Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: qZ5wep1svo7v9P4o2cieEcg1DQpY23w4h4XEcMIy9jI=
Subject key identifier: A2:5D:78:08:DC:64:D6:3F:FA:33:5A:6C:F5:83:BD:A6:C1:08:D8:9F
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 019A251D045C074A0A56B54FA08A81F36AD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 165A
Signing time: Mon 27 Oct 2025 10:00:49 +0000
Manifest this update: Mon 27 Oct 2025 10:00:49 +0000
Manifest next update: Tue 28 Oct 2025 10:00:49 +0000
Files and hashes: 1: WWNEma98vqvt3aWub4KvZrisRPY.roa (hash: 8ej/FxtmoHvT2+4JYPncO9OF+5JwUWMEm2sRynTw/0U=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: wTjBuGxSMAtd+TkERtLAjmWRamUjQQHGY5oPIAE137c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 10:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:1d:04:5c:07:4a:0a:56:b5:4f:a0:8a:81:f3:6a:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Oct 27 10:00:49 2025 GMT
Not After : Oct 28 10:00:49 2025 GMT
Subject: CN=a25d7808dc64d63ffa335a6cf583bda6c108d89f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:eb:08:77:e3:87:63:4f:50:e0:db:9f:14:64:
95:41:1a:04:10:7f:b4:90:16:fe:dc:cf:1f:7e:a8:
9f:b8:5f:ae:93:09:0d:4e:3b:ed:50:6e:6e:53:2a:
5d:b1:f8:a6:0e:b6:ef:90:61:1f:de:14:e4:a9:17:
c0:53:4b:77:61:3a:e9:fa:dd:2a:9d:4d:16:e0:eb:
b7:c5:29:c7:05:fe:2e:24:f8:0c:2f:b7:57:d0:b4:
71:e4:06:c2:3c:44:d6:1f:df:30:2b:78:a9:3d:d7:
3e:08:76:9c:a3:17:59:a4:a5:61:47:f8:e6:d4:31:
db:79:08:1f:d3:c6:44:37:2c:b4:15:54:aa:14:eb:
92:0a:10:9b:56:79:d2:b1:ef:59:c0:a7:67:93:1e:
00:6b:b1:c5:2c:b4:0a:c5:93:81:2c:de:44:e7:04:
e0:93:8d:f8:ab:1f:4d:d2:66:fb:a1:63:a8:ed:b2:
45:91:97:41:b3:75:3a:b8:82:98:c5:ce:be:66:7e:
cd:b8:d5:2f:11:16:83:b0:48:7f:c0:b8:e8:ee:5b:
c8:63:2b:ff:4c:32:ef:70:77:32:7e:88:c1:43:5f:
32:36:a1:73:8a:8c:26:48:78:3c:96:19:9a:db:b6:
1f:4f:cc:69:c0:c6:7d:c7:44:21:13:73:f1:85:d6:
ac:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:5D:78:08:DC:64:D6:3F:FA:33:5A:6C:F5:83:BD:A6:C1:08:D8:9F
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:ba:3c:26:a9:36:3d:5e:b9:ef:58:0c:56:dd:e3:68:6f:7e:
a6:93:92:82:8e:aa:c6:e8:66:7f:cb:6b:40:2d:c0:7d:c4:fc:
9c:58:48:dc:64:21:a4:af:c5:0d:a5:89:0a:02:86:fe:27:bb:
0c:50:30:d7:b5:41:02:05:26:03:c1:3f:2c:04:84:9d:f7:9a:
13:33:d8:89:4c:76:c3:85:e0:8d:7c:52:50:af:69:74:e1:81:
5b:f5:71:df:84:58:91:2f:bb:01:e0:47:e8:7a:4b:b4:98:de:
cd:17:99:5c:75:c6:50:0f:78:f9:79:66:8c:fb:a5:33:ee:5d:
ca:3b:d1:f6:65:1e:0e:d9:1b:1c:84:a3:b6:bc:51:06:0e:c9:
9a:eb:6d:92:86:3e:e3:6c:f8:8a:b2:16:a8:4f:90:28:47:5e:
41:9d:fb:11:40:07:99:5d:0a:ac:ad:57:8c:c1:74:5c:9c:89:
a4:e8:c4:6a:14:ae:14:0f:25:41:9b:21:ed:81:5e:34:df:4d:
e5:1e:b1:0f:e3:df:56:6e:47:ba:86:89:68:6f:7b:81:1b:7e:
3a:72:04:ef:43:40:83:24:64:32:3b:cb:33:8c:c1:9a:7d:a1:
21:eb:0d:0c:78:5a:89:0a:97:b1:c6:45:f5:e5:1c:14:77:9c:
d6:7c:2a:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 17:40:46 2025 by rpki-client