Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
File: 2gBH2sju-JRNeMG3omhowD4s5GY.mft (raw, json)
Hash identifier: 8pChZp6zyfVXD2R1b9wxh7QT3YEw2ELZ+T3aHiV6yCw=
Subject key identifier: 3B:BA:C2:AD:3F:05:D5:4A:A7:86:E3:A1:0E:A5:44:5E:4B:07:2E:68
Authority key identifier: DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
Certificate issuer: /CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Certificate serial: 0199FD6AE62F323F401FEF4EE524B53A06AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 17:01:05 +0000
Manifest this update: Sun 19 Oct 2025 17:01:05 +0000
Manifest next update: Mon 20 Oct 2025 17:01:05 +0000
Files and hashes: 1: 2gBH2sju-JRNeMG3omhowD4s5GY.crl (hash: f0HcmNYboCBBBm/oCZg3lEVRLo+GUEpMi1RNT8fxlrE=)
2: zOidZa_WBKrrVFNvnxbTNUXsqyA.roa (hash: c6CaCJCPxyhkXhFJHJ0Gvk/jlU50dgYSjedGTRGmMqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6a:e6:2f:32:3f:40:1f:ef:4e:e5:24:b5:3a:06:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0047dac8eef8944d78c1b7a26868c03e2ce466
Validity
Not Before: Oct 19 17:01:05 2025 GMT
Not After : Oct 20 17:01:05 2025 GMT
Subject: CN=3bbac2ad3f05d54aa786e3a10ea5445e4b072e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d9:47:f7:4c:01:0a:0f:be:68:21:66:5a:84:
d9:39:b3:99:64:90:1e:0e:e4:62:18:29:44:db:66:
b2:b9:1a:9e:4c:07:6b:5c:c5:66:fe:dd:c8:2a:ca:
6d:5f:75:ed:75:31:11:88:aa:d0:13:36:40:49:fd:
38:d1:1b:9e:7e:84:e0:dd:2f:2e:f8:ab:e6:bb:1f:
f1:e9:3d:2c:cb:a5:71:f3:b1:00:76:10:2b:7f:08:
8f:b2:7e:2d:92:85:26:a8:14:0c:9f:a9:d7:e1:87:
e4:12:3c:37:a8:bb:a5:2a:b2:ad:db:5d:ed:96:6c:
22:16:b5:a2:12:4b:45:0e:78:86:9d:df:bd:55:ae:
40:0e:90:03:91:40:d8:b7:33:71:0a:ef:c7:cc:8f:
ad:32:09:22:51:01:6c:fc:35:89:2d:3f:d5:61:bf:
38:b5:d3:f1:1d:34:d2:69:1d:bb:d8:46:20:d5:c9:
6a:c6:fd:49:6f:74:bb:4b:b3:d1:a8:69:f7:05:47:
a9:b6:20:22:d2:dc:71:ef:ff:59:02:38:db:0d:e1:
0d:83:8e:14:41:3c:62:74:d6:8f:55:0f:ee:7e:6c:
83:33:1a:ff:74:b9:ba:36:ba:52:cb:a9:c6:1c:ae:
ca:b9:be:60:39:be:2d:78:75:d0:f4:44:84:13:38:
36:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:BA:C2:AD:3F:05:D5:4A:A7:86:E3:A1:0E:A5:44:5E:4B:07:2E:68
X509v3 Authority Key Identifier:
keyid:DA:00:47:DA:C8:EE:F8:94:4D:78:C1:B7:A2:68:68:C0:3E:2C:E4:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gBH2sju-JRNeMG3omhowD4s5GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/77959a-41de-46be-a5f1-ac9c8a50f24e/1/2gBH2sju-JRNeMG3omhowD4s5GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:01:4a:a1:39:9e:76:e4:27:5c:0c:b7:c6:f9:1c:d5:e3:0b:
bb:de:de:5d:56:32:e2:e4:b5:27:1f:98:9b:ea:63:11:7a:28:
a7:ef:b8:ef:98:b3:e8:91:6f:33:51:20:b7:1a:c5:cd:58:3a:
0d:05:d6:5f:ba:c9:86:97:a2:69:8e:29:2b:dd:c3:81:43:22:
79:4f:c6:dc:b5:ad:9e:e5:92:7f:46:2c:8d:f5:98:81:23:1e:
d5:51:25:f0:00:1f:1c:61:54:ae:16:cf:92:38:1c:65:d1:13:
9e:7f:34:ac:35:92:80:49:08:24:25:90:3d:ce:97:df:bc:95:
be:ad:00:dd:38:54:61:08:b4:34:69:4a:8c:05:83:e1:9c:e4:
d9:30:e4:ac:a8:a9:59:b1:12:2e:a1:d4:d2:44:51:ef:e3:be:
82:59:8a:47:e4:8d:da:82:08:67:b7:b1:bd:a0:31:39:6b:50:
03:b5:f8:8e:45:3c:65:44:ed:21:44:a3:1c:19:03:0a:f5:0a:
b4:b4:85:c1:f9:9c:16:ff:56:0e:52:c1:d5:62:89:23:4e:9c:
cd:9f:12:91:b4:56:9a:ea:ec:15:d4:9c:a9:04:41:03:70:00:
f9:ec:0c:96:4b:1f:3f:96:87:0d:fa:c5:47:96:e8:f9:35:e9:
f0:6b:58:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:06:48 2025 by rpki-client