Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
File: 2IUFXXA5jPDHLM6sXlga1A8gPvw.mft (raw, json)
Hash identifier: truMtmGVe6SATIEgJLyD5Y785EUU1WsX/SbvGyol4+8=
Subject key identifier: 03:9B:69:20:4C:AD:17:84:8E:B5:85:19:BA:99:C4:11:21:E5:D9:EA
Authority key identifier: D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC
Certificate issuer: /CN=d885055d70398cf0c72cceac5e581ad40f203efc
Certificate serial: 0199FCC626DEDF23278D0FF4F202D1D6AEDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
Manifest number: 0EAC
Signing time: Sun 19 Oct 2025 14:01:08 +0000
Manifest this update: Sun 19 Oct 2025 14:01:08 +0000
Manifest next update: Mon 20 Oct 2025 14:01:08 +0000
Files and hashes: 1: 2IUFXXA5jPDHLM6sXlga1A8gPvw.crl (hash: VJt/LDNRyHYRu19DpyTwv1DGP65+vkF55E+tSwDdPDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:26:de:df:23:27:8d:0f:f4:f2:02:d1:d6:ae:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d885055d70398cf0c72cceac5e581ad40f203efc
Validity
Not Before: Oct 19 14:01:08 2025 GMT
Not After : Oct 20 14:01:08 2025 GMT
Subject: CN=039b69204cad17848eb58519ba99c41121e5d9ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:51:8d:97:b4:35:4d:cf:73:6e:14:6f:61:f6:
ac:39:af:54:db:0c:4a:f9:8b:20:8f:96:8b:a9:1a:
46:20:dd:75:64:63:d8:b6:aa:33:23:e1:38:81:08:
64:3f:51:32:ef:89:79:06:32:4c:9c:75:56:80:55:
26:e1:91:fc:77:db:7f:30:59:00:5f:eb:b6:0a:88:
a1:48:49:e7:81:2e:d7:bb:d4:e2:50:4a:d7:0a:e6:
5a:b9:9d:11:b4:e7:a2:40:b5:b2:03:8a:47:e2:40:
d4:cb:ce:df:e1:bc:87:ac:04:77:01:ff:1c:95:6b:
10:0d:6a:97:fe:bf:4d:8d:d0:01:60:67:e8:f2:27:
fe:eb:c2:1e:59:0f:8e:ea:56:53:9c:b0:6a:21:39:
e7:42:d9:42:72:54:87:91:80:84:35:a2:d3:3a:4c:
40:20:76:17:da:a4:14:92:bb:2e:b0:97:a0:43:71:
b8:52:3e:c4:40:58:a7:3a:5b:7c:85:cc:86:03:16:
e7:87:31:3a:6d:5f:e6:c4:e7:c3:29:cc:ca:88:4f:
47:ba:c8:2b:27:78:ea:43:b9:5c:dd:8b:c4:38:0d:
dc:aa:e7:34:24:5b:89:2c:1a:59:7a:5e:a2:d3:2d:
09:15:5a:52:b2:75:eb:1c:91:5b:6d:4c:8e:56:98:
9e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:9B:69:20:4C:AD:17:84:8E:B5:85:19:BA:99:C4:11:21:E5:D9:EA
X509v3 Authority Key Identifier:
keyid:D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:56:98:3b:9c:5d:7a:71:0c:b7:8f:79:df:73:78:43:7a:cf:
de:ab:91:33:62:fb:6e:33:ae:e0:05:0e:13:cc:ee:6b:f1:09:
2d:f3:4f:2a:d8:27:2f:42:5c:c6:0e:13:74:27:27:90:b2:6b:
55:52:55:7e:33:1a:17:c3:5e:ae:a0:78:42:ae:a2:eb:7b:47:
9f:90:ed:87:db:7c:b2:fa:50:84:27:da:cc:41:67:29:4e:f0:
33:88:91:de:e0:9b:f6:77:92:43:e8:1a:cb:3f:9c:4b:b4:fa:
66:c0:d2:b2:f8:89:95:68:08:ed:55:bc:ee:b9:58:b3:86:e0:
31:1b:56:11:42:a9:0d:c9:9f:d2:d0:a4:cf:2d:ff:2f:23:19:
03:22:a2:9f:19:80:83:bf:6c:42:08:24:d9:73:4b:30:7a:fe:
a6:9e:3c:14:87:40:4f:46:cc:f5:77:3e:18:25:0c:d5:be:f9:
8a:93:49:a3:95:9c:47:ec:c1:64:1b:81:a5:8e:4f:47:b0:27:
dc:d4:25:6e:d6:38:7d:c4:3d:76:e8:f8:7c:eb:ad:1d:cf:bb:
03:b0:e6:84:d1:26:84:23:7e:3e:96:16:c4:d2:83:bb:82:6a:
cc:53:0c:83:98:85:ff:37:a2:5d:4a:b5:07:e1:8f:5d:40:11:
85:d5:e7:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xibe3yMnjQ/08gLR1q7fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ODUwNTVkNzAzOThjZjBjNzJjY2VhYzVlNTgxYWQ0MGYy
MDNlZmMwHhcNMjUxMDE5MTQwMTA4WhcNMjUxMDIwMTQwMTA4WjAzMTEwLwYDVQQD
EygwMzliNjkyMDRjYWQxNzg0OGViNTg1MTliYTk5YzQxMTIxZTVkOWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFGNl7Q1Tc9zbhRvYfasOa9U2wxK
+Ysgj5aLqRpGIN11ZGPYtqozI+E4gQhkP1Ey74l5BjJMnHVWgFUm4ZH8d9t/MFkA
X+u2CoihSEnngS7Xu9TiUErXCuZauZ0RtOeiQLWyA4pH4kDUy87f4byHrAR3Af8c
lWsQDWqX/r9NjdABYGfo8if+68IeWQ+O6lZTnLBqITnnQtlCclSHkYCENaLTOkxA
IHYX2qQUkrsusJegQ3G4Uj7EQFinOlt8hcyGAxbnhzE6bV/mxOfDKczKiE9Husgr
J3jqQ7lc3YvEOA3cquc0JFuJLBpZel6i0y0JFVpSsnXrHJFbbUyOVpieywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAObaSBMrReEjrWFGbqZxBEh5dnqMB8GA1UdIwQY
MBaAFNiFBV1wOYzwxyzOrF5YGtQPID78MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi84MmFmMjgtYjYzNC00NjNhLWI2YmUt
MWNhM2M2N2YxNTA2LzEvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi84MmFmMjgtYjYzNC00NjNhLWI2YmUtMWNhM2M2N2YxNTA2
LzEvMklVRlhYQTVqUERITE02c1hsZ2ExQThnUHZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU1aYO5xd
enEMt49533N4Q3rP3quRM2L7bjOu4AUOE8zua/EJLfNPKtgnL0Jcxg4TdCcnkLJr
VVJVfjMaF8NerqB4Qq6i63tHn5Dth9t8svpQhCfazEFnKU7wM4iR3uCb9neSQ+ga
yz+cS7T6ZsDSsviJlWgI7VW87rlYs4bgMRtWEUKpDcmf0tCkzy3/LyMZAyKinxmA
g79sQggk2XNLMHr+pp48FIdAT0bM9Xc+GCUM1b75ipNJo5WcR+zBZBuBpY5PR7An
3NQlbtY4fcQ9duj4fOutHc+7A7DmhNEmhCN+PpYWxNKDu4JqzFMMg5iF/zeiXUq1
B+GPXUARhdXn7Q==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:05:51 2025 by rpki-client