Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: vMja0A2jKRExwRKv0tim9S23fab6LpUAFTMJO1UoNxs=
Subject key identifier: 93:B3:9D:9A:8F:26:D6:36:21:33:76:81:B1:76:8C:FD:AD:E2:A3:CF
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 0199FB0F138D6EF7CCA09723122CD50EF01C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 1610
Signing time: Sun 19 Oct 2025 06:01:33 +0000
Manifest this update: Sun 19 Oct 2025 06:01:33 +0000
Manifest next update: Mon 20 Oct 2025 06:01:33 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: mqc1fUcjR3eA14XvuZr0Ha7uCedkCtptRX0FGp6+Vns=)
2: 6R0wvkFPscZQ2uww-ZvwnaXh--0.roa (hash: wyiJ7rZP6x6kzeIfld1VjsLp4nIqzGhNhuxTGdTq1Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:13:8d:6e:f7:cc:a0:97:23:12:2c:d5:0e:f0:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: Oct 19 06:01:33 2025 GMT
Not After : Oct 20 06:01:33 2025 GMT
Subject: CN=93b39d9a8f26d63621337681b1768cfdade2a3cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ae:18:d6:cd:c8:1a:92:9f:be:19:87:ea:09:
d2:f0:c1:de:a5:e5:bd:8b:ff:38:f0:eb:90:db:63:
fe:cf:41:32:50:56:b5:25:6b:5d:86:29:b0:e4:06:
7f:17:6e:d3:de:dd:b7:f7:49:1a:bd:31:06:e9:36:
07:73:f2:19:74:09:10:5d:ea:43:0e:3d:d4:ed:bb:
d5:cf:f9:93:d8:1d:c2:84:60:0e:4c:e3:a9:6d:c3:
11:74:0a:f9:ba:d9:93:97:25:af:ea:43:d4:bd:fe:
b4:e9:39:f1:29:a6:ce:c9:23:09:5b:4c:7c:1e:d6:
e3:c5:6c:5a:bd:5f:67:d9:18:cd:1a:cf:0c:c2:14:
7c:cf:43:17:4a:09:4e:08:6a:ab:17:00:d0:59:22:
92:e6:39:88:ee:ae:97:f8:ba:73:22:94:6d:11:25:
e2:7e:bf:10:79:d7:23:46:68:09:1e:f8:8d:06:9d:
87:2d:0d:23:cb:e8:db:35:8b:c1:9f:2b:5c:de:cc:
5f:9f:21:34:6d:aa:08:e1:76:75:8c:de:2d:c1:b9:
d9:34:3f:79:31:b5:a7:f6:0c:14:42:a7:d6:24:3c:
28:ad:9b:be:49:4e:0b:17:47:e0:94:fd:91:98:f9:
aa:0c:1a:a4:dc:ea:89:c7:33:89:07:4b:a6:e2:36:
6a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:B3:9D:9A:8F:26:D6:36:21:33:76:81:B1:76:8C:FD:AD:E2:A3:CF
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:b9:1b:49:f2:27:5d:49:1d:3e:a6:25:83:dd:72:bb:20:e4:
96:5d:53:b9:1b:27:d3:a7:78:03:80:4e:4f:7a:aa:d2:6b:4f:
e8:e5:1d:2f:eb:94:f9:48:a6:ec:06:ea:82:36:52:e3:17:fa:
48:dd:37:8f:a4:9c:1a:e8:d9:44:b2:6b:99:15:6e:b6:bd:b3:
7e:f1:dd:05:a2:b6:25:b4:f2:37:a3:0a:0b:2f:e3:19:81:3e:
b6:2a:29:49:2a:71:a4:60:2e:3d:99:33:41:97:aa:89:95:57:
f0:e7:3a:35:01:05:de:cd:76:1d:42:c2:2b:55:b3:fc:ca:ca:
4a:2c:27:ba:bc:6f:bf:be:d6:9d:51:41:fe:1f:c1:ec:c9:10:
24:f1:cd:b5:ed:1a:49:0e:56:d9:79:8c:6c:27:01:ed:c6:9e:
de:9f:e0:04:1b:65:84:39:75:99:2b:a5:be:71:3f:fe:08:e9:
d5:9d:63:d9:71:ef:5d:11:40:8f:32:42:35:6b:1a:cc:57:4d:
5b:b2:5e:70:01:90:d9:56:c8:07:41:5f:2d:12:83:37:32:7f:
ba:e7:4d:9e:b8:67:50:2d:f4:33:74:14:06:75:ef:74:15:df:
5c:a6:db:1a:b4:1e:50:24:f2:73:8f:77:1c:37:52:dd:a3:3c:
9e:c2:63:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:52 2025 by rpki-client