Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: DoMfYeo+vN9OjUClosBEnQlI/UBq+crQ/rRMQuo1Nbk=
Subject key identifier: 7B:0B:C6:30:09:0E:6E:22:7E:E8:56:27:0F:B9:8B:02:7C:A3:D7:A2
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 019A21ADA4A87839920016E507523CC0C5D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 1624
Signing time: Sun 26 Oct 2025 18:00:19 +0000
Manifest this update: Sun 26 Oct 2025 18:00:19 +0000
Manifest next update: Mon 27 Oct 2025 18:00:19 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: hWcIBwAko8ERnA6EAjd9UNCmd9/dYld9JAv/uK9LHsM=)
2: 6R0wvkFPscZQ2uww-ZvwnaXh--0.roa (hash: wyiJ7rZP6x6kzeIfld1VjsLp4nIqzGhNhuxTGdTq1Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 18:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:ad:a4:a8:78:39:92:00:16:e5:07:52:3c:c0:c5:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: Oct 26 18:00:19 2025 GMT
Not After : Oct 27 18:00:19 2025 GMT
Subject: CN=7b0bc630090e6e227ee856270fb98b027ca3d7a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5e:3c:f5:22:1b:9d:fe:32:a5:4f:19:96:d7:
36:48:25:72:a2:71:90:3d:23:b5:55:1e:d4:91:84:
8b:23:b3:d3:8c:62:fb:67:20:6d:d9:c9:be:bc:36:
d4:7d:90:f7:5d:1a:fd:f6:7c:d8:97:07:08:15:10:
f8:f7:5b:b1:1b:15:dd:30:d5:83:b2:78:ee:96:88:
9b:ed:2a:41:c4:72:30:ab:10:66:88:f0:98:5e:b5:
70:ba:45:fb:1f:8c:f0:7e:4e:7b:e5:5f:1c:02:dd:
2b:7c:87:d9:3c:ad:23:8f:5e:70:3c:ed:78:71:e9:
08:fd:98:3e:d1:02:d6:41:c8:71:45:52:a6:ea:2f:
3b:21:df:91:d6:69:11:96:9e:d7:da:38:71:89:d2:
75:1c:ce:8a:b7:6b:7b:04:1d:ba:b0:47:35:24:2b:
04:87:12:30:90:f4:fa:56:65:ab:1c:09:b4:16:3e:
e3:5b:ca:54:e5:c7:b2:64:ac:b8:2c:bb:a9:f1:bb:
53:b6:fb:ce:53:cc:92:bc:11:fd:b2:73:f4:f7:a4:
fb:80:05:a7:5e:c9:46:8c:c9:03:3f:e1:81:30:50:
9f:84:5c:08:0f:3f:43:2c:82:4a:73:1b:68:57:a9:
5a:81:13:00:4a:37:41:9a:9a:05:b2:17:25:10:66:
58:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:0B:C6:30:09:0E:6E:22:7E:E8:56:27:0F:B9:8B:02:7C:A3:D7:A2
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:d1:01:05:14:f4:4c:1f:9d:3b:68:74:8a:89:c2:9b:aa:f1:
52:e8:e0:3b:fd:df:a3:a7:69:1d:33:73:c2:a7:de:87:ff:0d:
7e:0e:0f:d4:ca:fe:b3:8a:ab:9f:83:9a:54:e4:6c:e6:76:6b:
64:9b:c9:c9:21:77:5a:c7:98:fb:e3:5f:21:6d:e3:f1:5e:c7:
f3:43:8a:c0:92:1e:52:9d:18:cf:2e:f6:36:5c:38:1d:ae:1b:
ce:ca:74:23:d8:a9:c3:74:53:ee:e6:00:0c:44:b5:9b:09:71:
95:f0:4a:9e:d2:2a:04:64:11:b8:66:e5:d6:68:4b:85:4e:6f:
92:fd:89:6a:af:b0:0b:f7:63:54:63:c0:ea:d3:0e:c9:9a:d8:
53:e8:99:73:47:08:b0:a4:4b:33:46:c6:13:d1:33:45:15:7b:
a2:9e:2f:e0:c1:3a:66:24:5f:93:26:c3:99:5b:63:e1:68:1b:
bd:1e:f3:3f:16:5d:af:26:3b:09:3d:44:df:d0:b3:0d:54:ff:
d3:e7:18:06:ff:11:50:db:6e:40:e9:27:74:2b:98:81:c4:09:
1e:77:85:1b:65:55:7d:b3:53:7a:0b:36:a9:da:53:21:b5:ec:
27:54:06:60:de:69:29:7a:ba:60:79:fb:29:78:e5:3f:d2:cc:
85:8b:98:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:42:31 2025 by rpki-client