Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
File: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft (raw, json)
Hash identifier: ZOO9ylWg0vdAdBFQRxSKy+iQcPoaDOCOe3ssBheaVRc=
Subject key identifier: 15:9F:69:70:3B:0A:B0:39:8D:FB:AE:E3:A2:10:06:46:B2:11:B7:3B
Authority key identifier: D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
Certificate issuer: /CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Certificate serial: 019A55D203F8823E640C63125F4F9D8C2003
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
Manifest number: 0E03
Signing time: Wed 05 Nov 2025 21:00:18 +0000
Manifest this update: Wed 05 Nov 2025 21:00:18 +0000
Manifest next update: Thu 06 Nov 2025 21:00:18 +0000
Files and hashes: 1: 2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl (hash: 9cpY5tiJyHQbvIifx8EvFxkThObiQR4zLxbxEmJtIAk=)
2: wUSVu8lDNfoUWdaRO2jsDgRSmsg.roa (hash: A2CVwSparFGjp8/uMP7BcSnzpGUx0FpocYCZqqW30C8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:55:d2:03:f8:82:3e:64:0c:63:12:5f:4f:9d:8c:20:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8320bd4ef858fd62bb2485d08b0a86920e911c1
Validity
Not Before: Nov 5 21:00:18 2025 GMT
Not After : Nov 6 21:00:18 2025 GMT
Subject: CN=159f69703b0ab0398dfbaee3a2100646b211b73b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:38:35:bc:89:47:14:0c:8a:09:db:d4:17:62:
ec:f2:08:bf:11:44:10:fe:5a:f5:7c:df:03:77:ed:
7c:f3:6c:0c:2d:70:01:50:e8:0b:f6:ce:33:01:57:
6f:35:e0:a9:23:9b:9c:ec:37:92:b2:c7:0b:f1:d9:
71:55:8c:8f:8c:43:b2:cc:c4:ec:bb:cd:1d:35:66:
de:8c:b9:29:31:b5:81:b2:2f:0b:fa:97:b7:1e:e8:
d0:d1:04:a2:aa:0d:90:e7:19:bf:4c:70:61:ad:b9:
a5:48:39:28:97:2e:b2:a8:aa:57:7a:4c:6f:78:0b:
35:52:f3:3b:7c:35:19:db:65:97:8f:e5:c1:fb:0d:
1f:c9:e8:47:62:7d:f1:2e:29:e3:e8:23:5c:69:11:
4c:aa:75:0b:0e:e3:7a:b7:ba:1c:e3:b6:bd:07:ab:
11:05:bf:41:ee:e6:91:cf:6f:4f:c2:b4:b5:59:33:
07:c0:20:51:d5:44:01:f6:3a:0c:d5:b3:7b:e9:be:
85:ee:4f:03:10:74:56:30:de:4b:ed:a8:02:0f:f3:
81:41:ed:bb:f9:a6:07:05:84:30:ba:ee:96:56:44:
04:ba:0f:00:e1:cc:11:21:03:7f:2f:31:3d:c5:54:
06:f9:94:c1:52:48:a1:84:b5:89:2c:21:8f:a8:bc:
20:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:9F:69:70:3B:0A:B0:39:8D:FB:AE:E3:A2:10:06:46:B2:11:B7:3B
X509v3 Authority Key Identifier:
keyid:D8:32:0B:D4:EF:85:8F:D6:2B:B2:48:5D:08:B0:A8:69:20:E9:11:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DIL1O-Fj9YrskhdCLCoaSDpEcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/bd81e7-397e-4d5d-a5f1-3a0faa28b5ac/1/2DIL1O-Fj9YrskhdCLCoaSDpEcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:c0:b9:87:d2:e8:c5:ae:f4:56:a9:0e:62:d1:c7:80:4e:b1:
0d:d0:0e:19:36:b0:f4:b7:d3:9a:d9:fd:b6:3e:43:e2:92:ee:
a1:69:da:07:37:8d:41:03:76:5e:63:f2:d5:ec:e2:12:fb:4f:
58:c8:1a:74:1b:cd:ea:16:1d:f0:f4:80:9b:c8:d9:bc:98:b4:
a4:dd:46:f3:1b:55:50:c2:61:3c:99:3a:4b:c4:5d:23:80:08:
5b:06:0d:ba:92:15:96:6a:62:9e:44:d0:1e:0f:0e:b8:68:48:
6d:8e:1e:26:11:cb:a3:07:33:08:c3:f2:b0:76:6f:67:9f:e0:
d5:77:32:e7:7a:0e:28:80:7d:f0:3c:d9:03:67:d2:34:fa:72:
4a:e9:f9:9f:4d:1d:70:d4:39:21:1b:7c:04:ab:b3:18:0a:8e:
31:31:5b:c5:ff:85:86:6c:90:df:2d:28:48:8b:28:e6:73:91:
5a:d6:51:31:c2:c9:96:3a:df:1b:9d:e1:6f:ba:d0:40:3b:5b:
66:9d:02:c3:2a:b1:a0:79:bc:d2:dd:44:6a:b3:8c:bc:f2:61:
85:47:cb:0c:1a:cb:06:45:b8:9c:79:11:ef:06:21:d6:da:12:
69:36:be:ef:34:ab:e3:6d:c1:fd:f8:f9:10:a2:d9:67:0a:27:
03:e1:39:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 05:44:42 2025 by rpki-client