Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
File: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft (raw, json)
Hash identifier: HOZEbi0KQdvnBzw3MI6odbwEG0t4zIz7IKwVgMoV4Fw=
Subject key identifier: F2:7D:CA:89:9B:42:B5:88:2D:33:1C:31:37:37:23:9F:FE:D9:39:08
Authority key identifier: D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09
Certificate issuer: /CN=d90d2681514aefee9d3c86e1eae35736c84d1c09
Certificate serial: 019953417C4EBCEC2A73BDA0C480051BFD1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
Manifest number: 168D
Signing time: Tue 16 Sep 2025 16:00:24 +0000
Manifest this update: Tue 16 Sep 2025 16:00:24 +0000
Manifest next update: Wed 17 Sep 2025 16:00:24 +0000
Files and hashes: 1: 2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl (hash: nff20wGwYs7pY0COsdFAW9LuSXIUqKhFyRWhTAxq+6U=)
2: Y1iEUL6HkZgDZU0_OFEdoFw8lAQ.roa (hash: CDvGigjNlLt/aSYIESg4jn5aQHhCGPQhN6LUC2qBNmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Sep 2025 16:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:53:41:7c:4e:bc:ec:2a:73:bd:a0:c4:80:05:1b:fd:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90d2681514aefee9d3c86e1eae35736c84d1c09
Validity
Not Before: Sep 16 16:00:24 2025 GMT
Not After : Sep 17 16:00:24 2025 GMT
Subject: CN=f27dca899b42b5882d331c313737239ffed93908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:26:f1:a6:ae:85:98:14:8f:9f:37:1f:57:61:
cc:a7:45:9d:0f:4e:fe:97:2a:0e:6c:a7:a7:82:55:
8f:c9:ca:37:24:0b:14:0e:29:ac:cb:a1:ab:9e:ae:
10:4a:09:c7:60:3b:9b:21:d9:5c:5a:c0:95:39:c3:
48:60:f8:8b:38:14:e5:34:7a:eb:ee:15:48:21:6c:
84:48:7f:4d:69:73:b9:b9:f6:6a:e2:72:55:bf:35:
eb:2f:78:d7:b3:92:d8:36:64:a6:6e:59:c0:13:ac:
ab:24:18:a5:21:cc:b0:d2:dd:ce:3b:ce:97:82:12:
9a:ba:13:9b:ae:dc:0d:0c:94:0f:72:a2:a6:86:40:
57:0b:53:c4:48:ad:79:b1:ab:c4:d1:1f:d3:b7:eb:
7f:fa:33:b0:b7:e9:9f:08:a7:f0:4d:0d:9c:d8:ce:
fd:33:91:2d:3b:69:fb:ec:b8:5d:a7:fd:26:c6:1d:
16:70:1e:13:4c:af:66:74:25:9b:a4:18:3c:51:40:
47:fc:f7:bd:20:26:dd:b7:d1:15:e7:6b:72:56:c2:
d1:0b:83:16:a5:a7:39:fb:0b:e1:99:02:9d:de:f6:
fb:f1:52:f7:db:d4:65:6c:99:ad:ff:2b:bf:9b:9e:
d9:4f:8d:93:cb:5b:31:34:eb:da:ad:6c:05:6f:81:
bb:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:7D:CA:89:9B:42:B5:88:2D:33:1C:31:37:37:23:9F:FE:D9:39:08
X509v3 Authority Key Identifier:
keyid:D9:0D:26:81:51:4A:EF:EE:9D:3C:86:E1:EA:E3:57:36:C8:4D:1C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Q0mgVFK7-6dPIbh6uNXNshNHAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e0d956-7b87-4edd-b944-1d0f29b4b97f/1/2Q0mgVFK7-6dPIbh6uNXNshNHAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:c1:2d:e3:8b:00:78:32:cb:89:51:bd:2a:54:5a:e0:7c:b0:
5d:b3:1b:46:2a:69:40:68:9f:5e:51:e0:b2:aa:08:62:f6:c0:
37:08:44:50:17:d4:55:38:c3:a5:9e:2f:e1:f6:71:a1:3c:97:
f5:0e:dc:23:76:60:d3:d6:4b:fa:5e:53:5d:0d:93:83:e8:f0:
6d:03:5c:c7:27:76:5f:89:d5:02:27:8e:10:5b:65:66:5d:a9:
4d:c1:72:98:13:a1:99:7a:40:84:1a:3a:47:b0:1e:cd:38:f0:
f3:dc:88:d4:58:20:6f:5c:62:14:79:da:93:ac:15:c2:e0:2f:
3e:cf:9e:45:fa:18:50:b1:b7:9d:92:17:df:fe:7b:07:f3:e3:
54:3a:20:05:22:68:d8:a6:f3:90:25:2e:a0:c3:91:d3:bb:f9:
8d:56:3b:d5:a8:9e:a1:95:15:b1:4c:c1:69:93:15:c0:69:d1:
cd:86:64:76:07:af:e9:f2:8b:27:25:cf:b5:38:55:a4:b8:4e:
6e:b5:6a:66:99:e6:54:7d:b3:9e:21:ef:5b:40:a4:81:a6:44:
d2:33:e5:4a:ac:8b:f5:25:f1:32:77:e5:fa:d3:3b:97:b6:74:
c5:74:49:8c:8c:17:c8:47:de:9f:dc:8f:3a:08:b6:94:9a:00:
9f:4c:50:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 23:33:04 2025 by rpki-client