Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json)
Hash identifier: U/7mD6qaUXo84dhtChk5d1egu896FL/eDXu1ycQusbQ=
Subject key identifier: 4D:82:E9:79:FC:FC:0C:F0:9E:B4:79:55:EF:9C:B6:2A:97:8F:9C:8B
Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac
Certificate serial: 019A1CBE9B2A87933BC86033E09178859FCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
Manifest number: 0C8C
Signing time: Sat 25 Oct 2025 19:00:44 +0000
Manifest this update: Sat 25 Oct 2025 19:00:44 +0000
Manifest next update: Sun 26 Oct 2025 19:00:44 +0000
Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: B5bvGe+NgCpHB1F/pIr/a33Ia3t8TcfdKHfS0O6pc98=)
2: x6hLDer_XW1q_iEu4GXkzkZyC4s.roa (hash: WqVvea5/LNqbNIIZsdml33Mg9/QcNbUM12u8YdmaIWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1c:be:9b:2a:87:93:3b:c8:60:33:e0:91:78:85:9f:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac
Validity
Not Before: Oct 25 19:00:44 2025 GMT
Not After : Oct 26 19:00:44 2025 GMT
Subject: CN=4d82e979fcfc0cf09eb47955ef9cb62a978f9c8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:98:18:72:c4:f4:7e:90:8e:85:f5:06:e0:2a:
42:4f:ef:97:03:ef:fa:ae:f8:ca:f1:26:78:2a:72:
9c:ef:bf:66:ec:a3:9c:92:2d:98:63:cc:49:3e:59:
15:e2:0f:1e:94:03:9d:05:57:e0:08:d0:a3:b0:9c:
02:2f:e2:56:cf:4f:b2:64:c2:de:95:3b:da:77:63:
0d:54:90:af:4f:fb:8a:61:b0:72:ef:3c:b5:b4:5a:
a7:3b:94:f6:e8:f1:95:0e:7a:e6:1e:58:43:7c:7b:
47:ca:c8:96:8a:13:9b:ff:77:d1:e0:25:e4:2d:75:
21:f5:9a:42:dc:ba:04:71:fa:c1:78:0d:4c:63:52:
2d:ef:d6:86:f1:68:65:d8:ea:56:0a:6c:49:95:56:
b0:44:61:37:87:3c:ce:31:5b:74:3a:d7:e9:9e:3e:
36:ca:c1:0c:3c:c8:03:4d:90:45:3a:4f:f8:b9:67:
b2:b6:59:89:c2:99:c1:32:0f:78:0f:a8:66:6a:33:
e2:a2:01:a3:c6:f4:1a:de:47:76:90:54:ab:e3:18:
11:c5:85:bf:5d:87:14:1d:5d:f6:f3:b8:ec:41:fd:
05:0e:0b:91:4b:ac:ea:c4:dc:da:7e:bc:4e:83:e2:
38:4d:e5:0e:28:70:37:4d:88:45:c7:31:71:f8:ba:
fb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:82:E9:79:FC:FC:0C:F0:9E:B4:79:55:EF:9C:B6:2A:97:8F:9C:8B
X509v3 Authority Key Identifier:
keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:f8:1d:f2:d0:59:59:67:d7:06:5a:f3:01:ec:41:b5:46:33:
63:32:0b:ef:cb:86:88:f1:75:8d:a5:d3:60:e1:19:63:e1:a3:
11:13:01:98:57:e0:67:02:a0:05:0a:27:76:0b:0e:59:ad:d0:
9a:80:32:6e:f4:01:f9:30:26:be:5c:07:57:29:f0:68:3c:5b:
46:5f:76:fe:74:ad:ef:ed:0e:ee:f7:2d:d5:35:60:6b:29:29:
2d:b9:0e:2e:4d:76:b3:9f:a0:97:5d:74:6c:34:04:7d:c6:10:
09:af:db:fc:51:cc:23:89:d6:f5:db:88:53:49:aa:61:3d:4b:
42:7a:47:b6:82:27:fd:19:a9:c0:ec:80:db:fd:0f:f9:1c:22:
b6:15:7c:62:05:31:d2:44:2b:e6:cd:5f:ea:aa:1c:27:86:ab:
3b:62:6a:48:23:90:ae:6f:d9:4a:98:c3:83:9c:03:09:a1:de:
eb:b6:01:e4:54:37:b1:c4:67:17:e4:3b:9d:17:6b:f0:3a:f3:
14:c5:0a:4d:4a:5e:35:98:52:a4:87:2a:a6:c2:82:04:d9:40:
f4:24:0a:e3:40:d9:63:cb:86:a1:17:c4:f2:b8:21:83:31:84:
3e:68:ed:3a:87:22:fd:5c:ef:f7:00:62:88:39:27:cd:5f:cf:
99:92:23:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 04:35:17 2025 by rpki-client