Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
File: 2RTaVuGpNGSdoClkrBLro0xcuE8.mft (raw, json)
Hash identifier: npUb5N/K+QSmu2A5qD0rWFh93pMZgUy/TgP1XUJskt8=
Subject key identifier: 32:C8:C9:C4:A4:7F:B2:8A:2A:E9:76:72:72:87:70:FC:47:0E:11:FC
Authority key identifier: D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
Certificate issuer: /CN=d914da56e1a934649da02964ac12eba34c5cb84f
Certificate serial: 019A0D14163C73E0FB443311475291E91F21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
Manifest number: 0447
Signing time: Wed 22 Oct 2025 18:00:11 +0000
Manifest this update: Wed 22 Oct 2025 18:00:11 +0000
Manifest next update: Thu 23 Oct 2025 18:00:11 +0000
Files and hashes: 1: 2RTaVuGpNGSdoClkrBLro0xcuE8.crl (hash: P2bqAS/a2UhnU/EMPwe0Kg+jc83cTG8MKgM9V3Mt6PI=)
2: As7V6ZE1xBs1gl2SXAEbNIUHC00.roa (hash: kQVt6PxymkEnwafOS16jS1OEQiU/aYHOchiiJ14/rGk=)
3: PIhsP1al3YizxN861NowDoYoHI0.roa (hash: R9+qOpDwEb0Q5efJFh94SK/9P5J9FFbPDMd4Z1g9adY=)
4: RVfWb6AeQUrXaw0eh9r6r19sjZE.roa (hash: v4r/LVDf839QcMU4tAbsB+argaU/EH+WPkLUSna1SOM=)
5: h2By371OCvj77wNVdyQcqgznsSg.roa (hash: soUA/0DY5+xPnyfK/0AF2K5yBnM6iGB14VNuRKlaQjI=)
6: yP_dwUj9wkpGZraCJm3_QUlcxSc.roa (hash: PpcRyK/zlLSo8ZccoU5Ov6j3mDsKb8kB7dCU9P4KBZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0d:14:16:3c:73:e0:fb:44:33:11:47:52:91:e9:1f:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d914da56e1a934649da02964ac12eba34c5cb84f
Validity
Not Before: Oct 22 18:00:11 2025 GMT
Not After : Oct 23 18:00:11 2025 GMT
Subject: CN=32c8c9c4a47fb28a2ae97672728770fc470e11fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b5:58:53:79:c7:b8:cb:ba:85:b0:f1:10:22:
1e:f2:b5:12:4a:76:b1:34:de:e3:dc:98:77:8d:03:
9b:f5:cc:98:ad:da:a6:93:9d:2f:71:65:11:5c:a4:
be:40:75:6a:d7:10:4e:3b:5d:4a:08:8a:23:e7:c7:
2b:ed:6b:6b:81:75:76:b8:3c:ba:dc:0a:32:24:48:
2d:59:7e:ba:cb:b4:48:2d:83:74:ba:af:e8:bb:05:
8e:56:95:09:45:8b:0d:b2:b2:14:5d:aa:08:b5:d2:
f0:d4:f9:69:25:49:4a:73:6b:45:c9:89:f1:ca:41:
cc:a7:d5:04:13:4e:f4:32:15:8c:cf:9e:5e:0b:e0:
01:23:80:35:ea:07:ad:44:7b:95:94:6e:a0:e0:5a:
ae:72:f3:29:a2:29:6b:fb:8a:14:81:9c:09:07:85:
ec:0e:2d:c1:71:5d:93:30:6e:85:c1:0c:14:f0:d5:
ac:f4:73:d2:8f:d7:c7:80:5d:f0:52:15:e3:69:bc:
02:08:63:d5:06:a7:53:8d:14:a6:bd:7f:a0:02:b2:
2d:c6:4d:f1:50:a0:e5:39:8d:e6:64:8a:da:85:ec:
4a:ea:ed:40:4b:24:17:58:22:1b:2d:ae:57:10:08:
df:99:25:4e:10:94:e3:b5:34:2a:91:b0:a7:59:61:
83:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C8:C9:C4:A4:7F:B2:8A:2A:E9:76:72:72:87:70:FC:47:0E:11:FC
X509v3 Authority Key Identifier:
keyid:D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:f7:f2:45:84:35:74:0d:89:df:24:60:21:16:b7:bb:03:d2:
1a:55:b8:d3:97:41:66:63:bc:b5:64:0b:fc:3d:5f:a0:37:ea:
38:9a:b1:d6:03:a0:c0:4c:10:31:f8:c1:96:57:31:f1:98:ac:
34:c8:02:a7:29:39:67:91:79:03:44:e7:57:9f:c8:26:9d:8a:
17:fe:f4:fe:41:0a:17:46:aa:cb:09:72:48:14:8f:11:dd:67:
eb:71:5f:65:f8:93:d7:4a:6b:02:37:d7:30:19:bf:03:d7:52:
e3:27:2c:bf:df:4f:dd:87:b2:ec:82:e3:70:ff:46:fd:34:9c:
f1:ea:d8:1f:52:ab:66:e6:3a:b7:86:a5:35:15:3d:6e:b7:1c:
78:9e:b3:58:da:70:b1:14:ed:a7:67:b1:38:78:c8:0b:a2:dc:
de:20:66:83:2b:e6:c2:fe:34:b0:98:3a:53:5a:02:c6:11:36:
e3:e1:95:5c:3b:45:e1:f4:58:03:ca:10:a5:8f:e2:d6:f7:97:
05:50:80:4a:8b:26:5d:e2:08:7e:e3:e5:b2:65:93:c1:56:e8:
dd:d0:a7:a9:40:09:c7:19:55:6f:ed:2e:74:7b:7f:0b:d1:11:
72:44:45:23:7b:be:2f:1e:07:92:b9:26:6c:ba:1c:c7:d6:ec:
ba:5c:7b:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoNFBY8c+D7RDMRR1KR6R8hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5MTRkYTU2ZTFhOTM0NjQ5ZGEwMjk2NGFjMTJlYmEzNGM1
Y2I4NGYwHhcNMjUxMDIyMTgwMDExWhcNMjUxMDIzMTgwMDExWjAzMTEwLwYDVQQD
EygzMmM4YzljNGE0N2ZiMjhhMmFlOTc2NzI3Mjg3NzBmYzQ3MGUxMWZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLVYU3nHuMu6hbDxECIe8rUSSnax
NN7j3Jh3jQOb9cyYrdqmk50vcWURXKS+QHVq1xBOO11KCIoj58cr7WtrgXV2uDy6
3AoyJEgtWX66y7RILYN0uq/ouwWOVpUJRYsNsrIUXaoItdLw1PlpJUlKc2tFyYnx
ykHMp9UEE070MhWMz55eC+ABI4A16getRHuVlG6g4FqucvMpoilr+4oUgZwJB4Xs
Di3BcV2TMG6FwQwU8NWs9HPSj9fHgF3wUhXjabwCCGPVBqdTjRSmvX+gArItxk3x
UKDlOY3mZIrahexK6u1ASyQXWCIbLa5XEAjfmSVOEJTjtTQqkbCnWWGD1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDLIycSkf7KKKul2cnKHcPxHDhH8MB8GA1UdIwQY
MBaAFNkU2lbhqTRknaApZKwS66NMXLhPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS83YTExYjUtYTQwNS00MWNiLTgxY2It
ZjZiY2NmMWU1MzFmLzEvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS83YTExYjUtYTQwNS00MWNiLTgxY2ItZjZiY2NmMWU1MzFm
LzEvMlJUYVZ1R3BOR1Nkb0Nsa3JCTHJvMHhjdUU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfffyRYQ1
dA2J3yRgIRa3uwPSGlW405dBZmO8tWQL/D1foDfqOJqx1gOgwEwQMfjBllcx8Zis
NMgCpyk5Z5F5A0TnV5/IJp2KF/70/kEKF0aqywlySBSPEd1n63FfZfiT10prAjfX
MBm/A9dS4ycsv99P3Yey7ILjcP9G/TSc8erYH1KrZuY6t4alNRU9brcceJ6zWNpw
sRTtp2exOHjIC6Lc3iBmgyvmwv40sJg6U1oCxhE24+GVXDtF4fRYA8oQpY/i1veX
BVCASosmXeIIfuPlsmWTwVbo3dCnqUAJxxlVb+0udHt/C9ERckRFI3u+Lx4Hkrkm
bLocx9bsulx7gg==
-----END CERTIFICATE-----
Generated at Wed Oct 22 21:29:46 2025 by rpki-client