Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
File: 2wy7NfYw1Aytd1B_2r03_e3BIQM.mft (raw, json)
Hash identifier: T43XQoiAPGYYHlvsweekQ+cKt+anMO4T4vYzOGW0e64=
Subject key identifier: 54:1C:7F:2A:88:16:9D:BC:EA:B1:04:0A:2C:E1:43:CD:6C:FB:70:A2
Authority key identifier: DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
Certificate issuer: /CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Certificate serial: 019A71B81CDD6C13F4D38EB7555F7BD0C66F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
Manifest number: 01D3
Signing time: Tue 11 Nov 2025 07:01:22 +0000
Manifest this update: Tue 11 Nov 2025 07:01:22 +0000
Manifest next update: Wed 12 Nov 2025 07:01:22 +0000
Files and hashes: 1: 2wy7NfYw1Aytd1B_2r03_e3BIQM.crl (hash: ARX0p0bmlLtyQdNoiB9XUo0+pegzsxeRWximQ2larMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:1c:dd:6c:13:f4:d3:8e:b7:55:5f:7b:d0:c6:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db0cbb35f630d40cad77507fdabd37fdedc12103
Validity
Not Before: Nov 11 07:01:22 2025 GMT
Not After : Nov 12 07:01:22 2025 GMT
Subject: CN=541c7f2a88169dbceab1040a2ce143cd6cfb70a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d1:e9:1b:5b:0b:ac:b7:27:9d:f5:8b:dc:41:
ae:05:ab:49:9c:5b:cf:26:c2:2a:ed:4a:fe:9d:e2:
ad:c8:04:02:4f:57:0f:50:15:5d:cd:52:6a:0e:ec:
1c:d0:24:88:80:78:59:1d:02:36:1a:1e:c7:f2:94:
b7:ac:80:db:04:6c:00:19:21:06:5c:f5:3e:ff:a5:
e8:b3:ef:74:4c:85:5e:55:a0:d8:f9:c0:65:d7:bb:
89:2e:6d:c0:2b:76:5d:85:f3:19:0a:d2:30:c6:99:
6c:ef:af:cf:11:a8:25:03:9a:5c:fd:1a:9b:e9:8a:
02:74:32:b0:3a:41:4e:e8:bd:c7:31:b0:2b:81:50:
bf:51:b4:f9:37:e8:c9:f8:47:cc:8a:99:ea:d6:40:
64:83:74:d1:42:a2:53:d3:29:81:b7:8f:b9:86:11:
1a:57:61:08:33:92:e9:60:de:04:29:4b:9e:08:90:
c6:c5:16:f6:44:7d:1c:fc:c8:8b:80:01:fb:3d:17:
81:09:d7:40:7c:ee:aa:d3:aa:ad:a9:16:d9:7d:dd:
31:03:fc:88:25:91:2b:87:79:a8:d8:be:94:22:e4:
bb:4c:60:d3:04:ef:0a:d4:46:c6:3b:85:f5:19:da:
be:e1:92:f9:f5:6b:49:ce:7b:2a:72:02:b2:da:9b:
ca:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1C:7F:2A:88:16:9D:BC:EA:B1:04:0A:2C:E1:43:CD:6C:FB:70:A2
X509v3 Authority Key Identifier:
keyid:DB:0C:BB:35:F6:30:D4:0C:AD:77:50:7F:DA:BD:37:FD:ED:C1:21:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2wy7NfYw1Aytd1B_2r03_e3BIQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/414e43-02e1-474c-86b4-2c8e0b497380/1/2wy7NfYw1Aytd1B_2r03_e3BIQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:a5:e6:3a:4d:53:b2:07:97:f0:85:8f:3b:ec:b4:19:97:15:
66:5e:3e:fd:cc:b0:ab:33:2d:b0:f5:b5:bc:b3:23:0a:81:14:
46:af:61:c7:98:24:d7:08:c9:b2:d0:03:5f:14:78:02:8f:82:
54:94:05:06:ab:76:fc:e8:ae:bb:82:b6:f7:4f:3e:1f:93:6f:
66:5f:a3:10:fe:41:8a:25:3f:27:eb:66:9d:f9:cf:cc:b4:51:
bb:e0:7f:09:f4:a1:f1:2b:b6:1e:1d:4a:e8:9e:91:ba:e5:da:
18:41:b4:9a:6f:27:af:8a:e0:6e:65:70:9e:72:b8:4f:ee:42:
b0:21:fe:5f:3b:b4:52:70:8e:1a:09:27:c7:d3:00:44:57:6b:
5e:a2:1d:fe:e0:83:06:2c:86:91:6a:40:2a:0f:f7:b3:72:8e:
a3:a2:ef:ba:85:e5:18:0b:e0:2b:5d:dc:9c:d5:d0:dc:93:08:
c8:c1:4b:96:27:9f:05:a8:e3:11:68:71:69:7a:c9:83:4b:be:
10:76:61:04:bc:aa:af:e8:ce:3f:21:69:42:7e:cc:f2:de:3e:
40:82:4a:e7:ef:de:1d:fa:cd:13:66:c2:b8:fa:90:d6:fe:31:
d4:c5:78:8f:7c:6b:20:44:da:c1:3d:3e:d0:e1:48:21:72:0e:
59:3e:82:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuBzdbBP00463VV970MZvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiMGNiYjM1ZjYzMGQ0MGNhZDc3NTA3ZmRhYmQzN2ZkZWRj
MTIxMDMwHhcNMjUxMTExMDcwMTIyWhcNMjUxMTEyMDcwMTIyWjAzMTEwLwYDVQQD
Eyg1NDFjN2YyYTg4MTY5ZGJjZWFiMTA0MGEyY2UxNDNjZDZjZmI3MGEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAztHpG1sLrLcnnfWL3EGuBatJnFvP
JsIq7Ur+neKtyAQCT1cPUBVdzVJqDuwc0CSIgHhZHQI2Gh7H8pS3rIDbBGwAGSEG
XPU+/6Xos+90TIVeVaDY+cBl17uJLm3AK3ZdhfMZCtIwxpls76/PEaglA5pc/Rqb
6YoCdDKwOkFO6L3HMbArgVC/UbT5N+jJ+EfMipnq1kBkg3TRQqJT0ymBt4+5hhEa
V2EIM5LpYN4EKUueCJDGxRb2RH0c/MiLgAH7PReBCddAfO6q06qtqRbZfd0xA/yI
JZErh3mo2L6UIuS7TGDTBO8K1EbGO4X1Gdq+4ZL59WtJznsqcgKy2pvKIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFQcfyqIFp286rEECizhQ81s+3CiMB8GA1UdIwQY
MBaAFNsMuzX2MNQMrXdQf9q9N/3twSEDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnd5N05mWXcxQXl0ZDFCXzJyMDNfZTNCSVFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy80MTRlNDMtMDJlMS00NzRjLTg2YjQt
MmM4ZTBiNDk3MzgwLzEvMnd5N05mWXcxQXl0ZDFCXzJyMDNfZTNCSVFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy80MTRlNDMtMDJlMS00NzRjLTg2YjQtMmM4ZTBiNDk3Mzgw
LzEvMnd5N05mWXcxQXl0ZDFCXzJyMDNfZTNCSVFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMqXmOk1T
sgeX8IWPO+y0GZcVZl4+/cywqzMtsPW1vLMjCoEURq9hx5gk1wjJstADXxR4Ao+C
VJQFBqt2/Oiuu4K2908+H5NvZl+jEP5BiiU/J+tmnfnPzLRRu+B/CfSh8Su2Hh1K
6J6RuuXaGEG0mm8nr4rgbmVwnnK4T+5CsCH+Xzu0UnCOGgknx9MARFdrXqId/uCD
BiyGkWpAKg/3s3KOo6LvuoXlGAvgK13cnNXQ3JMIyMFLliefBajjEWhxaXrJg0u+
EHZhBLyqr+jOPyFpQn7M8t4+QIJK5+/eHfrNE2bCuPqQ1v4x1MV4j3xrIETawT0+
0OFIIXIOWT6C5g==
-----END CERTIFICATE-----
Generated at Tue Nov 11 17:07:27 2025 by rpki-client