Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
File: 2PcA7rBSdLMdwdrzDNfIExCrRS0.mft (raw, json)
Hash identifier: CEEulHV0Xo77A19JEyIMO6ZSG9WSY8M2PZyRql9oWRI=
Subject key identifier: F2:DA:BF:B3:C0:0F:DD:86:22:B3:0E:25:B4:69:13:62:2B:83:EA:E4
Authority key identifier: D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D
Certificate issuer: /CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d
Certificate serial: 019A71B954082721CAFD23128EC7959F2279
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
Manifest number: 095B
Signing time: Tue 11 Nov 2025 07:02:42 +0000
Manifest this update: Tue 11 Nov 2025 07:02:42 +0000
Manifest next update: Wed 12 Nov 2025 07:02:42 +0000
Files and hashes: 1: 2PcA7rBSdLMdwdrzDNfIExCrRS0.crl (hash: hha9GUMj4FQaX9uRkZpTELDb0E1dZGG5k0mbl0022DQ=)
2: xZeFO5Zwl5xEF1LyaSp03R5_7jg.roa (hash: IWeEq50Ry3wHX8kf3jXxRipWlWHUzhkegAPH2nDXTxI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:54:08:27:21:ca:fd:23:12:8e:c7:95:9f:22:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f700eeb05274b31dc1daf30cd7c81310ab452d
Validity
Not Before: Nov 11 07:02:42 2025 GMT
Not After : Nov 12 07:02:42 2025 GMT
Subject: CN=f2dabfb3c00fdd8622b30e25b46913622b83eae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:bf:30:eb:d3:49:d3:47:d8:9c:08:4d:7e:29:
38:cc:5b:00:9c:79:af:e1:6d:53:e3:a0:94:9c:1a:
24:6b:97:b4:23:3e:91:88:7d:19:e1:ce:f3:45:a1:
0a:22:b2:64:81:da:8e:d1:e5:91:97:e7:8d:98:67:
f8:90:ce:c7:97:22:db:78:60:24:1c:c6:b3:e5:2e:
d9:61:20:eb:7b:60:2c:7f:e2:1a:54:74:2e:61:80:
32:71:4f:6f:7f:aa:e1:fb:5b:24:52:13:ce:b1:4d:
7e:ac:4f:ff:77:f0:2e:2d:9d:f3:54:24:0e:ca:59:
36:ee:29:da:91:a7:b0:1c:63:ad:11:6e:ac:53:9a:
9d:a8:ba:ca:f2:7e:fe:53:71:e5:d4:0d:b5:d2:20:
21:0f:5f:b5:a5:14:19:a6:73:6a:f1:bb:ec:71:3d:
b7:0b:1c:4b:0c:41:30:46:4b:5e:1b:ac:93:10:48:
89:96:5f:90:d4:8e:2d:6d:75:03:ea:8f:27:06:1a:
6e:1b:82:b8:a7:0b:d3:a6:10:65:3c:2b:55:5a:ad:
2f:39:5a:2a:5b:14:53:21:c7:67:dd:b5:5d:4f:1f:
d8:eb:be:21:e5:cd:a5:d0:c5:6c:61:d2:23:0d:a6:
f6:f1:b9:64:01:95:08:d3:30:e8:24:45:53:f1:9a:
7d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:DA:BF:B3:C0:0F:DD:86:22:B3:0E:25:B4:69:13:62:2B:83:EA:E4
X509v3 Authority Key Identifier:
keyid:D8:F7:00:EE:B0:52:74:B3:1D:C1:DA:F3:0C:D7:C8:13:10:AB:45:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PcA7rBSdLMdwdrzDNfIExCrRS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b08a3a-d6b9-4a5d-9d37-371b9074887f/1/2PcA7rBSdLMdwdrzDNfIExCrRS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:1c:b2:b8:92:d2:9e:b9:a9:8e:9a:34:a1:aa:77:25:02:0c:
a5:25:46:ca:99:1b:95:b5:fc:b4:f1:94:ba:fe:86:0d:45:f2:
bb:17:af:38:46:d4:9e:89:33:23:c8:fb:4f:3d:ad:0f:ea:d5:
7d:01:9e:87:41:ab:78:df:1f:1b:a4:bc:75:b8:ef:a2:79:d5:
d5:6f:31:2d:16:55:24:97:54:a3:a6:97:3f:81:5a:9d:f8:2c:
ca:6a:07:29:a5:a0:73:51:15:6c:d9:7c:b5:86:d3:4b:23:fc:
e7:59:19:b6:7e:70:10:04:b4:ef:48:65:34:61:bc:70:1d:ad:
9d:5c:5d:13:59:4b:b1:78:8f:78:81:00:b3:d5:6f:6a:49:0b:
e7:a2:9b:86:05:2d:db:5a:11:b3:18:76:9c:60:fc:c6:3d:51:
15:3c:5a:b1:2b:83:ea:f7:05:02:3d:69:39:42:30:88:78:a4:
98:88:5e:71:fa:ca:65:39:fb:92:79:66:c3:9a:7f:d8:1b:16:
70:c8:a0:07:d9:f6:b7:f8:0e:1d:e2:91:aa:87:cb:46:fb:8b:
d1:ae:df:66:cd:da:79:04:11:16:0b:b5:e2:d7:7e:4b:4c:30:
58:ad:0d:2d:9d:e5:d3:53:a7:a8:ed:43:91:a4:b1:a2:50:49:
6c:df:b6:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuVQIJyHK/SMSjseVnyJ5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZjcwMGVlYjA1Mjc0YjMxZGMxZGFmMzBjZDdjODEzMTBh
YjQ1MmQwHhcNMjUxMTExMDcwMjQyWhcNMjUxMTEyMDcwMjQyWjAzMTEwLwYDVQQD
EyhmMmRhYmZiM2MwMGZkZDg2MjJiMzBlMjViNDY5MTM2MjJiODNlYWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8L8w69NJ00fYnAhNfik4zFsAnHmv
4W1T46CUnBoka5e0Iz6RiH0Z4c7zRaEKIrJkgdqO0eWRl+eNmGf4kM7HlyLbeGAk
HMaz5S7ZYSDre2Asf+IaVHQuYYAycU9vf6rh+1skUhPOsU1+rE//d/AuLZ3zVCQO
ylk27inakaewHGOtEW6sU5qdqLrK8n7+U3Hl1A210iAhD1+1pRQZpnNq8bvscT23
CxxLDEEwRkteG6yTEEiJll+Q1I4tbXUD6o8nBhpuG4K4pwvTphBlPCtVWq0vOVoq
WxRTIcdn3bVdTx/Y674h5c2l0MVsYdIjDab28blkAZUI0zDoJEVT8Zp9bwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPLav7PAD92GIrMOJbRpE2Irg+rkMB8GA1UdIwQY
MBaAFNj3AO6wUnSzHcHa8wzXyBMQq0UtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlBjQTdyQlNkTE1kd2RyekROZklFeENyUlMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9iMDhhM2EtZDZiOS00YTVkLTlkMzct
MzcxYjkwNzQ4ODdmLzEvMlBjQTdyQlNkTE1kd2RyekROZklFeENyUlMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS9iMDhhM2EtZDZiOS00YTVkLTlkMzctMzcxYjkwNzQ4ODdm
LzEvMlBjQTdyQlNkTE1kd2RyekROZklFeENyUlMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqxyyuJLS
nrmpjpo0oap3JQIMpSVGypkblbX8tPGUuv6GDUXyuxevOEbUnokzI8j7Tz2tD+rV
fQGeh0GreN8fG6S8dbjvonnV1W8xLRZVJJdUo6aXP4FanfgsymoHKaWgc1EVbNl8
tYbTSyP851kZtn5wEAS070hlNGG8cB2tnVxdE1lLsXiPeIEAs9VvakkL56KbhgUt
21oRsxh2nGD8xj1RFTxasSuD6vcFAj1pOUIwiHikmIhecfrKZTn7knlmw5p/2BsW
cMigB9n2t/gOHeKRqofLRvuL0a7fZs3aeQQRFgu14td+S0wwWK0NLZ3l01OnqO1D
kaSxolBJbN+2vA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 16:55:51 2025 by rpki-client