Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
File: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft (raw, json)
Hash identifier: P4bVbDSYE3uMrkw14o7gB6RLb0FcWG36FUj6XlO2l8A=
Subject key identifier: 5E:E6:F4:02:A1:01:9A:0D:03:D5:2A:FF:98:73:F3:06:36:C8:08:D7
Authority key identifier: D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
Certificate issuer: /CN=d97a77930122879a766470df8d660c98442a9932
Certificate serial: 0199FD33E29622F04D458B8DF1C9B2AAD520
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
Manifest number: 01BB
Signing time: Sun 19 Oct 2025 16:00:59 +0000
Manifest this update: Sun 19 Oct 2025 16:00:59 +0000
Manifest next update: Mon 20 Oct 2025 16:00:59 +0000
Files and hashes: 1: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl (hash: QjvgPRHyLzXNnxCyhvIUtvhP0nd1Sk3PnmR56wyqdH0=)
2: HVaoDMotksZf76Ju74TL_0gQqQw.roa (hash: 6Wt6s6Ldu4cKxpBhxwlW4dbeWtmB6JUQE70sEXR7L0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:33:e2:96:22:f0:4d:45:8b:8d:f1:c9:b2:aa:d5:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d97a77930122879a766470df8d660c98442a9932
Validity
Not Before: Oct 19 16:00:59 2025 GMT
Not After : Oct 20 16:00:59 2025 GMT
Subject: CN=5ee6f402a1019a0d03d52aff9873f30636c808d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:97:c8:e2:e1:69:da:72:54:59:04:8f:2d:ab:
c7:df:b1:50:eb:65:de:b7:5d:85:01:db:e2:d6:f8:
d0:6c:67:42:3b:bb:3b:6e:9d:62:e6:8b:22:dc:d4:
c4:42:d4:bc:c7:2a:7b:e1:fd:39:d1:c2:bc:57:5d:
7a:9a:b0:48:0d:d7:97:c1:fe:a4:d1:20:33:43:f0:
75:71:67:f1:d8:ad:74:95:ac:5e:57:ea:ad:c2:79:
af:aa:61:0e:d5:56:f3:0d:96:ab:79:07:77:2e:ca:
36:17:23:af:3d:d1:ff:f7:1f:97:8c:e9:90:a4:da:
00:3b:33:12:a5:ec:30:b6:94:0d:15:31:98:b6:c7:
a0:3d:e6:a3:9f:54:e1:29:86:1b:29:57:77:2b:20:
e2:24:17:d6:c0:21:b4:e0:6a:38:dc:dd:44:db:f3:
5e:bf:dd:a7:57:d4:5d:12:e0:d4:dc:ad:6c:90:95:
ee:ec:32:f9:c6:58:48:5c:24:8b:87:c0:91:64:f3:
38:43:66:a2:25:38:a4:9b:b4:4c:04:a3:58:e7:c0:
e9:a1:c7:85:4a:82:f2:87:80:9e:87:30:fa:a8:57:
bd:1f:dc:04:c3:9d:25:b1:0e:8f:bc:17:02:8b:42:
58:70:3c:a8:8c:7d:44:17:40:f9:33:23:40:87:7f:
7b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:E6:F4:02:A1:01:9A:0D:03:D5:2A:FF:98:73:F3:06:36:C8:08:D7
X509v3 Authority Key Identifier:
keyid:D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:87:3e:d1:f6:0b:f1:7a:80:6e:5c:e7:67:46:51:ba:0f:cf:
46:d5:f9:a5:59:69:7e:5e:58:bc:bf:3a:f4:f0:1e:8c:1d:3f:
98:46:b0:c8:86:91:3d:e4:56:aa:c9:6a:63:0a:40:76:54:4a:
96:12:35:75:50:9e:77:84:d5:fe:0f:70:0c:97:f8:4f:d5:09:
ad:26:fa:c7:2f:bf:e3:ac:8a:28:14:4d:d6:f1:2b:68:64:2b:
a4:06:03:1c:66:63:ca:05:0b:89:be:e2:45:84:ff:d7:df:43:
e7:b2:e4:68:7d:7f:d0:00:e6:bb:ae:54:3f:c7:d9:e5:e6:b6:
31:a7:5e:a2:cc:9a:2b:c4:7f:66:b6:1b:5a:4d:a2:f6:a7:cf:
6b:e0:0d:26:59:0a:c5:cf:29:12:bc:ed:04:01:3d:02:7d:aa:
50:f1:05:dd:20:74:f3:cb:90:c0:92:09:fd:82:d2:c2:db:1c:
2e:ad:7d:ea:a5:c2:55:3f:6e:cd:39:e2:ea:7b:40:d1:b8:84:
5b:89:4b:0e:23:79:25:4f:31:86:42:57:2d:c4:b0:b0:a5:ea:
9d:98:8b:9d:04:0d:1e:ac:d2:3d:81:78:da:43:b0:fe:ac:90:
ff:d2:92:96:09:b3:8d:a7:8d:9d:cd:e8:8c:6b:38:20:9f:9e:
27:3e:6e:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:07:43 2025 by rpki-client