Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
File: 2qM7UIN5nEnPntwAhit8nCGMZhM.mft (raw, json)
Hash identifier: vD7tjF/q3K/sX4IY1WwMqcuUT+dR+Vun8wkeNqkSPAM=
Subject key identifier: 66:3B:E7:D9:9A:1C:EC:10:85:5A:89:69:E0:2C:93:9C:E9:88:50:C6
Authority key identifier: DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
Certificate issuer: /CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Certificate serial: 019A26D3D329FF10F6C1E29C68AC7FAB8A61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
Manifest number: 0481
Signing time: Mon 27 Oct 2025 18:00:07 +0000
Manifest this update: Mon 27 Oct 2025 18:00:07 +0000
Manifest next update: Tue 28 Oct 2025 18:00:07 +0000
Files and hashes: 1: 2qM7UIN5nEnPntwAhit8nCGMZhM.crl (hash: VDDaSNMG7iY1jwSqgjLgfc7IhHJtPnnCqHQX4bBnR5A=)
2: unxQV4Al2mLpnwI70qRpIDmTnOs.roa (hash: nWcMiPSfSb9yfnTzVXtb4VL1rzMEuoLvPQwzaYNt8PI=)
3: vQ_BwqF-3Ov1ig9gZpa4J3HSW9I.roa (hash: Fg81qYF19AaSbeLDfj9BfeZ+UCo1V2TWp+mQX1SfkJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:d3:d3:29:ff:10:f6:c1:e2:9c:68:ac:7f:ab:8a:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa33b5083799c49cf9edc00862b7c9c218c6613
Validity
Not Before: Oct 27 18:00:07 2025 GMT
Not After : Oct 28 18:00:07 2025 GMT
Subject: CN=663be7d99a1cec10855a8969e02c939ce98850c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:43:d0:91:15:9a:74:42:20:0a:3a:c4:57:a8:
99:e2:09:89:dd:90:c9:fd:f0:9a:b8:fb:2f:40:f0:
27:b0:e5:d2:e3:61:e0:fd:2e:49:08:21:88:78:84:
b6:50:9b:17:c0:0f:12:ec:91:ac:7e:cd:52:08:c6:
df:87:ce:f4:59:41:0c:8c:e6:15:40:54:f4:ee:5d:
c9:07:46:03:2a:b3:8c:2e:5f:81:ec:e0:76:e4:fb:
20:d0:fb:eb:4c:90:11:74:97:e8:e9:c8:ab:d2:63:
53:87:dc:66:59:f2:bf:4c:cc:6e:30:fa:3a:f0:c4:
f2:3a:85:fd:c4:e5:a8:01:f4:73:48:0e:13:e3:60:
a7:d4:3a:1e:ef:f0:ac:44:54:7f:85:b0:b3:e8:70:
22:7a:22:a3:92:3d:5a:09:cb:bb:e7:a2:c1:80:e1:
4a:57:5a:5b:ba:9e:a0:f3:4f:aa:b8:38:05:d1:9f:
2a:50:65:27:ca:6b:5a:43:01:81:84:6a:29:4f:43:
24:de:dd:a8:f4:8d:97:8a:65:68:f0:84:a9:09:6e:
c1:f3:76:8a:a4:1e:e8:37:64:7b:a6:52:61:d8:ac:
ea:52:08:48:f1:23:d2:85:df:0c:8d:b9:0d:61:d2:
11:e8:c5:1f:2f:8b:ca:00:bc:92:83:64:f5:bb:98:
74:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:3B:E7:D9:9A:1C:EC:10:85:5A:89:69:E0:2C:93:9C:E9:88:50:C6
X509v3 Authority Key Identifier:
keyid:DA:A3:3B:50:83:79:9C:49:CF:9E:DC:00:86:2B:7C:9C:21:8C:66:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qM7UIN5nEnPntwAhit8nCGMZhM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/cf318e-8951-4e1e-bbe3-16f43dba2abc/1/2qM7UIN5nEnPntwAhit8nCGMZhM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:4d:36:1b:80:e6:f8:c1:3c:9c:95:e2:6d:d2:34:03:67:3b:
ae:1c:72:a6:63:d3:f5:a1:4d:23:09:dd:0d:41:5b:c2:37:6d:
eb:57:d4:29:eb:a4:61:aa:07:bd:d8:b4:55:2b:11:61:ec:be:
60:f7:cd:08:cd:0b:a5:36:7c:b1:20:a2:27:39:35:06:67:01:
03:43:3f:90:3f:69:9f:e6:cd:a4:07:fc:bb:99:99:89:5c:ed:
78:22:23:ee:e5:6e:4a:22:67:74:68:1b:a9:90:ec:6c:dc:f3:
1c:d2:ca:57:9f:98:52:72:0d:71:30:3f:90:30:81:de:c0:ec:
cc:c0:d2:7e:4d:d6:6d:4a:ac:f1:d3:a6:c9:3d:e5:f7:40:b3:
6b:24:1c:a4:6b:ee:1c:0f:fe:d2:b8:0e:5e:08:b9:05:62:8e:
29:f8:74:51:97:54:b4:d9:a0:b5:33:33:d7:a9:d8:85:ac:bd:
9c:e4:1b:3f:01:9a:e5:e9:60:61:4a:fe:75:e6:6f:27:5d:75:
44:f3:e9:5f:8c:73:d7:c0:b0:9f:68:b2:36:9a:98:8c:30:7d:
7c:17:8d:23:fc:89:bd:15:a1:94:27:00:c4:bb:5b:48:f1:8a:
81:a2:50:4a:10:a9:f6:89:a5:61:62:c9:d4:8f:b7:65:9d:7a:
93:06:ed:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 20:36:52 2025 by rpki-client