Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
File: 2Znl1k5EsXM8YXNzN86CtKaUOkY.mft (raw, json)
Hash identifier: b2+4ssNKut5LWA9cwjdaYJh+Ko6XY4RMpdLoVq1jDnI=
Subject key identifier: FA:C6:DD:48:8F:DC:2C:26:1D:BA:11:4A:AB:AD:8D:9F:40:27:60:18
Authority key identifier: D9:99:E5:D6:4E:44:B1:73:3C:61:73:73:37:CE:82:B4:A6:94:3A:46
Certificate issuer: /CN=d999e5d64e44b1733c61737337ce82b4a6943a46
Certificate serial: 019A7113389B4A2164AE25D0AE01DBDB89E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
Manifest number: 055D
Signing time: Tue 11 Nov 2025 04:01:16 +0000
Manifest this update: Tue 11 Nov 2025 04:01:16 +0000
Manifest next update: Wed 12 Nov 2025 04:01:16 +0000
Files and hashes: 1: 2Znl1k5EsXM8YXNzN86CtKaUOkY.crl (hash: gSYHLPyZkEJWDNYOOVu3Q06QIALipffutnFwFGUMMrg=)
2: xandp5YxydZR7wlTUWsPRookRQc.roa (hash: TvsdUKw2eDJNV/EQUTSOnGCjImCSLoPXA7kEvQkSjo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 04:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:13:38:9b:4a:21:64:ae:25:d0:ae:01:db:db:89:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d999e5d64e44b1733c61737337ce82b4a6943a46
Validity
Not Before: Nov 11 04:01:16 2025 GMT
Not After : Nov 12 04:01:16 2025 GMT
Subject: CN=fac6dd488fdc2c261dba114aabad8d9f40276018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0a:cd:ec:e5:05:fd:03:16:e6:b7:ed:7d:0d:
df:5d:7a:48:40:f7:2b:04:81:0d:02:59:78:4e:56:
03:d1:c6:11:1b:87:7a:f4:fe:1a:f5:0c:4e:64:44:
c3:40:e3:4f:bd:b9:a5:62:12:2f:4a:5a:54:21:68:
0e:ef:f7:1e:8d:5a:ee:ac:ac:77:02:ef:f0:ac:7e:
2c:f1:6a:a0:41:fe:0a:56:b6:0c:ca:11:7f:29:73:
16:15:cf:31:b5:a2:51:ba:e4:a4:d0:08:88:c7:ae:
ec:07:ba:4d:33:80:d0:dd:ab:e2:56:f4:c2:d2:c0:
24:96:3b:14:af:6e:1d:13:06:c8:35:5e:67:59:fd:
75:ab:3f:4e:1b:c2:39:f8:68:c8:a0:d8:95:66:74:
f5:ff:59:c0:a3:68:59:3a:64:30:77:29:ba:01:df:
02:e9:f0:e2:03:dc:ff:4b:92:90:d7:39:9f:d2:f2:
18:e0:04:a4:d8:68:3c:ba:5e:2e:63:03:99:e0:b8:
9f:f2:f8:91:37:4a:22:30:07:37:64:9f:c7:f1:88:
f3:12:41:29:0a:08:1b:3e:1a:47:b3:41:97:85:0d:
d1:71:cf:94:35:9c:d9:d9:2d:ca:4d:f2:0e:91:c6:
f5:5c:e7:25:08:73:92:a4:c1:ca:ad:ae:0f:b5:98:
00:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C6:DD:48:8F:DC:2C:26:1D:BA:11:4A:AB:AD:8D:9F:40:27:60:18
X509v3 Authority Key Identifier:
keyid:D9:99:E5:D6:4E:44:B1:73:3C:61:73:73:37:CE:82:B4:A6:94:3A:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:fe:a7:18:04:f1:b9:1e:46:bc:40:9a:03:c2:a8:f7:ab:ee:
bb:bb:55:ee:ae:aa:cf:a4:32:2b:b2:40:10:e3:41:b9:75:43:
1a:ac:10:1a:cb:cc:eb:c9:30:e6:b8:e9:c4:13:25:06:c8:80:
c7:4e:e9:df:ee:ba:d0:67:91:06:1f:30:59:27:95:2e:8b:17:
76:5b:a1:f7:d8:2b:ed:3d:d7:57:9c:d9:16:59:7c:f4:1a:74:
4d:9a:ef:49:31:fa:0d:ed:65:c4:a2:b5:de:f1:38:5e:46:f1:
49:82:6c:9c:2d:22:7a:63:a9:4d:fa:a7:d7:2e:92:6c:4c:34:
d9:aa:8c:ee:c0:0e:33:43:c3:43:9d:66:ec:0b:3f:8f:09:b3:
72:b2:a8:91:ec:f5:78:62:ee:3a:61:0c:dd:04:8c:ad:79:46:
b1:19:89:18:6d:f0:3d:61:54:50:3e:48:57:03:a9:51:0d:54:
fd:68:04:0b:79:d1:1f:4b:ed:36:0f:45:a7:21:03:fc:99:57:
e0:fe:45:7e:fe:6e:b7:26:18:7d:8c:7d:8f:b8:6e:c7:cf:28:
bb:b4:57:04:8a:ba:a2:6b:13:82:fd:ae:28:71:c6:f7:6e:a4:
b9:b9:d7:b1:33:4e:e9:8b:c1:a5:41:f5:37:49:97:54:73:ac:
b9:19:69:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:41:07 2025 by rpki-client