Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
File: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft (raw, json)
Hash identifier: X+ED9uJuOHmDIVQB8oFgzZJMYF8USLp9mfhi/Hybcas=
Subject key identifier: FE:EA:78:09:ED:18:FD:E1:64:47:60:09:32:80:90:BE:27:8E:2B:0F
Authority key identifier: D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
Certificate issuer: /CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Certificate serial: 0199FD340EF3B7EB95DCF80B1955FF2C42BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
Manifest number: 0E04
Signing time: Sun 19 Oct 2025 16:01:11 +0000
Manifest this update: Sun 19 Oct 2025 16:01:11 +0000
Manifest next update: Mon 20 Oct 2025 16:01:11 +0000
Files and hashes: 1: 2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl (hash: b87Yt3GkQhFooCsRTBRsdsQX2MHTzZLC4fZtQFMzlg4=)
2: GhbIbk50hv6g93dh7hGhzK6K_74.roa (hash: nXi3Gj76e6GTyqlSijwexlGEZ4aKaxuj/QihrtfAHS8=)
3: R5r0xeVYQuyhFWywaHju63NvX88.roa (hash: gil6oFrijLp6JqgDOMjfduAOivvAur9Q9eunuVq1Ysg=)
4: TofwY-R4zO7hCFwhNRcFqFccDIA.roa (hash: CO89XYgmv4EUpm6JNaIOn/T7FUsKcLGJGFWRoloHQXo=)
5: kEveC8WkpMXtAhCjQYal_7N8cqU.roa (hash: 36t2IiG5a0ru6GNWxSIKI2twOH4WabuzXbDN7PDUMCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:0e:f3:b7:eb:95:dc:f8:0b:19:55:ff:2c:42:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Validity
Not Before: Oct 19 16:01:11 2025 GMT
Not After : Oct 20 16:01:11 2025 GMT
Subject: CN=feea7809ed18fde164476009328090be278e2b0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:78:4b:fb:65:e4:95:5e:81:38:ff:ea:ac:47:
d8:3a:91:66:b3:05:84:64:dd:1c:d5:ef:a5:d1:31:
92:f2:f1:54:c7:fc:b4:70:0d:cf:4f:13:33:58:00:
d4:29:19:49:1a:e6:ce:ad:7a:6e:b4:28:c4:26:87:
59:ee:0c:f9:73:15:0c:f1:8f:ba:e8:5d:f3:3b:87:
e1:18:18:d8:88:e7:0c:85:b2:dd:40:45:f5:31:5e:
fd:78:e6:43:e2:7f:ed:f0:dd:f0:d1:0c:3e:a0:eb:
c3:12:9f:fd:bf:17:52:54:9d:1b:63:f8:a3:aa:73:
d8:ee:7d:d5:af:19:5c:5e:62:d2:04:f7:52:0f:c5:
36:2c:c8:0f:b9:d1:22:36:88:67:ee:a9:07:c2:60:
b7:3b:48:ed:58:49:69:b5:ff:21:fe:dc:b9:18:d3:
5e:95:1b:3b:73:94:95:7d:58:ec:06:d8:8d:48:30:
bd:44:d7:92:8e:0f:02:cf:fd:01:6b:17:a2:87:4d:
d2:27:46:59:d3:06:15:c5:ea:fb:fb:a2:28:46:ad:
14:f1:dc:56:b6:aa:c1:3f:a0:db:82:53:da:63:d9:
46:2e:b1:15:5e:2d:58:e0:53:16:ef:a0:43:87:39:
f8:af:d9:78:2a:27:ae:20:b8:48:87:21:08:10:c2:
f5:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:EA:78:09:ED:18:FD:E1:64:47:60:09:32:80:90:BE:27:8E:2B:0F
X509v3 Authority Key Identifier:
keyid:D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:89:b0:6e:b6:d7:98:98:1d:02:55:8c:92:82:6e:d6:01:6a:
0b:82:b6:30:f3:79:5a:15:26:05:f5:d3:c2:2e:0d:16:a7:38:
ad:bb:2e:0d:2a:b8:3f:8f:85:0a:0a:e0:d5:1b:4d:31:ad:c3:
e9:ea:63:c8:ac:f5:c1:9d:3b:e7:3d:8a:bb:b2:90:dc:14:39:
d4:bd:0e:34:8e:7e:f8:15:9d:8b:bf:03:4a:33:da:d7:af:21:
51:54:c5:65:43:ca:36:45:a5:02:7e:33:52:c5:0e:c4:a6:b0:
47:77:71:d3:5b:5f:75:f8:43:5d:14:b0:c9:d3:90:1e:98:f6:
87:21:c5:39:5f:24:13:36:6d:91:33:7e:c2:6f:4c:c6:54:33:
0b:f7:c8:c0:34:cf:a6:2e:d9:bb:ad:a5:9f:09:84:0f:ff:e2:
01:04:f3:79:d4:0d:d7:c6:c7:9c:87:81:d7:68:64:0f:73:9f:
2f:11:33:53:41:b8:f9:f8:8e:7d:15:6d:24:fb:ef:97:41:2a:
d3:2a:f2:b8:1b:87:2a:13:6f:c4:6b:28:b7:e5:aa:07:22:c8:
7e:32:4d:8e:b9:37:fc:4a:27:3d:a4:01:9d:50:5e:12:fd:a8:
43:d2:39:d9:75:69:9b:64:84:f2:b4:97:23:8e:63:92:00:b0:
0b:51:07:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:07:36 2025 by rpki-client