Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: weDWQvPS7FhBzwhKr4H36wVD33Ym42jcMFU0mAJ5u0g=
Subject key identifier: 78:1A:3B:99:EB:F1:27:5E:D7:EA:26:31:EC:29:96:5C:3A:BD:66:4A
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 0199FEB53588F68D97DE796694F84BC7003F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 0FF4
Signing time: Sun 19 Oct 2025 23:01:52 +0000
Manifest this update: Sun 19 Oct 2025 23:01:52 +0000
Manifest next update: Mon 20 Oct 2025 23:01:52 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: YD4D9YNAUbAJr8Zmt49n8V3Pl285A5xjPShEmj59API=)
2: fvccoh-XRGUydolEQwVKUg__llM.roa (hash: MESTegxG3uX73jrknXUqcZY7a9Gll4oI6clWX78ISS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 23:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b5:35:88:f6:8d:97:de:79:66:94:f8:4b:c7:00:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: Oct 19 23:01:52 2025 GMT
Not After : Oct 20 23:01:52 2025 GMT
Subject: CN=781a3b99ebf1275ed7ea2631ec29965c3abd664a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:28:de:a6:70:71:5d:56:db:70:93:35:35:09:
b6:ae:91:bb:bb:4e:c5:5f:b2:33:b0:40:9e:1b:82:
b8:6a:ba:5c:70:45:eb:77:af:c6:f7:63:cf:af:84:
59:7a:ef:62:c3:76:88:a7:dd:5d:8e:f1:7c:4f:c7:
d0:0d:d0:69:1f:26:24:c9:57:f7:cf:60:14:01:ad:
ab:6f:bd:50:6b:7e:64:95:90:ab:2a:18:03:ae:4c:
ce:38:5c:bf:a8:b8:e4:26:f1:33:24:ab:01:eb:df:
cb:50:bd:df:32:63:87:eb:3a:c4:89:92:fa:50:00:
95:40:3e:46:c5:84:1f:a1:1c:98:61:af:84:2f:af:
7e:22:ec:00:6e:7f:fe:30:12:fe:35:af:d4:65:ab:
1f:f2:3a:0b:66:81:fc:a3:2f:d3:f8:22:e4:5b:dc:
ce:ab:91:4e:4c:4f:39:86:9f:56:9b:0e:d5:a8:c2:
ff:a5:40:ba:19:8a:71:71:c2:cb:3d:aa:1a:ed:9a:
c2:dc:6c:fc:0a:b7:7a:10:71:50:eb:26:9f:3f:3f:
8d:de:53:1d:ee:4f:47:8e:a9:1f:a2:bb:90:97:92:
56:8d:91:83:2d:9b:32:1b:3a:6e:0f:eb:6f:93:70:
70:fb:09:0f:95:b6:b3:1b:ec:b9:76:fd:2d:c0:9a:
4a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:1A:3B:99:EB:F1:27:5E:D7:EA:26:31:EC:29:96:5C:3A:BD:66:4A
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:00:89:15:c5:43:34:c7:22:59:3e:f1:38:e5:76:b8:e4:f6:
fb:ab:db:6e:8f:fb:67:2c:29:7d:dd:ef:18:54:c3:d8:15:a3:
72:38:4c:8a:72:e2:0e:83:5b:a5:3e:bb:35:f3:1e:fb:67:a8:
e7:7c:5f:fc:08:0d:1b:60:9a:c2:5f:a2:71:0a:4d:c9:9a:97:
7c:1a:10:4d:be:c0:cd:59:5d:70:16:bd:82:89:dc:8b:b0:6b:
29:5d:f6:a5:be:17:02:b5:a2:bc:2f:de:3b:9a:2a:c4:fb:67:
a0:85:bc:a6:78:e8:de:a6:92:81:29:83:dd:2b:90:b9:56:42:
fd:a0:81:8c:34:90:a8:b8:e1:57:97:af:61:2e:d1:1b:b8:8f:
75:14:95:eb:81:f8:22:78:60:ec:75:37:1d:e2:94:bf:e0:98:
58:66:67:45:2c:fd:c0:04:6b:f0:ca:99:6c:1b:08:58:c9:9c:
fe:af:18:2f:b1:f7:bd:e2:bd:28:0c:4e:66:aa:72:ff:90:fe:
6e:65:d0:85:a9:80:75:6c:11:25:35:2a:ae:44:33:6b:31:95:
d9:41:42:18:48:f8:5e:cc:a6:fb:12:69:e9:ae:d4:c6:28:a0:
0f:55:08:0b:49:eb:c4:f3:6c:e8:0d:12:fc:f3:e5:cf:e3:32:
dd:12:70:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+tTWI9o2X3nlmlPhLxwA/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhOTBkMDRiZjU3ZmE0ODY4ZTY5OTk3YzgzYjNhZDc3MWZk
NTBhOWQwHhcNMjUxMDE5MjMwMTUyWhcNMjUxMDIwMjMwMTUyWjAzMTEwLwYDVQQD
Eyg3ODFhM2I5OWViZjEyNzVlZDdlYTI2MzFlYzI5OTY1YzNhYmQ2NjRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCjepnBxXVbbcJM1NQm2rpG7u07F
X7IzsECeG4K4arpccEXrd6/G92PPr4RZeu9iw3aIp91djvF8T8fQDdBpHyYkyVf3
z2AUAa2rb71Qa35klZCrKhgDrkzOOFy/qLjkJvEzJKsB69/LUL3fMmOH6zrEiZL6
UACVQD5GxYQfoRyYYa+EL69+IuwAbn/+MBL+Na/UZasf8joLZoH8oy/T+CLkW9zO
q5FOTE85hp9Wmw7VqML/pUC6GYpxccLLPaoa7ZrC3Gz8Crd6EHFQ6yafPz+N3lMd
7k9HjqkforuQl5JWjZGDLZsyGzpuD+tvk3Bw+wkPlbazG+y5dv0twJpKJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHgaO5nr8Sde1+omMewpllw6vWZKMB8GA1UdIwQY
MBaAFNqQ0Ev1f6SGjmmZfIOzrXcf1QqdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnBEUVNfVl9wSWFPYVpsOGc3T3RkeF9WQ3AwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC80ZDI1NDUtYTdkNS00NjVjLTk2MTgt
NTFhZDljMzgyYThkLzEvMnBEUVNfVl9wSWFPYVpsOGc3T3RkeF9WQ3AwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC80ZDI1NDUtYTdkNS00NjVjLTk2MTgtNTFhZDljMzgyYThk
LzEvMnBEUVNfVl9wSWFPYVpsOGc3T3RkeF9WQ3AwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYgCJFcVD
NMciWT7xOOV2uOT2+6vbbo/7Zywpfd3vGFTD2BWjcjhMinLiDoNbpT67NfMe+2eo
53xf/AgNG2Cawl+icQpNyZqXfBoQTb7AzVldcBa9gonci7BrKV32pb4XArWivC/e
O5oqxPtnoIW8pnjo3qaSgSmD3SuQuVZC/aCBjDSQqLjhV5evYS7RG7iPdRSV64H4
Inhg7HU3HeKUv+CYWGZnRSz9wARr8MqZbBsIWMmc/q8YL7H3veK9KAxOZqpy/5D+
bmXQhamAdWwRJTUqrkQzazGV2UFCGEj4Xsym+xJp6a7UxiigD1UIC0nrxPNs6A0S
/PPlz+My3RJwfA==
-----END CERTIFICATE-----
Generated at Mon Oct 20 08:44:42 2025 by rpki-client