Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
File: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft (raw, json)
Hash identifier: ZjiO7L7N5Svm7OMrJn5k2bB2uJcon3/KXEJu16j5sx4=
Subject key identifier: 58:BE:25:3D:19:BA:06:44:14:ED:70:37:11:8F:EA:DD:DE:A2:76:8D
Authority key identifier: D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53
Certificate issuer: /CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753
Certificate serial: 0199FAD865319BA3EDDA1F4D1EA9A0B3929A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
Manifest number: 04EB
Signing time: Sun 19 Oct 2025 05:01:49 +0000
Manifest this update: Sun 19 Oct 2025 05:01:49 +0000
Manifest next update: Mon 20 Oct 2025 05:01:49 +0000
Files and hashes: 1: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl (hash: wsyIUMHXQ7QswC3E0L5iBW+T8KPL7aB4fTbebLjOuik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d8:65:31:9b:a3:ed:da:1f:4d:1e:a9:a0:b3:92:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753
Validity
Not Before: Oct 19 05:01:49 2025 GMT
Not After : Oct 20 05:01:49 2025 GMT
Subject: CN=58be253d19ba064414ed7037118feadddea2768d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:bc:9e:11:23:00:f7:a5:d9:1c:1c:ac:f9:c3:
c7:84:1e:b1:3b:1e:9f:b0:15:b5:5c:df:14:ff:1b:
3a:a1:74:c4:31:b2:44:02:cc:90:21:c4:2a:5e:42:
c3:bf:a6:2b:1d:77:7e:c8:07:27:ec:b5:9d:d1:e7:
86:8d:bf:11:b3:d4:bd:9e:97:8b:13:0d:04:68:1d:
35:e1:35:72:6b:ff:cb:b5:78:e9:ac:fd:9c:0c:ae:
50:29:7b:1c:5a:9e:b3:4f:ba:71:73:9f:cd:32:44:
0b:ae:0a:4b:f6:fa:ac:50:9c:a3:58:8b:7d:55:f2:
5e:2d:e0:dc:02:ba:e7:17:fc:13:d8:0c:50:21:d2:
36:62:ad:4e:92:b7:ea:69:f6:e2:d2:9d:14:78:a2:
65:12:31:36:6e:d1:e0:56:4d:cc:c7:4e:5c:2d:f2:
a0:6c:d9:f8:23:8a:61:54:49:4f:fc:d5:6e:83:97:
2b:ea:aa:ee:81:d9:77:1a:23:f7:54:37:1a:e9:7e:
42:43:08:d2:92:1b:4f:c2:08:6d:a2:f3:68:60:e4:
3f:c5:90:b9:ce:bb:cc:7c:d2:0d:f4:92:13:23:0f:
36:95:da:31:72:02:36:ee:d9:6f:bf:cb:fd:07:0e:
aa:ff:34:cc:04:dc:ef:ac:8d:5f:cd:84:28:5a:37:
17:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:BE:25:3D:19:BA:06:44:14:ED:70:37:11:8F:EA:DD:DE:A2:76:8D
X509v3 Authority Key Identifier:
keyid:D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:45:ec:0a:a1:2f:07:d0:3c:9f:12:d7:a9:fc:a8:64:54:b6:
2f:0f:39:d8:84:1a:58:0d:67:66:eb:3a:42:f4:c6:9e:45:ff:
54:6a:8b:b8:b9:a7:44:6a:44:5f:34:a6:df:3a:83:e4:03:b1:
26:dd:29:ff:d6:02:91:2a:ca:06:b9:98:a6:14:e8:60:06:4f:
bb:dd:3a:82:b2:a5:73:8e:da:c9:9d:18:6b:02:74:3c:2c:89:
0c:b1:83:c4:70:87:63:0a:a0:63:a0:4f:92:a2:09:9a:07:4a:
39:83:5e:d3:d1:c7:f2:c6:fe:55:a7:b9:c7:31:7c:9a:73:fc:
00:f4:6c:0b:3b:d1:ef:3c:5f:e3:03:18:63:3f:f4:97:33:34:
80:33:77:7f:06:a4:65:20:1b:74:11:c6:f3:43:67:98:81:8a:
c4:06:59:c0:8c:a0:5e:ea:ee:f6:64:b7:1d:4d:50:2b:fe:fb:
48:4e:c3:4b:4b:01:c1:d1:14:31:ea:2f:e2:e5:fe:13:a1:66:
0f:be:99:1c:6e:53:c8:8d:c8:9e:1c:61:7c:14:84:d8:27:d0:
cf:ff:6d:68:94:74:a4:b8:1c:3f:61:42:61:0f:69:fa:cf:97:
af:54:93:10:68:40:47:29:66:ca:48:b0:1a:48:88:91:e3:fa:
e8:3e:17:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 12:52:42 2025 by rpki-client