Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
File: 2EPxqgSY2E95UyPB_2uuOvQCBtE.mft (raw, json)
Hash identifier: h41n6GpVN7zywVCnCE+23Xy2JWw2NuhykYh7gHJn2nw=
Subject key identifier: A3:70:36:DB:96:D8:CB:2A:2E:CA:40:5B:8D:93:B9:10:06:4C:3D:06
Authority key identifier: D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
Certificate issuer: /CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Certificate serial: 019942F2C950CAAD78B37BDADA16EA2E4B38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
Manifest number: 1683
Signing time: Sat 13 Sep 2025 12:00:31 +0000
Manifest this update: Sat 13 Sep 2025 12:00:31 +0000
Manifest next update: Sun 14 Sep 2025 12:00:31 +0000
Files and hashes: 1: 2EPxqgSY2E95UyPB_2uuOvQCBtE.crl (hash: 49GoVrFvK5wUUSBQjliLe7l4Wdy0QVLTK0Auq5Xl82Y=)
2: Lr1Je63vs8PyvkKI1_N9un3D4qE.roa (hash: hbRmpQBdQ4b6GdZPWppZ6a4wJHdosMiH1PY+13rdPiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Sep 2025 11:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:42:f2:c9:50:ca:ad:78:b3:7b:da:da:16:ea:2e:4b:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d843f1aa0498d84f795323c1ff6bae3af40206d1
Validity
Not Before: Sep 13 12:00:31 2025 GMT
Not After : Sep 14 12:00:31 2025 GMT
Subject: CN=a37036db96d8cb2a2eca405b8d93b910064c3d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fe:71:dc:49:8c:4a:7b:e6:e1:5a:d0:af:a9:
48:84:2c:6c:00:18:b4:f1:ba:18:b9:85:d7:3d:76:
52:62:27:c8:19:4b:27:7a:66:8b:58:b3:ac:95:87:
dd:2b:98:61:c6:14:4e:c4:b0:a7:19:ee:20:b4:91:
a4:2a:af:5a:1c:37:7e:54:fe:db:45:cc:c7:6c:c0:
97:82:bb:c4:82:1e:56:87:77:c9:e4:06:99:ed:0c:
f5:bc:9e:8e:b9:ba:48:cf:b0:44:cb:84:4d:75:f4:
dc:9d:72:f0:53:a8:0c:fd:7b:98:64:5a:b1:30:76:
c8:34:ac:a1:a5:3d:72:45:2d:db:5c:31:4a:32:d9:
8b:66:ae:d2:28:24:ef:b2:e2:c6:28:16:5a:14:c6:
75:fe:e0:39:4e:80:76:db:51:c6:b0:7c:6e:b4:9e:
e5:fa:ef:b6:62:96:aa:28:b7:29:ea:54:98:ef:74:
02:bc:3e:f3:69:36:71:f9:73:4c:22:b2:54:87:2a:
0f:ff:1c:50:13:69:df:f4:f8:86:85:3a:49:3b:17:
b7:1d:cd:f8:98:6c:4e:89:60:23:d9:2c:1b:ad:3c:
6f:5c:ad:ae:72:13:f0:d5:ee:25:d3:d5:13:a4:5c:
8a:2e:5d:ca:37:93:3a:75:b4:e9:a5:b0:b8:ad:1c:
de:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:70:36:DB:96:D8:CB:2A:2E:CA:40:5B:8D:93:B9:10:06:4C:3D:06
X509v3 Authority Key Identifier:
keyid:D8:43:F1:AA:04:98:D8:4F:79:53:23:C1:FF:6B:AE:3A:F4:02:06:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EPxqgSY2E95UyPB_2uuOvQCBtE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/da4dd9-594d-456c-9f71-76a194554b05/1/2EPxqgSY2E95UyPB_2uuOvQCBtE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:42:6c:62:27:49:6f:54:fc:7b:61:87:d0:28:00:f3:20:57:
72:fe:21:6d:1d:d6:ff:ab:ea:bf:38:ef:2f:e7:8b:67:b0:a1:
5e:7c:55:29:f8:71:c6:0d:65:2a:2c:9d:f9:47:79:54:ba:89:
26:6f:84:8c:aa:98:66:a7:c9:e8:39:c7:15:d6:c0:b9:2a:0e:
54:11:ac:b0:49:40:86:16:70:e0:92:98:14:16:88:64:6f:2c:
db:33:05:bc:3d:cd:12:1f:9d:6a:e4:0a:a4:37:b4:89:9d:cc:
8f:a7:d2:c6:4c:e4:41:78:d4:d2:c9:43:fe:f1:e0:ba:58:59:
4c:90:a3:36:57:7e:ab:07:02:de:be:8e:03:aa:ab:de:06:60:
d0:77:85:2c:73:af:5f:33:34:08:19:fc:03:74:13:f3:28:37:
5a:ff:3e:12:e3:f1:fb:fe:0b:d6:93:a8:7a:69:b4:58:b5:9f:
73:12:d0:8a:b4:61:b4:35:ce:7a:6e:6f:a9:48:17:78:7d:01:
02:ea:81:28:20:46:9d:56:19:01:ec:f5:29:c2:79:4a:72:a4:
84:a7:b0:3c:f3:60:17:6c:97:60:78:ee:4a:a2:52:93:0f:8b:
1e:5e:cd:91:46:50:a1:dd:9a:c6:75:45:4b:f1:ee:86:a9:27:
91:ca:58:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 13 21:21:48 2025 by rpki-client