Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft
File: 2ilr0AMdba2mxzBzYI89EeRFzkQ.mft (raw, json)
Hash identifier: PfuY7Opzk82iCg+JN9h6EXOv6YrZgZcF6cth7zEjwxY=
Subject key identifier: 6F:59:B1:65:9B:65:66:F8:EA:82:FB:AB:C8:42:87:20:B8:CC:4E:D4
Authority key identifier: DA:29:6B:D0:03:1D:6D:AD:A6:C7:30:73:60:8F:3D:11:E4:45:CE:44
Certificate issuer: /CN=da296bd0031d6dada6c73073608f3d11e445ce44
Certificate serial: 019A2478802FF7CEA76B49FBAFA3296EB5FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft
Manifest number: 0539
Signing time: Mon 27 Oct 2025 07:01:07 +0000
Manifest this update: Mon 27 Oct 2025 07:01:07 +0000
Manifest next update: Tue 28 Oct 2025 07:01:07 +0000
Files and hashes: 1: 2ilr0AMdba2mxzBzYI89EeRFzkQ.crl (hash: aKMWC22G5GK7dwAJEzNsTckjynY/gL3X/aAhkcCes20=)
2: xbFh-XL0EOh1euSo-ddC7jaGUKM.roa (hash: 8IT/bBcEgFQE8EaggOanI6nAulFvf6rnXMDUQLI1njI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:78:80:2f:f7:ce:a7:6b:49:fb:af:a3:29:6e:b5:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da296bd0031d6dada6c73073608f3d11e445ce44
Validity
Not Before: Oct 27 07:01:07 2025 GMT
Not After : Oct 28 07:01:07 2025 GMT
Subject: CN=6f59b1659b6566f8ea82fbabc8428720b8cc4ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f6:a8:e4:c9:25:85:c0:35:56:39:02:04:9d:
93:3a:00:85:7a:09:b6:01:4f:ce:ed:82:2a:72:e4:
e4:6b:86:bc:0e:66:d6:55:bf:5f:be:83:5b:6a:e9:
3e:a2:fd:a6:4d:ce:5c:fe:97:a0:9f:56:f8:35:3a:
10:92:d7:f1:8f:e6:df:ce:64:7c:33:0f:89:8e:fa:
74:bb:c7:1b:1c:ca:16:cf:30:78:61:70:10:72:44:
97:a0:1b:d5:2e:9c:10:82:87:1b:6e:8d:1f:95:73:
d2:0b:94:4d:13:e2:60:b6:05:1c:9f:f8:74:c7:a7:
f8:47:b6:5a:67:bd:96:af:08:15:00:c9:ce:e1:73:
a7:0f:49:db:0d:c1:01:a6:f4:f7:c2:29:92:c6:23:
9e:9d:56:0b:fd:4b:cb:0a:b0:06:bc:50:65:71:c3:
93:97:5d:9d:db:b0:84:45:7c:79:be:75:ee:e4:59:
c7:bb:a6:48:48:36:26:10:68:3c:17:e4:22:b9:07:
18:bc:22:62:34:e6:14:14:bc:9f:3a:81:d0:de:f8:
e9:3a:ee:9a:9d:e5:46:a2:57:02:a3:3a:69:94:d1:
8d:2a:26:80:70:66:a7:63:36:ad:45:d2:ff:2d:ff:
b1:e4:b7:5b:a3:a2:c0:58:bb:45:59:f9:73:85:ee:
0a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:59:B1:65:9B:65:66:F8:EA:82:FB:AB:C8:42:87:20:B8:CC:4E:D4
X509v3 Authority Key Identifier:
keyid:DA:29:6B:D0:03:1D:6D:AD:A6:C7:30:73:60:8F:3D:11:E4:45:CE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ilr0AMdba2mxzBzYI89EeRFzkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/1aafa0-0278-4dd6-8807-5726c2b5148d/1/2ilr0AMdba2mxzBzYI89EeRFzkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:c4:2c:7a:ab:8c:ce:50:ac:38:7b:8b:bf:b7:fa:12:e8:14:
95:3d:eb:6c:af:b5:59:56:9c:4f:09:16:38:08:dd:a3:11:2d:
9c:4c:84:4e:8f:60:aa:50:42:4e:29:fc:23:0e:a9:ea:b7:af:
4f:fa:13:ac:9d:22:1b:94:d9:a6:99:c0:86:46:96:96:1b:12:
58:a2:65:33:53:ef:a0:18:ff:a8:c3:4b:81:0c:96:02:41:38:
d5:e4:61:1a:40:dd:d1:91:d2:c7:b1:99:29:81:91:eb:00:fd:
7e:28:25:18:cd:04:67:c5:a5:db:40:15:bb:d7:3f:c7:90:e9:
9a:62:0f:6a:06:12:98:b5:4c:29:82:ac:b2:3b:6f:94:31:95:
f0:49:00:82:7a:d6:b2:41:aa:af:e4:58:2f:db:e6:b0:82:01:
3a:d6:93:63:f1:6d:4a:8c:50:9b:ee:8e:8b:1e:1c:48:77:28:
77:18:1c:e4:c5:6a:04:21:8e:8b:22:7a:7d:84:0a:ae:24:ee:
4a:90:08:a9:8f:3c:00:c9:5b:5f:68:93:7a:b9:c7:e4:ff:7f:
fe:36:ce:09:c4:2d:a5:16:ea:1d:15:4f:a2:e0:0b:4f:36:c6:
f5:3b:07:6a:9c:9c:61:4d:c9:e6:a1:b4:9d:87:fb:dc:16:c0:
c3:6f:d2:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 13:41:50 2025 by rpki-client