Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
File: 2f-H9S43t2bsv0s_nLJlWN0wiCA.mft (raw, json)
Hash identifier: nMCcNG1gpm9+vDjsuUrkFQq5JMFvvjee59VFcUq8RbM=
Subject key identifier: E7:FA:50:F9:38:21:9A:2E:FA:CE:F7:86:85:1F:7D:69:E2:01:8E:A3
Authority key identifier: D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
Certificate issuer: /CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Certificate serial: 019A70DC2A1F69F88B370B566FC985FC2295
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
Manifest number: 0CED
Signing time: Tue 11 Nov 2025 03:01:08 +0000
Manifest this update: Tue 11 Nov 2025 03:01:08 +0000
Manifest next update: Wed 12 Nov 2025 03:01:08 +0000
Files and hashes: 1: 2f-H9S43t2bsv0s_nLJlWN0wiCA.crl (hash: sXqtYi+hciG7XlXiB03+ZIK8KHEafNSby33ettjmzMc=)
2: nyss7FejNtDGTUXRBz8EpK-bUtQ.roa (hash: 1YbJTbv2jhWedSFo8tfV4w9Efzyk/as9DY0FQwn+kas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:2a:1f:69:f8:8b:37:0b:56:6f:c9:85:fc:22:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ff87f52e37b766ecbf4b3f9cb26558dd308820
Validity
Not Before: Nov 11 03:01:08 2025 GMT
Not After : Nov 12 03:01:08 2025 GMT
Subject: CN=e7fa50f938219a2efacef786851f7d69e2018ea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d3:a7:44:42:8a:1d:c0:fb:f7:24:9a:32:25:
f0:f0:5b:a7:69:94:71:00:3b:9f:f8:ba:a0:d2:72:
3b:3e:82:41:81:7f:35:3b:aa:b6:6b:fa:a5:21:87:
fa:c3:99:ad:18:83:7b:a6:38:56:c4:0f:e4:6d:4d:
c0:75:ed:27:8a:6b:31:f6:6d:01:05:33:2d:2a:86:
10:67:fa:58:cd:b5:ff:e3:15:f5:80:c7:dc:03:d2:
8c:cf:bf:e5:e1:39:f4:58:d7:cb:fd:c7:0e:79:23:
82:82:df:a0:27:78:2b:aa:06:ab:95:1f:59:12:f8:
13:dd:bb:33:dc:c7:bc:e2:9e:da:ab:21:10:be:77:
6f:5f:a3:96:46:8b:7b:67:9e:6b:0b:eb:12:7a:0f:
4d:22:32:45:5e:dc:c5:c7:25:a7:00:0e:13:1f:a3:
3c:1a:04:b3:3c:e8:c8:94:c8:90:cf:18:66:43:33:
ec:5e:63:a2:30:9a:e4:cb:50:2b:95:a6:af:00:7e:
a2:de:7b:ff:85:88:e1:d7:74:93:63:1a:80:c6:18:
4e:9b:79:0d:64:99:87:f7:a1:cb:11:6d:da:c1:e0:
77:40:6e:6a:bb:38:6f:bf:87:d5:31:80:8f:a8:28:
1d:71:57:b6:99:09:1b:d5:eb:9e:6d:9c:c7:2e:6b:
b9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:FA:50:F9:38:21:9A:2E:FA:CE:F7:86:85:1F:7D:69:E2:01:8E:A3
X509v3 Authority Key Identifier:
keyid:D9:FF:87:F5:2E:37:B7:66:EC:BF:4B:3F:9C:B2:65:58:DD:30:88:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f-H9S43t2bsv0s_nLJlWN0wiCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/e2aad8-e212-4828-a5fc-1e7300ccda36/1/2f-H9S43t2bsv0s_nLJlWN0wiCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:6a:71:0b:70:3a:a0:5d:89:f9:96:b6:08:bd:b0:86:73:c5:
0e:43:57:d6:5c:c7:04:c3:41:66:84:72:18:76:97:6e:c8:70:
a4:ee:3b:ba:d8:da:a2:e8:a6:8d:d6:dc:62:5d:48:b3:7a:80:
62:de:f2:4d:33:7e:cd:0e:ed:f9:87:d3:81:2e:17:24:5f:98:
6e:de:1a:b8:94:18:c5:83:29:7c:0d:d2:1e:75:05:7f:3d:e1:
8e:3f:5c:37:8b:05:af:31:41:35:91:e2:46:05:02:ce:c1:da:
40:82:68:49:35:15:14:1c:d6:9e:d3:bb:cf:c1:b7:88:70:6e:
27:67:a2:32:5f:80:10:dc:34:c9:3e:19:26:1a:9f:5f:a8:85:
97:61:12:64:87:f2:80:2f:40:a7:11:07:74:a2:c6:d9:02:7b:
3c:ad:4d:e8:bc:cd:92:be:73:34:d9:3e:0b:61:c8:04:79:2b:
21:e9:1d:f0:17:a2:e1:f0:55:e7:31:e5:b7:13:7e:d4:20:b3:
f5:08:7b:55:96:b5:fd:9e:d2:9f:87:20:37:39:92:7b:7f:6a:
37:be:f8:d1:77:39:ec:82:99:b3:a2:2b:3a:df:78:d9:b9:cb:
6d:ad:03:4e:d9:95:4f:71:89:75:a1:db:76:55:93:dc:16:36:
eb:fd:25:b7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpw3CofafiLNwtWb8mF/CKVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ZmY4N2Y1MmUzN2I3NjZlY2JmNGIzZjljYjI2NTU4ZGQz
MDg4MjAwHhcNMjUxMTExMDMwMTA4WhcNMjUxMTEyMDMwMTA4WjAzMTEwLwYDVQQD
EyhlN2ZhNTBmOTM4MjE5YTJlZmFjZWY3ODY4NTFmN2Q2OWUyMDE4ZWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdOnREKKHcD79ySaMiXw8FunaZRx
ADuf+Lqg0nI7PoJBgX81O6q2a/qlIYf6w5mtGIN7pjhWxA/kbU3Ade0nimsx9m0B
BTMtKoYQZ/pYzbX/4xX1gMfcA9KMz7/l4Tn0WNfL/ccOeSOCgt+gJ3grqgarlR9Z
EvgT3bsz3Me84p7aqyEQvndvX6OWRot7Z55rC+sSeg9NIjJFXtzFxyWnAA4TH6M8
GgSzPOjIlMiQzxhmQzPsXmOiMJrky1ArlaavAH6i3nv/hYjh13STYxqAxhhOm3kN
ZJmH96HLEW3aweB3QG5quzhvv4fVMYCPqCgdcVe2mQkb1euebZzHLmu5zQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOf6UPk4IZou+s73hoUffWniAY6jMB8GA1UdIwQY
MBaAFNn/h/UuN7dm7L9LP5yyZVjdMIggMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmYtSDlTNDN0MmJzdjBzX25MSmxXTjB3aUNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi9lMmFhZDgtZTIxMi00ODI4LWE1ZmMt
MWU3MzAwY2NkYTM2LzEvMmYtSDlTNDN0MmJzdjBzX25MSmxXTjB3aUNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi9lMmFhZDgtZTIxMi00ODI4LWE1ZmMtMWU3MzAwY2NkYTM2
LzEvMmYtSDlTNDN0MmJzdjBzX25MSmxXTjB3aUNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATmpxC3A6
oF2J+Za2CL2whnPFDkNX1lzHBMNBZoRyGHaXbshwpO47utjaouimjdbcYl1Is3qA
Yt7yTTN+zQ7t+YfTgS4XJF+Ybt4auJQYxYMpfA3SHnUFfz3hjj9cN4sFrzFBNZHi
RgUCzsHaQIJoSTUVFBzWntO7z8G3iHBuJ2eiMl+AENw0yT4ZJhqfX6iFl2ESZIfy
gC9ApxEHdKLG2QJ7PK1N6LzNkr5zNNk+C2HIBHkrIekd8Bei4fBV5zHltxN+1CCz
9Qh7VZa1/Z7Sn4cgNzmSe39qN7740Xc57IKZs6IrOt942bnLba0DTtmVT3GJdaHb
dlWT3BY26/0ltw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:38:59 2025 by rpki-client