Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
File: 2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft (raw, json)
Hash identifier: eJ/YHNPLEcBoSVyuTuI+eDO1d2BqfuAN+fPG5/gwUvo=
Subject key identifier: 37:5A:95:47:F6:3B:67:67:CF:7F:28:7A:A7:3A:BF:0B:C9:37:1F:43
Authority key identifier: DA:F0:A3:9C:FA:DF:91:0F:6B:13:2A:D2:28:E6:06:56:18:87:A0:6C
Certificate issuer: /CN=daf0a39cfadf910f6b132ad228e606561887a06c
Certificate serial: 019A725CD53EDC7EA0F5DE9AA6ECC08A4053
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
Manifest number: 1726
Signing time: Tue 11 Nov 2025 10:01:17 +0000
Manifest this update: Tue 11 Nov 2025 10:01:17 +0000
Manifest next update: Wed 12 Nov 2025 10:01:17 +0000
Files and hashes: 1: 2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl (hash: RqUix/Wj4HMD/ZlqNxvosiKfBVjVRQsB8iCEIsB+U6s=)
2: bdqrLURz5G694Fm80xmKAo0IogU.roa (hash: hG0r7jG1QmA/uFg4gCQdR2alotLJA0SQybpT8Ey91vY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:5c:d5:3e:dc:7e:a0:f5:de:9a:a6:ec:c0:8a:40:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daf0a39cfadf910f6b132ad228e606561887a06c
Validity
Not Before: Nov 11 10:01:17 2025 GMT
Not After : Nov 12 10:01:17 2025 GMT
Subject: CN=375a9547f63b6767cf7f287aa73abf0bc9371f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:86:8c:7c:a3:de:7c:76:88:e7:6c:98:1a:01:
9a:65:4b:11:67:6f:22:a5:f8:d5:8b:43:7e:4a:4c:
23:19:ba:76:41:3a:32:ca:bc:2d:02:e5:2b:16:96:
cc:cc:73:2e:8e:d8:d8:8c:e7:2b:06:ab:d6:07:23:
fe:12:c5:a9:88:8b:32:f8:70:f9:08:7b:3a:40:37:
e1:b7:a5:b7:6b:a1:14:e1:7e:6e:8a:d3:4d:2e:54:
5b:c2:4d:d7:2b:7c:6c:96:58:f0:98:71:67:06:a4:
5e:9d:71:d8:0e:2d:7d:c4:fb:9b:26:ed:74:ca:f6:
a6:47:8b:d9:4c:71:45:17:fb:bf:1a:a4:7c:16:94:
52:44:bc:14:9e:d3:f6:b1:76:b4:04:31:92:81:ec:
6f:dc:4f:0a:cc:07:2b:a0:d2:d6:5d:b8:7d:30:bc:
5c:e1:cd:62:09:84:5f:13:9c:23:32:01:b8:a1:72:
7c:23:57:3b:a9:08:41:43:1a:73:13:43:3e:b0:c3:
ba:89:56:69:d3:2e:3c:4e:25:6c:0f:be:66:1b:db:
fa:54:a4:ba:09:ee:4e:6c:dc:8e:fd:13:2a:5f:12:
cc:c1:99:96:10:16:34:64:1b:8a:ab:25:43:db:34:
00:c3:fc:f6:e4:18:6b:da:3b:4b:19:9a:6c:09:67:
52:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:5A:95:47:F6:3B:67:67:CF:7F:28:7A:A7:3A:BF:0B:C9:37:1F:43
X509v3 Authority Key Identifier:
keyid:DA:F0:A3:9C:FA:DF:91:0F:6B:13:2A:D2:28:E6:06:56:18:87:A0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/ffa457-34c8-48c2-9ebc-92b207f641b1/1/2vCjnPrfkQ9rEyrSKOYGVhiHoGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:bf:72:9a:c3:1e:ea:30:28:35:08:73:71:f0:f0:da:d4:d7:
4a:7f:ef:11:94:ec:4a:5c:25:4b:fd:57:f6:54:36:1d:3d:1a:
d1:b7:81:64:43:20:d8:5c:90:2e:6c:3f:63:12:b6:59:47:13:
0a:35:87:e5:c7:fd:1e:e3:f6:a6:63:53:19:bf:77:e1:23:00:
46:76:6e:6f:1c:6a:1f:37:95:15:6f:50:ab:2d:ba:e7:4b:83:
34:92:e2:e3:4a:f6:2e:51:25:c3:6a:0a:d1:86:24:57:5d:d4:
62:bd:e8:d5:e1:0c:90:5e:73:8d:d6:92:3d:6e:88:15:77:ec:
76:2d:a7:0a:2a:10:f3:a8:de:d0:9a:a7:87:ab:52:fe:f2:f6:
2a:25:45:bd:e6:70:27:ec:7d:9c:e3:79:a9:75:8a:b6:c4:f1:
26:d6:db:c9:9f:28:b6:eb:37:ce:3d:c5:85:33:d8:18:d5:5d:
f8:22:7f:7a:fd:2d:3e:7c:e4:e8:22:aa:cb:ac:1d:5b:81:b6:
fb:ce:63:10:0a:dd:46:bb:c5:01:6c:60:f6:8b:14:0c:63:22:
12:da:0e:cf:b1:e6:1d:17:1f:ea:6c:37:d2:b4:3c:08:d3:53:
f2:7c:fd:58:99:b8:6b:cb:44:10:a6:17:e8:7d:3c:11:4a:6a:
79:a4:7b:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:28:15 2025 by rpki-client