Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
File: 2gszzdt5m3vPXT3OAE_bqMPoZP8.mft (raw, json)
Hash identifier: l51P4yFJjnbav3XTpYrxzWYIqqdOwEXY/PKy3yJTnnY=
Subject key identifier: 7C:56:89:F6:6E:C4:4F:C2:1C:BD:29:4A:E5:DA:D7:90:C9:3A:39:DB
Authority key identifier: DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
Certificate issuer: /CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Certificate serial: 0199FCC69B96AEE7FFE59FFDC6BD8F57F27D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
Manifest number: 0D4C
Signing time: Sun 19 Oct 2025 14:01:38 +0000
Manifest this update: Sun 19 Oct 2025 14:01:38 +0000
Manifest next update: Mon 20 Oct 2025 14:01:38 +0000
Files and hashes: 1: 17FLk26rZWNpnvEJucbEAG-7zqY.roa (hash: qMmpcRGKwOqOR5+GsVwNkgRbdBAdNorVpaMiale+nXI=)
2: 2gszzdt5m3vPXT3OAE_bqMPoZP8.crl (hash: /0S6rAAQuhYeUPPCpJA655qwoHmQfpsOQOkdU1ed5ek=)
3: bBGzNd5qGUUIPYH3-5zWMnwwyJg.roa (hash: 290Z2J6Jo9xanYpdqpciKr53wSmtU/PW4k3Qs+NnOTs=)
4: k29cbE30TGhu-1q8rRu7-jpqTg4.roa (hash: 9mQL8HUgIQzEZ7MXmoS/sUavd/K/UaaalJ5/ztoLSTk=)
5: s7mUu7WrVHVPJEBCCdi0H3bHpis.roa (hash: ExGJpFM76OJZURK1GFJNiBKKffY4pIrBrUBBm9tcC8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:9b:96:ae:e7:ff:e5:9f:fd:c6:bd:8f:57:f2:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Validity
Not Before: Oct 19 14:01:38 2025 GMT
Not After : Oct 20 14:01:38 2025 GMT
Subject: CN=7c5689f66ec44fc21cbd294ae5dad790c93a39db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:09:f3:25:84:4e:c3:f2:26:43:52:0c:76:ee:
5a:d6:f3:86:62:66:e2:a8:27:9e:07:15:af:77:aa:
1f:23:4b:ea:2d:31:ca:4a:2f:2c:f3:a5:3a:23:35:
fc:bc:3e:a3:39:d1:f7:2f:37:ba:f0:55:76:81:4b:
44:75:60:2e:43:aa:e3:74:25:e0:cc:21:b6:7c:e5:
c5:ba:db:aa:a5:3b:41:aa:a2:2e:90:00:8c:f2:54:
b2:df:9a:b2:f1:b9:5e:df:86:fa:17:18:94:85:be:
5b:96:3a:8a:79:39:d2:46:f3:1e:aa:1d:83:7d:d1:
f6:d2:c3:37:fe:71:ea:e3:23:44:17:e2:8e:ee:b0:
de:f7:04:f1:aa:ac:98:5e:33:3a:4a:7b:1b:2d:fa:
a9:5f:b0:bd:f2:cc:f8:90:25:1a:fc:4b:20:00:de:
55:a7:9e:52:b0:bf:27:12:6c:5f:93:23:ed:80:03:
72:7b:98:e6:4d:7d:99:04:00:94:0b:76:e1:3c:ac:
d2:97:3b:c8:31:92:fd:4f:09:d2:ec:c5:b5:d4:0d:
63:f1:00:5c:d1:a0:6e:52:3a:e7:c6:ab:ba:8f:ca:
5b:af:a0:9e:c8:a6:0a:0a:c8:40:44:a0:14:75:ee:
52:5b:28:30:20:79:85:90:bd:62:91:0e:ef:be:2f:
f3:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:56:89:F6:6E:C4:4F:C2:1C:BD:29:4A:E5:DA:D7:90:C9:3A:39:DB
X509v3 Authority Key Identifier:
keyid:DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:68:6d:91:40:1a:2d:18:1c:8f:56:91:90:a4:d7:d7:ec:d5:
91:bc:41:a1:c2:95:1e:84:49:8b:70:3e:52:44:d7:12:2f:11:
86:3e:c6:0d:79:38:55:01:17:cd:b1:fc:15:d7:5e:7d:ee:0e:
26:22:28:a0:a0:12:7d:e0:d7:d3:ce:71:5c:de:db:b4:8e:a6:
3b:05:c4:d1:f5:76:92:40:11:a7:2e:8c:52:e7:24:37:de:7f:
3b:b5:b8:df:1b:06:b0:d7:89:c2:23:9f:21:40:19:99:ae:29:
e5:10:2c:9f:bd:83:5f:f4:25:58:63:e6:f8:b4:51:b8:0f:74:
4a:68:99:63:aa:91:2c:10:ce:d3:4f:d3:1e:c9:87:97:29:e3:
a1:b2:ce:05:06:b4:9a:91:df:39:9d:c3:44:49:0a:95:27:68:
8c:de:7f:14:92:14:97:d0:4f:21:42:27:ac:66:ee:98:2d:40:
03:c3:b2:d3:e5:8f:e7:a1:51:13:e0:7f:52:d6:a2:bc:ff:e2:
74:c5:09:72:cc:53:50:bb:92:39:23:8e:14:b1:a9:61:80:1f:
b0:85:d0:81:e5:dd:49:08:ca:24:ca:80:82:1c:cb:c3:9f:f1:
ca:6e:40:93:16:3c:d8:af:a0:5e:01:a5:91:47:ba:23:a7:de:
5d:27:d9:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:41:17 2025 by rpki-client