Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
File: 2wU2Dphzgl911nHa8WJKUumFOQw.mft (raw, json)
Hash identifier: 6NTXTxUs4qj9053+v46uaWIcM41lAbliUHyYnyh0qxA=
Subject key identifier: A0:60:10:F1:A3:15:CE:B0:90:36:8D:CE:C8:93:4E:27:C0:EE:C9:B8
Authority key identifier: DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C
Certificate issuer: /CN=db05360e9873825f75d671daf1624a52e985390c
Certificate serial: 0199FB7CE57EFBF6CDBC5608CCD2DF9BC8B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
Manifest number: 016A
Signing time: Sun 19 Oct 2025 08:01:30 +0000
Manifest this update: Sun 19 Oct 2025 08:01:30 +0000
Manifest next update: Mon 20 Oct 2025 08:01:30 +0000
Files and hashes: 1: 2wU2Dphzgl911nHa8WJKUumFOQw.crl (hash: 998xaqHp0hPEJc0e6YOCE65z94y2XIz889rZ2NgMpfk=)
2: dT_BFnqui1qPfatUh1gogWMYRho.roa (hash: Znmqpd0eQxFE3KRHa1gq7DMVat4pWLiZVr8QQEm1djI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:e5:7e:fb:f6:cd:bc:56:08:cc:d2:df:9b:c8:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db05360e9873825f75d671daf1624a52e985390c
Validity
Not Before: Oct 19 08:01:30 2025 GMT
Not After : Oct 20 08:01:30 2025 GMT
Subject: CN=a06010f1a315ceb090368dcec8934e27c0eec9b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6d:55:84:f6:94:e2:4b:6a:db:a3:f7:19:95:
e2:b6:35:c9:9d:5c:3f:2d:b4:87:25:40:26:5d:e3:
ca:e9:b2:39:a5:12:50:55:29:03:a7:1c:10:9a:1f:
f0:f0:d0:49:e7:dd:79:99:e4:37:56:c1:8f:3c:fc:
57:17:8b:56:39:75:01:05:6d:31:e5:85:62:f1:50:
09:88:9c:d5:97:63:46:2c:dc:b6:db:3c:08:40:e8:
e0:87:f8:5e:91:ab:35:2d:f1:44:a6:ee:96:69:16:
6b:34:ac:48:c8:9d:d7:5e:4e:f3:d5:ef:80:cb:b8:
c9:71:b1:8b:ad:fb:33:e8:70:d5:7d:f5:7a:b7:ee:
3a:a7:cc:cd:cf:c0:93:3b:ae:32:65:79:6f:5b:a7:
1e:37:00:d8:a0:e9:30:85:ce:a8:27:c5:74:ec:bc:
67:a7:f3:b1:6e:8c:d7:21:04:4f:9d:7c:e3:0c:9c:
52:35:ce:97:2b:d9:4a:3a:d0:90:30:2a:81:12:a7:
81:bf:bf:91:89:b1:25:c9:65:83:52:c1:23:5a:fc:
d8:c7:e4:68:06:9f:82:27:0e:ec:49:59:70:91:df:
d8:e7:a2:f3:43:2f:e0:21:a6:1f:b2:c5:21:1e:3b:
38:ac:cd:15:5b:83:8a:5d:3a:63:50:0f:c4:74:54:
c7:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:60:10:F1:A3:15:CE:B0:90:36:8D:CE:C8:93:4E:27:C0:EE:C9:B8
X509v3 Authority Key Identifier:
keyid:DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:31:fe:2d:f8:99:84:42:24:7b:fb:8b:5b:b9:d3:b9:1f:67:
f7:36:af:37:45:6e:1d:ce:34:76:46:c9:1e:b4:e9:f2:0f:30:
c6:ff:42:f0:28:91:94:48:45:02:a1:ce:34:88:59:4e:2c:c6:
6b:45:3e:3c:59:fc:8d:b3:b1:c3:70:e9:7e:5a:fa:ab:2b:6b:
01:a4:ed:f7:3c:1d:89:65:86:5f:3b:00:57:80:7e:46:78:b6:
65:d5:04:88:12:4c:94:32:8b:d1:15:91:75:39:96:1b:8f:9a:
86:42:36:68:67:ba:98:13:92:88:36:c4:4f:6c:d7:d8:ec:7a:
62:78:db:5b:ca:82:5d:21:19:23:6e:9c:06:db:67:be:8f:cd:
4e:cb:f9:49:59:fd:04:a8:82:6b:27:3c:4c:3f:80:60:d0:a3:
2b:c2:7a:0d:ab:8f:f6:11:13:be:bb:ff:48:17:0e:87:ed:b3:
9a:73:7a:c8:5b:3f:17:93:15:b4:29:0a:20:33:79:7e:d9:91:
e3:4a:a7:37:ce:57:73:72:72:d9:b0:6d:68:4f:32:bd:a5:89:
f8:82:d1:8b:a4:45:6a:b4:0e:83:b4:df:9d:4b:e4:12:97:22:
84:d6:07:e6:63:22:93:3e:bd:93:5a:4a:85:25:9e:e9:a4:76:
b6:57:d3:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fOV++/bNvFYIzNLfm8ixMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMDUzNjBlOTg3MzgyNWY3NWQ2NzFkYWYxNjI0YTUyZTk4
NTM5MGMwHhcNMjUxMDE5MDgwMTMwWhcNMjUxMDIwMDgwMTMwWjAzMTEwLwYDVQQD
EyhhMDYwMTBmMWEzMTVjZWIwOTAzNjhkY2VjODkzNGUyN2MwZWVjOWI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq21VhPaU4ktq26P3GZXitjXJnVw/
LbSHJUAmXePK6bI5pRJQVSkDpxwQmh/w8NBJ5915meQ3VsGPPPxXF4tWOXUBBW0x
5YVi8VAJiJzVl2NGLNy22zwIQOjgh/hekas1LfFEpu6WaRZrNKxIyJ3XXk7z1e+A
y7jJcbGLrfsz6HDVffV6t+46p8zNz8CTO64yZXlvW6ceNwDYoOkwhc6oJ8V07Lxn
p/OxbozXIQRPnXzjDJxSNc6XK9lKOtCQMCqBEqeBv7+RibElyWWDUsEjWvzYx+Ro
Bp+CJw7sSVlwkd/Y56LzQy/gIaYfssUhHjs4rM0VW4OKXTpjUA/EdFTHswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKBgEPGjFc6wkDaNzsiTTifA7sm4MB8GA1UdIwQY
MBaAFNsFNg6Yc4JfddZx2vFiSlLphTkMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMndVMkRwaHpnbDkxMW5IYThXSktVdW1GT1F3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS84ZmMxZTItNDFkNy00ZjM1LWExM2Ut
ZDYyZDIyNGUzY2FmLzEvMndVMkRwaHpnbDkxMW5IYThXSktVdW1GT1F3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS84ZmMxZTItNDFkNy00ZjM1LWExM2UtZDYyZDIyNGUzY2Fm
LzEvMndVMkRwaHpnbDkxMW5IYThXSktVdW1GT1F3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABTH+LfiZ
hEIke/uLW7nTuR9n9zavN0VuHc40dkbJHrTp8g8wxv9C8CiRlEhFAqHONIhZTizG
a0U+PFn8jbOxw3Dpflr6qytrAaTt9zwdiWWGXzsAV4B+Rni2ZdUEiBJMlDKL0RWR
dTmWG4+ahkI2aGe6mBOSiDbET2zX2Ox6YnjbW8qCXSEZI26cBttnvo/NTsv5SVn9
BKiCayc8TD+AYNCjK8J6DauP9hETvrv/SBcOh+2zmnN6yFs/F5MVtCkKIDN5ftmR
40qnN85Xc3Jy2bBtaE8yvaWJ+ILRi6RFarQOg7TfnUvkEpcihNYH5mMikz69k1pK
hSWe6aR2tlfTeQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:42 2025 by rpki-client