Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: xf4gbJhTyh5xMreR8Uh0JmlJynRSgKrKdryN9WrkShY=
Subject key identifier: 70:65:71:01:3D:91:A4:CA:0F:86:0E:D3:23:99:1C:1D:21:B7:2C:A5
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 019A5A8B8DC5B4C30409DFE6ECBCD6919112
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 0C6B
Signing time: Thu 06 Nov 2025 19:01:26 +0000
Manifest this update: Thu 06 Nov 2025 19:01:26 +0000
Manifest next update: Fri 07 Nov 2025 19:01:26 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: RHD/xpo2IFw+P9Ae19fzkjBnNeLwY6rKh/dl0Tl5aXc=)
2: YfAgsC_cdxTTdTc3lRuKLUA9Ek4.roa (hash: 6JxCw6QKy553BkYrq5SFqTFyUQePShSh+1QhYyHxmes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Nov 2025 14:56:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:5a:8b:8d:c5:b4:c3:04:09:df:e6:ec:bc:d6:91:91:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: Nov 6 19:01:26 2025 GMT
Not After : Nov 7 19:01:26 2025 GMT
Subject: CN=706571013d91a4ca0f860ed323991c1d21b72ca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:77:90:43:94:23:35:63:91:9b:e9:6e:6b:a3:
94:2a:92:98:78:0d:e7:5c:26:31:94:ac:f6:dd:1e:
2c:a4:f0:46:24:35:d1:64:23:22:6c:4e:a1:e8:27:
5d:7d:a8:74:5e:63:cf:8d:36:c9:4c:99:18:c6:64:
69:87:8f:a0:23:3d:37:c3:6c:10:e9:86:02:83:04:
fe:2a:6f:c3:1e:5e:c3:43:5a:b1:a6:18:57:95:cd:
66:75:30:3b:a3:fa:53:92:5e:c7:5e:c2:b2:d4:81:
70:65:7d:4f:4c:17:e9:d8:b2:2a:ed:4b:3e:75:26:
f2:8e:03:db:0e:96:ce:5f:78:bc:9f:ed:16:b3:39:
dc:e1:60:11:20:ab:9f:7f:dc:0c:7c:0f:3a:5a:e4:
ec:33:19:bd:94:4c:eb:fc:42:f3:bb:92:2d:7d:1a:
49:1d:f6:2c:51:c7:7f:ea:74:2d:ba:71:1d:69:d9:
42:d4:0c:23:4f:51:26:ac:b7:00:cb:65:06:b5:88:
ac:ff:72:b1:3f:4d:fd:16:00:0f:9b:27:05:e0:e6:
e5:39:2f:6c:0b:93:ec:14:04:dd:6e:50:02:05:11:
88:a0:1e:91:70:8e:f2:b8:cc:f2:cf:40:89:22:84:
87:54:57:6b:86:eb:7c:52:48:a1:12:b5:83:24:30:
f6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:65:71:01:3D:91:A4:CA:0F:86:0E:D3:23:99:1C:1D:21:B7:2C:A5
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:46:9f:a8:87:b9:43:88:89:48:9e:4e:96:40:20:7d:3d:8a:
2b:c8:13:4a:0e:7c:23:26:94:af:58:08:7e:df:77:13:8c:8a:
6b:f9:47:70:28:7c:8a:4c:96:5f:f3:33:c8:2f:1e:1a:47:3e:
0c:e6:5d:61:ce:cf:ff:d7:a2:30:b3:9b:73:37:93:27:03:ca:
18:a2:28:5f:53:de:e3:8b:13:1a:c6:51:94:36:33:db:59:78:
ad:22:f4:4e:cb:a1:0c:1b:76:ff:08:65:b3:34:8f:da:ef:bb:
89:f5:3d:aa:44:fe:4b:91:9d:d9:ea:d7:fb:60:92:09:02:94:
4f:14:20:49:32:7a:05:03:e9:3d:6e:48:30:aa:5b:dd:f8:07:
59:e6:88:ed:d4:05:e7:e4:22:ba:54:d5:7d:73:08:dd:d2:61:
05:a1:47:66:29:74:10:f8:ba:04:54:3c:0c:47:b4:67:5e:5e:
41:e1:9b:45:46:52:39:3e:ac:75:ed:37:b2:5e:89:11:95:4c:
51:70:f6:2f:45:4a:51:92:e4:49:90:4e:37:d4:0d:89:42:f1:
55:09:56:a8:40:31:bc:90:ac:27:ac:c7:11:ab:ba:11:cd:c9:
d9:09:74:a1:7f:99:05:9b:f2:e7:4f:e1:9b:c2:60:f8:ce:07:
9c:7d:14:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 23:58:17 2025 by rpki-client