Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
File: 2xjQrivPZ9QUonXLOE8tOWCoN70.mft (raw, json)
Hash identifier: jeQjaf7yKbNK40mk0A4O2WEaK/dWEcK6TJyVfqe6C/I=
Subject key identifier: D0:88:C1:86:94:53:20:BA:A5:9D:5A:EC:2F:5A:3D:90:F9:9E:E0:F7
Authority key identifier: DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
Certificate issuer: /CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Certificate serial: 0199FE475EBF660C3FBB1A12F48962D53FAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
Manifest number: 0E5B
Signing time: Sun 19 Oct 2025 21:01:54 +0000
Manifest this update: Sun 19 Oct 2025 21:01:54 +0000
Manifest next update: Mon 20 Oct 2025 21:01:54 +0000
Files and hashes: 1: 2xjQrivPZ9QUonXLOE8tOWCoN70.crl (hash: L+fhGI2atPFf8LJBPXjDm4jccYWLuWk4R0XBcTA91MQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:47:5e:bf:66:0c:3f:bb:1a:12:f4:89:62:d5:3f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db18d0ae2bcf67d414a275cb384f2d3960a837bd
Validity
Not Before: Oct 19 21:01:54 2025 GMT
Not After : Oct 20 21:01:54 2025 GMT
Subject: CN=d088c186945320baa59d5aec2f5a3d90f99ee0f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bf:af:ff:d7:96:19:a1:31:08:b3:55:74:1d:
d4:18:e2:ca:eb:53:07:64:a6:f9:ad:ef:f3:3d:dc:
3d:9d:a6:17:c7:80:9d:5f:25:a6:7e:e3:67:ad:89:
da:bc:38:ea:b3:b4:69:20:97:5d:e9:85:78:37:6f:
53:5e:b1:91:23:bb:1f:48:e8:16:a9:5d:14:0f:2d:
f9:60:c2:b9:cb:2c:60:a6:8e:c9:b1:ac:1e:c2:89:
18:b8:13:44:7d:bb:f3:55:59:aa:12:78:74:69:28:
be:b2:9c:3b:1c:0e:73:98:e1:b7:f0:a4:7f:ef:61:
da:e2:bc:1a:db:18:cc:b7:d3:1d:50:10:60:4e:b9:
ce:36:6e:3e:e4:c0:d5:2b:48:33:0b:6e:ee:76:bf:
4c:22:c2:5f:e2:30:ae:cb:17:7f:ea:9b:e3:41:17:
99:6b:14:88:ed:85:77:1b:61:21:93:35:a4:3b:f1:
25:ad:b6:98:b8:d9:8a:63:56:a2:95:75:c1:0c:97:
72:64:bf:a9:09:74:c1:4a:4f:f4:57:5c:ca:69:c9:
e7:5b:d7:c8:1b:ab:49:75:6d:7a:f4:47:e7:f9:4f:
7c:6c:7d:24:1c:11:06:08:87:f0:7f:21:e0:98:e4:
02:9c:55:0a:a2:57:0a:57:12:89:0d:25:57:b8:75:
c3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:88:C1:86:94:53:20:BA:A5:9D:5A:EC:2F:5A:3D:90:F9:9E:E0:F7
X509v3 Authority Key Identifier:
keyid:DB:18:D0:AE:2B:CF:67:D4:14:A2:75:CB:38:4F:2D:39:60:A8:37:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2xjQrivPZ9QUonXLOE8tOWCoN70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/cef896-f968-4c2f-80c4-0acebaa67b79/1/2xjQrivPZ9QUonXLOE8tOWCoN70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:f9:9f:56:60:2e:9b:0d:5d:14:39:89:78:59:b3:44:1d:40:
6a:c5:5f:9b:55:d3:36:d7:f7:96:39:06:19:53:7b:99:db:aa:
ac:3a:1d:13:50:a4:42:b5:88:45:ca:de:4c:97:b2:d7:6e:f8:
db:26:c1:6a:e5:05:bb:dd:bb:41:16:ae:dd:1f:1c:7f:54:3d:
50:10:80:86:e1:39:7a:2b:2c:54:ce:bc:82:62:c1:10:db:46:
ad:3c:e3:01:cf:1b:c6:a9:60:43:19:33:20:62:bf:6c:0c:80:
11:23:bc:5d:2f:91:29:81:de:d2:22:55:ae:91:af:da:5c:84:
29:85:2f:d4:d0:5f:0d:20:34:7e:f0:d8:09:04:71:e1:fb:39:
62:34:de:20:90:f5:4b:7b:c7:04:26:3a:d5:2a:b4:d4:44:0c:
8a:11:f3:f6:c9:aa:31:f5:b9:e6:67:bf:1d:4d:7f:af:ff:12:
ce:e2:c1:df:bf:9c:da:c5:a0:21:b7:4a:da:9a:bd:d9:b9:00:
c6:41:17:19:9c:47:fd:4d:cb:8f:b2:b6:75:5d:66:d1:80:22:
f5:a9:9c:63:26:66:c1:f2:16:ba:1f:e7:06:13:8d:44:03:d3:
7b:87:a5:98:66:f0:26:61:63:73:cf:bc:68:63:43:01:1f:a7:
4c:8b:b1:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+R16/Zgw/uxoS9Ili1T+rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMThkMGFlMmJjZjY3ZDQxNGEyNzVjYjM4NGYyZDM5NjBh
ODM3YmQwHhcNMjUxMDE5MjEwMTU0WhcNMjUxMDIwMjEwMTU0WjAzMTEwLwYDVQQD
EyhkMDg4YzE4Njk0NTMyMGJhYTU5ZDVhZWMyZjVhM2Q5MGY5OWVlMGY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArL+v/9eWGaExCLNVdB3UGOLK61MH
ZKb5re/zPdw9naYXx4CdXyWmfuNnrYnavDjqs7RpIJdd6YV4N29TXrGRI7sfSOgW
qV0UDy35YMK5yyxgpo7JsawewokYuBNEfbvzVVmqEnh0aSi+spw7HA5zmOG38KR/
72Ha4rwa2xjMt9MdUBBgTrnONm4+5MDVK0gzC27udr9MIsJf4jCuyxd/6pvjQReZ
axSI7YV3G2EhkzWkO/ElrbaYuNmKY1ailXXBDJdyZL+pCXTBSk/0V1zKacnnW9fI
G6tJdW169Efn+U98bH0kHBEGCIfwfyHgmOQCnFUKolcKVxKJDSVXuHXD5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNCIwYaUUyC6pZ1a7C9aPZD5nuD3MB8GA1UdIwQY
MBaAFNsY0K4rz2fUFKJ1yzhPLTlgqDe9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnhqUXJpdlBaOVFVb25YTE9FOHRPV0NvTjcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9jZWY4OTYtZjk2OC00YzJmLTgwYzQt
MGFjZWJhYTY3Yjc5LzEvMnhqUXJpdlBaOVFVb25YTE9FOHRPV0NvTjcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9jZWY4OTYtZjk2OC00YzJmLTgwYzQtMGFjZWJhYTY3Yjc5
LzEvMnhqUXJpdlBaOVFVb25YTE9FOHRPV0NvTjcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUfmfVmAu
mw1dFDmJeFmzRB1AasVfm1XTNtf3ljkGGVN7mduqrDodE1CkQrWIRcreTJey1274
2ybBauUFu927QRau3R8cf1Q9UBCAhuE5eissVM68gmLBENtGrTzjAc8bxqlgQxkz
IGK/bAyAESO8XS+RKYHe0iJVrpGv2lyEKYUv1NBfDSA0fvDYCQRx4fs5YjTeIJD1
S3vHBCY61Sq01EQMihHz9smqMfW55me/HU1/r/8SzuLB37+c2sWgIbdK2pq92bkA
xkEXGZxH/U3Lj7K2dV1m0YAi9amcYyZmwfIWuh/nBhONRAPTe4elmGbwJmFjc8+8
aGNDAR+nTIuxWw==
-----END CERTIFICATE-----
Generated at Mon Oct 20 00:15:04 2025 by rpki-client