Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
File: 2l7eZe_t7t-MigSyRaOl32OmnoQ.mft (raw, json)
Hash identifier: 0GNqfWVK5OJ6ib0HnzLu0M6h8XU1+HTNgWOz6KlIfrs=
Subject key identifier: 05:78:6D:B1:67:89:D7:76:99:7C:DD:78:43:72:58:C8:E1:13:B9:CC
Authority key identifier: DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
Certificate issuer: /CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Certificate serial: 0199FBEB125A945086FB80D22A3F34660208
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 10:01:50 +0000
Manifest this update: Sun 19 Oct 2025 10:01:50 +0000
Manifest next update: Mon 20 Oct 2025 10:01:50 +0000
Files and hashes: 1: 2l7eZe_t7t-MigSyRaOl32OmnoQ.crl (hash: aoSWAs2yGeLLz7W1GCTTe+eLv0jL1uMkurSCGqGBu5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:12:5a:94:50:86:fb:80:d2:2a:3f:34:66:02:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Validity
Not Before: Oct 19 10:01:50 2025 GMT
Not After : Oct 20 10:01:50 2025 GMT
Subject: CN=05786db16789d776997cdd78437258c8e113b9cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2d:f7:2e:49:7d:aa:56:b3:1b:52:62:1e:c1:
30:82:f4:80:9e:87:db:64:ce:3a:82:52:71:11:16:
2e:46:57:11:e7:ec:18:03:f5:10:00:44:6f:13:fe:
5c:e7:7a:28:6b:0e:a9:49:70:1a:5c:be:78:be:84:
49:b0:1f:9b:d6:3e:25:e1:95:62:36:f4:78:56:be:
0e:1d:ce:08:e9:b1:7c:27:dc:4d:17:05:49:54:dc:
66:88:18:53:82:f4:be:7b:e9:65:fd:43:e6:63:8a:
c2:d8:fe:59:cb:a2:0b:7b:48:ab:6e:4c:80:7f:10:
17:47:2b:08:e9:c6:f1:6f:bf:2c:32:06:ed:f0:c9:
eb:b1:24:f1:be:ae:2a:ae:d0:26:7a:f2:df:55:0e:
92:74:84:3e:09:14:5f:9f:bb:bf:74:b8:99:be:e5:
c4:60:a3:16:81:e1:30:f7:72:60:f3:e2:51:08:ed:
00:9d:71:b6:75:c1:0b:68:1c:7b:9f:62:39:a6:c1:
57:22:58:f7:d3:f8:ac:62:74:2c:03:b4:4a:db:ba:
27:a4:21:9a:13:1b:3e:a8:14:2c:45:d9:73:61:fd:
80:1a:77:ed:fe:2a:ff:e7:f7:b3:27:e4:67:26:df:
f7:bf:cf:9b:45:4e:33:42:7c:66:b8:e7:36:b3:25:
e1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:78:6D:B1:67:89:D7:76:99:7C:DD:78:43:72:58:C8:E1:13:B9:CC
X509v3 Authority Key Identifier:
keyid:DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:c6:69:08:ec:b3:de:91:4b:be:e3:df:11:ab:67:53:78:8f:
0f:cb:9e:7b:0e:03:2b:39:68:89:13:9e:39:06:32:d3:0e:ba:
e3:e3:12:41:94:50:ed:c9:50:cc:41:8f:28:35:4b:2d:87:3c:
46:db:1d:38:30:9f:b3:a1:f4:1c:87:94:58:d8:e4:e6:09:64:
83:9a:5a:c1:0e:77:c9:33:57:df:db:1a:8a:2e:bb:63:b3:a7:
d1:ef:b1:dc:b7:9e:82:9a:16:5e:19:4b:8a:4e:b4:a4:4b:f5:
cb:10:a8:70:74:02:27:36:67:a4:d7:eb:7f:45:41:c8:0e:ea:
be:2e:d5:1e:44:97:40:26:d4:6c:bd:01:24:b6:25:54:ec:76:
5c:1d:67:07:60:1e:5e:c7:f0:25:23:95:1b:51:07:4c:ee:62:
45:02:9a:5a:36:4a:18:78:77:ff:34:44:ae:69:61:2e:8d:da:
cb:78:31:08:e0:07:70:ea:9b:a1:3f:8a:e1:1b:e2:c6:51:58:
ee:84:3f:9b:42:79:15:2c:f5:64:d5:56:ff:0b:51:99:1d:d8:
6a:25:9a:32:d7:0a:03:ef:d6:80:c5:0a:35:6b:ee:60:42:7e:
7f:dc:2f:6f:32:d7:e6:b1:ec:5d:af:1b:04:ea:c7:fe:0a:69:
32:5a:8f:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:51:55 2025 by rpki-client