Oct 21 07:01:02 2025 GMT
Subject: CN=f089ba728fe172b42d1b7199b71175c9e41598ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:09:da:38:a6:49:3a:7c:c5:45:7c:78:6a:8b:
09:df:7f:7d:5b:64:c7:43:c1:31:de:86:bc:78:23:
63:ef:b7:91:aa:f0:55:de:54:06:ce:0e:c6:31:6c:
38:fe:9d:ec:bf:3d:29:9b:09:e6:08:8d:3c:cb:99:
b8:ea:5f:2e:42:53:49:60:c4:c6:bc:af:a1:50:aa:
b8:2c:e9:2d:1e:aa:ab:d8:29:c1:1f:e7:d5:78:12:
2c:7c:63:a5:a7:f3:2d:ab:e9:df:e1:52:2e:7f:f6:
bf:86:f9:07:5f:4c:37:c0:f5:39:b5:ba:28:aa:44:
86:f2:ec:0c:cc:cf:f2:34:d9:1f:b5:6a:0f:0f:90:
0e:84:c8:b1:72:e7:24:e3:d2:ed:a2:a6:91:7f:b4:
ca:22:5b:27:8f:12:4d:ba:22:07:1c:88:bf:58:0a:
8f:a5:d1:3a:56:5d:fd:87:73:e6:2c:e1:14:ad:51:
05:c8:28:ee:49:01:00:c7:3e:8c:42:00:94:8d:91:
15:50:1f:c2:78:ba:0f:d9:8c:37:af:28:9a:78:ee:
33:43:71:1a:27:1c:fd:17:8b:6b:67:fd:07:0c:d3:
e8:15:bb:25:22:fe:fc:dd:8e:d4:4d:cd:59:1c:9f:
77:04:04:1d:32:0c:64:c3:7a:15:a9:c0:61:63:0b:
fa:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:89:BA:72:8F:E1:72:B4:2D:1B:71:99:B7:11:75:C9:E4:15:98:ED
X509v3 Authority Key Identifier:
keyid:D8:A5:6E:2D:63:AC:5D:A9:BE:D3:5D:A0:1C:BF:AD:22:5F:04:BE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KVuLWOsXam-012gHL-tIl8EvrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/74177c-5e3b-4836-8867-e8d47bba25bf/1/2KVuLWOsXam-012gHL-tIl8EvrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:88:b4:70:e7:a1:b5:d6:04:44:bc:4b:21:49:f1:75:f8:20:
5f:8f:a0:8e:49:80:f9:a7:ce:66:93:f3:ff:0a:b6:83:6a:f1:
5e:15:4d:02:b3:35:b2:b1:b3:2f:99:86:60:c8:c5:a4:8e:60:
6e:6e:02:05:7c:33:ac:1f:e4:a5:62:d4:8e:1a:74:c0:b9:98:
e3:c1:d0:65:89:be:27:aa:7f:58:64:be:ac:d5:66:7f:34:fe:
92:18:a8:e9:b3:28:d7:b3:05:c2:56:06:dc:10:fa:e9:63:db:
36:f9:d1:1e:2d:b4:5c:78:4b:a6:6f:0b:99:88:65:6a:d9:bf:
fe:7a:64:f5:50:07:ae:2a:d1:8e:c9:af:eb:aa:f2:4d:c4:d8:
ce:37:59:d5:06:d2:3d:a0:f4:9d:1d:6b:47:5f:ad:2b:90:4e:
31:67:c8:42:a6:79:13:ac:2c:25:b7:0a:4b:5f:1c:65:61:34:
0e:a2:45:f5:86:e2:aa:4e:c5:8f:c3:09:bf:58:58:36:d1:9e:
5d:e1:ed:cc:ed:dd:73:63:c8:26:89:29:e4:8c:86:81:fb:68:
5e:a2:ef:fb:06:d2:ca:ee:5e:18:07:3b:ca:9b:ce:22:63:f9:
b6:ae:89:80:c6:0a:c7:70:fe:1b:be:5a:3d:d1:37:b6:73:86:
34:ec:fd:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 11:18:09 2025 by rpki-client