Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
File: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft (raw, json)
Hash identifier: LErIznJxxqXdY/bH19BnNKStT5xRbqbuYCt+BKRCHWE=
Subject key identifier: ED:40:2B:8C:0B:71:7D:26:DA:A9:41:18:11:FA:DB:53:1B:16:98:E7
Authority key identifier: DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
Certificate issuer: /CN=da0589dce63981870a1850906c8c2d1d96740096
Certificate serial: 019A142922F2171606A65BD8C7DDA6A66BC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
Manifest number: 0BF5
Signing time: Fri 24 Oct 2025 03:00:31 +0000
Manifest this update: Fri 24 Oct 2025 03:00:31 +0000
Manifest next update: Sat 25 Oct 2025 03:00:31 +0000
Files and hashes: 1: 2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl (hash: L7Q69FGSaAvFLpUDcnXk/PfAsvP0Ugqcgxn6FHZelGY=)
2: IdU9T1FkI4A5QGWSCJhjbXvJUH8.roa (hash: oWd/kpimW/XKu4I8ZbE0KWw8XTvLyveRYZw0B6kosK4=)
3: dRyK6fyOLluuno6mdLfm9I8N5cU.roa (hash: hGLM1rnaqR4GcFlhsxhGDSd143ODBHpnIFqXniXaJBo=)
4: oQAGdFifd-TKFIBS06405IGsyvA.roa (hash: zpSW+ojYEzYzrGwuoKq30ePtiLpag8R8YWj5wxmdW5A=)
5: omEKk6HfpuKW0m6N-9CapGLlA_o.roa (hash: KyIBEH08U3tFJ8Ty4CJ5NL0S9/Sl8DxHoRzlmOSkNDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 24 Oct 2025 23:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:14:29:22:f2:17:16:06:a6:5b:d8:c7:dd:a6:a6:6b:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0589dce63981870a1850906c8c2d1d96740096
Validity
Not Before: Oct 24 03:00:31 2025 GMT
Not After : Oct 25 03:00:31 2025 GMT
Subject: CN=ed402b8c0b717d26daa9411811fadb531b1698e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:16:bf:ee:99:3d:01:df:e0:02:94:e0:bb:7e:
de:f7:fd:73:e0:63:e4:d0:fe:63:b6:86:08:f4:cc:
bb:d0:e2:8c:95:1b:93:9a:4f:1c:5b:65:ca:df:04:
45:b6:42:2a:c9:5e:43:29:33:7f:0b:5d:58:a3:ed:
cb:7b:18:bf:e9:7c:1b:04:17:6d:fb:f9:db:d7:db:
63:b0:e7:52:c5:f4:ec:e6:c4:7f:ef:f8:5d:3a:96:
b2:28:0e:95:de:57:8c:6d:0f:37:51:c9:6e:c3:a2:
2b:d2:ab:a5:ae:8a:22:61:d4:c8:2d:b0:06:fb:f2:
83:f6:ec:b3:3b:78:88:7f:4a:69:2c:3b:41:f8:4d:
fc:7e:0a:69:3e:09:25:21:35:2d:f6:9f:a3:a8:91:
cc:dc:d8:f1:2a:b8:6f:17:01:ce:ef:c6:ab:47:27:
f1:bf:6a:7d:a6:b6:02:27:c5:05:82:45:26:39:52:
d3:bc:56:d4:1b:c5:a1:2f:b8:ba:7c:25:a3:dc:c8:
85:a0:3b:04:12:28:e1:96:d1:f1:3d:d6:5c:74:d8:
96:a5:ae:e9:42:ab:65:57:1a:17:65:80:4c:0d:38:
c2:c0:ec:03:14:ef:30:f0:81:ba:32:a8:15:45:40:
90:19:29:1c:1e:1e:5b:5d:ef:6d:05:b0:fd:f6:44:
6a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:40:2B:8C:0B:71:7D:26:DA:A9:41:18:11:FA:DB:53:1B:16:98:E7
X509v3 Authority Key Identifier:
keyid:DA:05:89:DC:E6:39:81:87:0A:18:50:90:6C:8C:2D:1D:96:74:00:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6326bb-ba33-4339-b8c6-14e3c2017969/1/2gWJ3OY5gYcKGFCQbIwtHZZ0AJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:7c:ab:47:aa:f0:f4:47:a6:20:da:cc:27:bd:82:e8:2b:03:
84:a9:30:4b:90:59:44:fa:3e:bb:53:19:eb:15:88:6c:b6:c5:
53:c7:ae:67:21:8f:49:81:c0:54:ef:b6:39:9c:69:5e:8a:1e:
22:68:db:05:64:7d:22:72:6d:a2:bd:ce:85:81:6c:5e:27:fd:
fa:1b:fa:0d:6d:9f:e3:89:7c:42:e0:95:f8:7b:a4:5e:9a:69:
9a:49:fa:ae:1c:73:8a:2b:84:93:34:ff:bc:d1:10:32:e1:3e:
23:02:9e:7f:44:20:5f:cf:2a:a1:09:ce:fc:63:32:41:97:fb:
d9:d5:4f:9c:da:0f:a8:5d:e0:9d:e6:f2:c1:14:79:7c:14:40:
3c:2e:be:d2:19:77:25:ab:2c:ef:5a:5d:ac:b8:04:b0:4e:f4:
b0:fd:2e:32:76:03:cc:d9:99:6f:a0:c4:81:2d:1e:00:e5:99:
4e:22:a6:a9:2c:a8:0a:90:ee:ef:d2:1d:d7:81:06:ae:aa:ce:
ec:2d:5f:3f:31:ca:05:b1:7e:2a:00:7e:b7:34:f7:38:69:22:
97:7b:31:f0:34:ef:6e:59:2a:db:af:d5:37:bd:48:8b:a1:49:
02:ef:d8:8d:e7:c0:d0:60:df:4e:a0:0f:4d:7b:78:f0:46:90:
54:dd:57:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 09:17:12 2025 by rpki-client