Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
File: 2GucF3igUp7n4jIAPL5cmTw2_ds.mft (raw, json)
Hash identifier: 5Y3tbLHG0WkjtEtO/ZuyK32+vbtd734At6s+5KXYJwQ=
Subject key identifier: 2A:D6:AE:DE:20:F1:86:4D:3E:58:7D:06:50:6B:56:6E:4A:FD:4C:A9
Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Certificate serial: 019A01EBCD3A23D25E95F834657CD92596D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
Manifest number: 0445
Signing time: Mon 20 Oct 2025 14:00:21 +0000
Manifest this update: Mon 20 Oct 2025 14:00:21 +0000
Manifest next update: Tue 21 Oct 2025 14:00:21 +0000
Files and hashes: 1: 2GucF3igUp7n4jIAPL5cmTw2_ds.crl (hash: r7pmnVzG3LI2AWox9+KC/5p04dAcK8YRCHNSXpiq5KM=)
2: xaTFNHvIwGFGt2nvvisSJGJJn1U.roa (hash: dncutlGZCp4ijfHdULe589Ce9+6dKbRvNV71t7mvtSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:01:eb:cd:3a:23:d2:5e:95:f8:34:65:7c:d9:25:96:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Validity
Not Before: Oct 20 14:00:21 2025 GMT
Not After : Oct 21 14:00:21 2025 GMT
Subject: CN=2ad6aede20f1864d3e587d06506b566e4afd4ca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9c:92:de:ba:37:2d:d5:ba:ee:f8:92:6c:45:
c0:cc:ab:f7:83:7d:46:7b:ba:eb:0c:9b:44:a6:62:
6f:f3:73:48:57:d5:0f:dc:a9:f4:cd:1f:ad:6d:53:
6c:d9:8a:fd:ce:d1:03:64:3d:83:58:40:f6:52:68:
e6:54:44:9e:fe:54:20:23:3e:c1:7f:32:14:ef:c2:
8e:59:68:5e:dc:11:a8:d4:e3:ec:e3:2d:27:c7:75:
bf:a1:6a:85:be:58:d0:9f:58:20:fe:b1:67:7d:74:
72:e0:6b:03:5f:a2:6f:31:41:f2:24:ec:d2:de:63:
05:34:e7:d3:63:63:cd:33:97:bd:ba:d7:00:19:93:
0d:d1:06:65:d3:1e:9d:1f:09:89:a1:1b:35:2f:91:
6a:b9:61:54:86:1e:3a:04:28:0e:06:c4:2c:a8:da:
aa:c1:cf:98:56:ea:2c:6a:ca:92:92:d9:52:e0:bc:
ac:b6:6c:3e:1c:33:24:d9:59:62:f1:fe:d2:bc:66:
e1:04:e7:35:27:00:53:7a:80:2b:df:25:32:0a:d2:
17:52:88:6b:60:9e:df:cf:63:49:99:17:1c:25:73:
7b:e5:2b:b9:3d:05:70:84:df:2b:71:9e:fc:7d:2d:
58:ad:0a:f1:e1:33:e3:1b:b7:1d:c7:52:82:65:69:
ab:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D6:AE:DE:20:F1:86:4D:3E:58:7D:06:50:6B:56:6E:4A:FD:4C:A9
X509v3 Authority Key Identifier:
keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:5b:c9:6f:13:8a:80:8f:c6:34:07:7d:68:b1:fc:3e:22:e5:
b2:cc:d2:fe:b8:a8:63:30:44:33:f2:69:ea:cd:de:ec:93:e5:
c2:3e:92:e6:7c:f1:5d:ab:8a:f8:00:70:32:89:a7:6d:41:b5:
e5:3b:b4:f7:e0:71:89:05:a1:ca:af:16:b9:b8:97:24:53:20:
a9:14:13:30:47:e4:09:cc:19:fc:3a:8c:3b:63:d2:dd:58:76:
8e:8b:de:f6:dc:e0:bb:b9:cc:81:e5:81:55:84:c7:33:9e:63:
eb:02:49:17:94:27:1d:b6:dc:0c:00:cb:27:79:1a:21:1a:a1:
de:52:6a:a1:08:53:a0:14:64:8e:c1:b1:93:ea:4a:41:f8:3f:
0b:9e:f7:d2:c5:95:54:fd:fa:c2:ef:fe:ce:a8:51:42:d0:8c:
c9:5a:bb:26:cc:98:2c:bf:f8:b3:7a:f0:ba:b9:2c:65:ee:06:
c4:0c:a7:f1:25:7a:9f:8f:b6:84:bf:b3:f6:c5:84:38:e1:e4:
98:ca:16:b1:ac:19:9d:92:46:3b:49:6e:25:6b:23:12:23:98:
2d:2b:eb:f3:b1:44:06:14:82:42:ac:98:19:55:e5:19:7d:be:
8b:0b:3f:5c:19:13:07:3b:e6:87:e0:97:18:5b:97:2a:de:10:
2b:68:57:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 18:01:57 2025 by rpki-client