Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
File: 2My6s6LYEMX6KdzanVAgJhbvueg.mft (raw, json)
Hash identifier: osm6aDtUPCZXfYBkhY93kylD65kqssROlGsn0ljCVGo=
Subject key identifier: 43:CA:2E:A5:D6:E0:5E:B3:BC:E2:B6:1C:8C:1F:9F:40:1B:1C:A8:A8
Authority key identifier: D8:CC:BA:B3:A2:D8:10:C5:FA:29:DC:DA:9D:50:20:26:16:EF:B9:E8
Certificate issuer: /CN=d8ccbab3a2d810c5fa29dcda9d50202616efb9e8
Certificate serial: 0199FF22ACA42DECE48257DEA2B331E11B45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
Manifest number: 014E
Signing time: Mon 20 Oct 2025 01:01:26 +0000
Manifest this update: Mon 20 Oct 2025 01:01:26 +0000
Manifest next update: Tue 21 Oct 2025 01:01:26 +0000
Files and hashes: 1: 2My6s6LYEMX6KdzanVAgJhbvueg.crl (hash: 3e9NdGkVgqrvg8rkjhR+aCERJUA4L1Vy+wKsha7gauE=)
2: KOSoig2OcfAUHpP5S4cPuKe0-qQ.roa (hash: h7WOd3FoOyE3z3s6Su64D7SfxJalvzda0YokBEiVb1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:ac:a4:2d:ec:e4:82:57:de:a2:b3:31:e1:1b:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8ccbab3a2d810c5fa29dcda9d50202616efb9e8
Validity
Not Before: Oct 20 01:01:26 2025 GMT
Not After : Oct 21 01:01:26 2025 GMT
Subject: CN=43ca2ea5d6e05eb3bce2b61c8c1f9f401b1ca8a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9b:3c:e1:1b:d8:61:02:9c:58:27:5f:a4:e0:
d4:e2:e6:9e:2a:99:92:b7:fd:44:d7:58:c5:a6:19:
c8:b7:be:b6:e8:6c:5f:28:e1:bc:c9:9d:aa:84:05:
83:6d:2a:75:59:8f:bf:21:54:d4:4e:34:38:3d:73:
f1:4b:86:f8:1a:bb:6b:67:84:05:2b:4b:1c:dc:1c:
e6:1e:cf:b5:ee:b8:9d:97:f1:b2:d0:0d:2c:ce:34:
d7:90:ee:b2:8e:f4:64:6f:4c:b5:b4:9f:67:1f:12:
0c:b6:31:65:c8:98:03:c7:c4:0f:8d:ce:71:72:02:
75:64:73:54:ae:1e:38:1a:70:a2:5e:04:2d:1f:f8:
6a:f3:0e:e8:ca:8d:62:45:f6:84:1c:83:6a:52:1f:
f0:7c:f0:d8:a6:30:01:6c:49:be:3b:ef:0d:19:83:
09:57:31:32:04:b8:52:0d:d6:a9:3f:cf:e9:95:53:
2e:7f:0a:9d:ec:4f:e1:b2:d0:28:92:e2:69:78:f3:
da:0a:e8:93:e8:28:65:d6:56:e7:17:25:2f:c8:85:
0d:a1:3f:39:54:2a:09:c6:14:d6:6d:12:1d:68:33:
75:c1:b0:c1:c6:1a:bc:cf:f4:0e:5d:7c:8c:0a:a6:
e2:07:c4:a2:87:e5:8b:44:5c:59:f6:b6:de:da:7d:
82:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:CA:2E:A5:D6:E0:5E:B3:BC:E2:B6:1C:8C:1F:9F:40:1B:1C:A8:A8
X509v3 Authority Key Identifier:
keyid:D8:CC:BA:B3:A2:D8:10:C5:FA:29:DC:DA:9D:50:20:26:16:EF:B9:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2My6s6LYEMX6KdzanVAgJhbvueg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/46fa02-6587-4c62-973e-b12501f34ff0/1/2My6s6LYEMX6KdzanVAgJhbvueg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:b7:23:6d:33:3d:5d:9e:9a:24:96:cb:6e:c6:c5:c7:49:ef:
f9:ad:52:e4:0c:a7:6b:14:0a:e8:f6:b1:30:95:c5:19:78:b8:
da:0a:34:9b:c8:83:48:a2:3d:9a:ab:a5:70:f2:38:d3:d9:27:
95:2a:c7:3e:01:5e:bd:aa:46:f6:1f:71:b3:e1:d5:3f:8a:a4:
d0:71:68:2a:f7:f5:a8:1a:6a:fe:e1:d6:a8:3e:4d:8c:12:bd:
08:16:8e:25:c1:be:39:b9:33:43:8e:af:6b:33:80:9c:e9:05:
fc:c5:56:e9:ec:13:66:9f:35:5f:d3:93:2a:8d:96:04:c5:b2:
48:6b:70:cd:a7:2a:ea:1a:de:4d:30:bf:6e:fa:2a:23:8a:16:
e1:38:a7:d8:4a:95:7c:1e:ed:b7:ac:35:d4:ab:88:74:a9:95:
a1:95:49:32:57:54:59:b9:7a:fa:1c:27:f9:5e:d9:2e:78:b6:
3d:d1:22:04:5f:f9:1e:fe:d7:66:71:49:31:54:f7:e8:a2:31:
6b:24:6e:20:09:45:50:8d:51:be:05:3c:d5:97:74:65:d2:0e:
df:ef:8e:50:50:4f:c7:dc:59:c7:a4:1b:af:79:a8:a1:bf:ac:
c9:1b:db:c7:68:7f:76:02:52:60:d1:e3:a7:ee:24:b1:d6:34:
59:ef:d0:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/IqykLezkglfeorMx4RtFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4Y2NiYWIzYTJkODEwYzVmYTI5ZGNkYTlkNTAyMDI2MTZl
ZmI5ZTgwHhcNMjUxMDIwMDEwMTI2WhcNMjUxMDIxMDEwMTI2WjAzMTEwLwYDVQQD
Eyg0M2NhMmVhNWQ2ZTA1ZWIzYmNlMmI2MWM4YzFmOWY0MDFiMWNhOGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5s84RvYYQKcWCdfpODU4uaeKpmS
t/1E11jFphnIt7626GxfKOG8yZ2qhAWDbSp1WY+/IVTUTjQ4PXPxS4b4GrtrZ4QF
K0sc3BzmHs+17ridl/Gy0A0szjTXkO6yjvRkb0y1tJ9nHxIMtjFlyJgDx8QPjc5x
cgJ1ZHNUrh44GnCiXgQtH/hq8w7oyo1iRfaEHINqUh/wfPDYpjABbEm+O+8NGYMJ
VzEyBLhSDdapP8/plVMufwqd7E/hstAokuJpePPaCuiT6Chl1lbnFyUvyIUNoT85
VCoJxhTWbRIdaDN1wbDBxhq8z/QOXXyMCqbiB8Sih+WLRFxZ9rbe2n2CRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEPKLqXW4F6zvOK2HIwfn0AbHKioMB8GA1UdIwQY
MBaAFNjMurOi2BDF+inc2p1QICYW77noMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk15NnM2TFlFTVg2S2R6YW5WQWdKaGJ2dWVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi80NmZhMDItNjU4Ny00YzYyLTk3M2Ut
YjEyNTAxZjM0ZmYwLzEvMk15NnM2TFlFTVg2S2R6YW5WQWdKaGJ2dWVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi80NmZhMDItNjU4Ny00YzYyLTk3M2UtYjEyNTAxZjM0ZmYw
LzEvMk15NnM2TFlFTVg2S2R6YW5WQWdKaGJ2dWVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAabcjbTM9
XZ6aJJbLbsbFx0nv+a1S5AynaxQK6PaxMJXFGXi42go0m8iDSKI9mqulcPI409kn
lSrHPgFevapG9h9xs+HVP4qk0HFoKvf1qBpq/uHWqD5NjBK9CBaOJcG+ObkzQ46v
azOAnOkF/MVW6ewTZp81X9OTKo2WBMWySGtwzacq6hreTTC/bvoqI4oW4Tin2EqV
fB7tt6w11KuIdKmVoZVJMldUWbl6+hwn+V7ZLni2PdEiBF/5Hv7XZnFJMVT36KIx
ayRuIAlFUI1RvgU81Zd0ZdIO3++OUFBPx9xZx6Qbr3moob+syRvbx2h/dgJSYNHj
p+4ksdY0We/Q0Q==
-----END CERTIFICATE-----
Generated at Mon Oct 20 04:04:30 2025 by rpki-client