Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
File: 2iHQJGSziv86MckIeNYnI7nHQqY.mft (raw, json)
Hash identifier: OG2keLZj2/bho5lpmAI83L0rz/tgmpqMJ/K0ZHoHsMU=
Subject key identifier: D6:B7:07:3D:FA:BA:55:46:5F:2E:BD:D0:40:30:63:29:49:1C:60:EE
Authority key identifier: DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6
Certificate issuer: /CN=da21d02464b38aff3a31c90878d62723b9c742a6
Certificate serial: 0199FBEB7ABDB5032BA8E65F647FB617146A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
Manifest number: DE
Signing time: Sun 19 Oct 2025 10:02:17 +0000
Manifest this update: Sun 19 Oct 2025 10:02:17 +0000
Manifest next update: Mon 20 Oct 2025 10:02:17 +0000
Files and hashes: 1: 2iHQJGSziv86MckIeNYnI7nHQqY.crl (hash: x4T9hRQ/zOgRZTz9kCOdTxE4B11K3x7Ew9+PDqp2XI8=)
2: vqXNaSZgp3ssNrNy6651RrVFS3Y.roa (hash: giLaYS/A+9rxwvGKkolgztkk8t+vnflpFT/hVk3pswQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:7a:bd:b5:03:2b:a8:e6:5f:64:7f:b6:17:14:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da21d02464b38aff3a31c90878d62723b9c742a6
Validity
Not Before: Oct 19 10:02:17 2025 GMT
Not After : Oct 20 10:02:17 2025 GMT
Subject: CN=d6b7073dfaba55465f2ebdd040306329491c60ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:bd:6b:13:83:b0:45:9b:94:85:41:c4:1a:dc:
62:0c:fe:ca:d4:ba:e2:98:da:a6:e5:87:a0:a4:7f:
8e:5b:69:07:b7:4d:a8:17:64:69:68:fe:92:a6:58:
8b:2f:4e:60:87:db:2d:bc:59:11:01:d7:97:08:1b:
e4:3f:b7:7f:f0:d3:b7:7f:70:c3:03:e0:1b:96:df:
ff:e5:4e:48:b9:51:6c:b6:fa:ec:59:b9:77:19:da:
ff:96:78:9e:5b:b4:4c:85:02:e9:73:f0:fb:33:02:
6a:cd:24:1f:eb:e3:5e:7c:60:57:3c:06:43:f1:35:
a3:65:cd:8d:55:65:75:d8:8b:4c:b4:c7:ce:5e:92:
e7:66:6f:ed:25:25:3d:14:06:dc:cb:b4:32:53:76:
ad:6d:7d:35:4e:9d:16:1d:ea:46:f6:8d:0f:ff:b7:
27:30:b0:58:e1:b9:f3:fa:76:dc:0a:30:a8:02:67:
9e:63:1f:79:f1:0e:38:7a:c8:4a:41:2d:34:4e:e8:
33:f8:35:a8:e2:77:a0:9d:ea:b0:f2:3e:95:3e:4f:
6b:71:ab:3b:c6:2a:c1:5c:dc:8f:2f:ef:66:ee:f7:
e5:53:b2:2e:13:d2:a4:30:ba:fc:76:d8:cc:d0:9c:
ee:64:27:d1:65:ef:c5:50:82:a8:5e:51:d5:60:4f:
73:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B7:07:3D:FA:BA:55:46:5F:2E:BD:D0:40:30:63:29:49:1C:60:EE
X509v3 Authority Key Identifier:
keyid:DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:a3:ef:ba:d5:c3:fe:64:8e:e8:4e:f7:bf:11:40:7b:b1:1e:
a3:62:30:a0:86:18:61:8e:52:d3:0c:43:9c:33:30:d3:5f:84:
94:a8:4b:61:23:7b:f4:62:ff:b6:d1:bd:09:8c:4f:5a:38:fa:
e0:ee:43:80:44:13:50:16:38:74:1e:2d:4a:5e:40:3e:c8:4a:
7f:91:24:5e:c7:a7:69:5a:2f:40:3c:23:cf:af:95:bf:0e:49:
d2:89:c1:57:b2:4d:00:43:f1:01:2f:1c:3b:dd:86:db:3b:e0:
1e:c3:fb:27:9e:af:65:fa:ad:cb:89:e4:bf:7b:aa:f0:76:c8:
45:8f:37:c3:c1:84:91:88:92:9a:e7:84:c4:dd:ca:09:6f:b5:
fb:b4:c1:10:48:50:7f:ef:20:1b:40:e2:50:e0:a5:89:8f:b3:
fb:ef:ab:bf:8b:e5:72:fa:18:31:8f:9f:0b:98:61:e1:70:4c:
be:e6:ee:53:34:f2:53:6d:f6:5a:7c:74:0b:75:4a:16:8c:14:
04:24:08:3d:d1:6b:c7:14:28:7e:7b:64:17:19:9c:17:d4:e7:
00:66:20:ed:59:c2:1f:75:f0:ff:38:dd:f1:3f:d6:f1:a5:b0:
83:9d:9b:95:c8:10:be:19:2e:25:db:14:af:ad:d6:d8:76:1f:
2f:d3:5f:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:59:58 2025 by rpki-client