Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
File: p2i77FqeEb-9rthKqNOqzaKYifk.mft (raw, json)
Hash identifier: X4iw4t9+HRERyZICLPN/MgqoLnITTzOStK5coeRAjw4=
Subject key identifier: 14:42:DA:5B:E1:65:A4:5E:43:94:80:FD:CD:DC:C0:93:3C:85:7B:02
Authority key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
Certificate issuer: /CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Certificate serial: 0199FC8F8CFF58D625A497D8A92E0A3E3EE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 13:01:30 +0000
Manifest this update: Sun 19 Oct 2025 13:01:30 +0000
Manifest next update: Mon 20 Oct 2025 13:01:30 +0000
Files and hashes: 1: OgYJc9A280CynujJhuzMa0BI-4Q.roa (hash: MiNQpI1WP7M4DChXTEl99hg+v/DrVYZq8o6Yc8vjTOw=)
2: p2i77FqeEb-9rthKqNOqzaKYifk.crl (hash: 2jt06t7C8vtWc/1oIUHEl6j9i46q8iB9UB2/EzOUAcI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:8c:ff:58:d6:25:a4:97:d8:a9:2e:0a:3e:3e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Validity
Not Before: Oct 19 13:01:30 2025 GMT
Not After : Oct 20 13:01:30 2025 GMT
Subject: CN=1442da5be165a45e439480fdcddcc0933c857b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:15:c1:38:8f:46:a3:45:cf:62:cf:b9:f9:fe:
64:ec:20:b9:5d:44:07:2d:2d:39:26:3c:31:c4:f3:
5d:08:96:92:80:08:ec:a4:3e:44:62:56:bb:1f:c8:
90:c3:c2:24:ab:8c:ef:ee:dc:81:da:00:99:f6:fc:
b6:8e:1b:e3:ea:7a:14:b0:df:cd:1f:e9:ed:98:63:
99:ee:c1:01:b6:f1:b9:a5:7e:7d:12:58:d9:f5:95:
88:c2:bf:62:92:d7:46:d5:ae:53:b1:ab:fd:ac:e2:
59:82:91:e1:74:0e:9b:bb:4e:87:83:a9:5c:9a:b8:
cd:a4:59:41:87:ac:c8:12:e4:31:27:95:5f:3e:a2:
5c:3c:9e:09:86:55:a4:09:a8:85:b8:44:b1:95:bb:
e8:86:be:68:e8:3f:53:39:5c:63:31:d3:cc:bf:a3:
ab:41:0e:71:23:bc:27:dc:64:5f:8b:b5:ad:57:6f:
4c:e2:e5:07:f2:89:94:66:f6:ab:e7:02:b8:c3:0b:
75:d2:ee:ef:30:b9:c1:cd:6e:e4:2f:97:99:2f:0e:
7d:f3:df:d2:ea:70:a8:9c:d4:d1:f1:fc:78:7b:9b:
7b:5c:4e:76:8c:4e:12:33:38:79:46:16:0b:5f:05:
c3:83:8a:b7:dd:8e:22:a7:da:8a:1b:02:53:11:d4:
4b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:42:DA:5B:E1:65:A4:5E:43:94:80:FD:CD:DC:C0:93:3C:85:7B:02
X509v3 Authority Key Identifier:
keyid:A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:cc:ce:ab:7e:00:f4:b9:f5:d7:4a:c3:0a:55:b5:12:f2:cc:
c7:c4:e3:8e:56:6b:83:8c:78:94:2d:3d:69:30:30:9f:f3:58:
3f:cb:4b:c9:72:a2:3a:da:ed:6c:29:fe:41:dc:68:20:96:6e:
e1:f8:ba:af:96:7c:bb:b1:cd:05:6f:cd:ca:cd:35:cb:49:c9:
db:7f:83:9d:6a:cc:3c:c9:ce:bb:04:94:ef:86:c4:02:68:03:
d5:73:61:c4:aa:c8:df:a3:ad:a0:e4:98:0f:0a:b3:28:53:cb:
09:97:93:91:7a:bd:48:6f:8a:82:4c:d7:46:18:75:ab:59:b8:
5c:57:5b:5c:8a:4d:74:d2:6e:df:fb:a5:0b:dc:a8:5d:c2:45:
11:51:c8:21:98:21:a5:ba:32:80:a7:24:00:9f:4d:46:c1:df:
be:4c:94:8c:74:70:fe:3e:35:22:b2:1f:00:c7:4c:76:22:e5:
7d:b5:e9:4c:65:d6:f7:a8:a4:b2:87:a7:42:0c:0f:ca:1b:1a:
45:ea:4b:32:d7:f2:23:9a:51:48:b7:57:8c:41:34:b8:b6:1f:
98:7b:6b:b3:02:a1:71:07:62:20:a0:71:41:cd:fc:26:6e:7a:
ba:e6:4d:8f:27:ef:0f:c8:35:f1:e4:27:06:bd:d3:47:d4:1d:
f8:9d:17:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:58:36 2025 by rpki-client