Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
File: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft (raw, json)
Hash identifier: mkO38EWdibPvh8MruiU/pZ90AXMN8GXZmf6YMPGbvfo=
Subject key identifier: 8A:79:E2:77:0D:8D:9F:6D:F1:86:29:7A:53:7F:26:4F:22:DC:5C:53
Authority key identifier: DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
Certificate issuer: /CN=daddd1b636fe3df1df3d811f644583312a651337
Certificate serial: 019A71B79B79D34231D12C721989B8EBCED3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
Manifest number: 1386
Signing time: Tue 11 Nov 2025 07:00:49 +0000
Manifest this update: Tue 11 Nov 2025 07:00:49 +0000
Manifest next update: Wed 12 Nov 2025 07:00:49 +0000
Files and hashes: 1: 2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl (hash: WdhtEpK3IMfyRNL+qNz1vFHPy27N2LkNIXXZonWH2PU=)
2: Ayr05U3NKAd6mblS63pAVZbHnEI.roa (hash: PYCcEhQQfZIx55w6ukJcbUlLU5BAsDen0FIJwdgcRtk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:9b:79:d3:42:31:d1:2c:72:19:89:b8:eb:ce:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daddd1b636fe3df1df3d811f644583312a651337
Validity
Not Before: Nov 11 07:00:49 2025 GMT
Not After : Nov 12 07:00:49 2025 GMT
Subject: CN=8a79e2770d8d9f6df186297a537f264f22dc5c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:59:26:6f:5d:33:3a:e3:42:f6:2d:79:e5:c2:
4d:a1:69:48:c3:d2:07:b8:26:b0:8e:26:b2:15:90:
9b:ff:55:79:83:d2:55:b2:85:dd:b3:e0:2c:4d:58:
cc:0f:4d:bb:eb:ae:e1:9c:d2:c9:46:2d:54:27:50:
57:fa:67:72:f7:a7:51:40:07:73:87:a2:49:2e:63:
4c:17:ad:12:1f:f4:45:56:b3:49:f8:9d:a9:0f:f3:
00:8e:e5:98:0f:a8:ea:3a:91:04:fb:9d:ff:fb:33:
37:03:32:48:96:ef:9e:e8:2f:c0:9f:a0:5c:90:cf:
f8:40:00:d6:05:d4:13:e7:88:06:8c:45:96:f5:c7:
13:4e:13:5b:fb:78:7c:48:fb:fe:4b:c6:91:f6:ca:
8f:f2:4c:cd:e4:0f:47:0c:55:e3:09:33:d7:47:3e:
bc:03:ef:11:4e:39:d0:15:6b:3a:22:49:12:50:05:
0a:a7:b7:fe:0a:c8:cd:54:96:f5:b6:a7:4f:d0:66:
44:0d:6f:c6:b3:05:9f:22:05:01:1e:78:8d:25:89:
47:2d:8b:d1:f5:18:c9:ed:71:d3:68:89:4c:84:cf:
19:4a:5c:fd:71:53:b2:bd:78:d2:f5:66:3e:d1:7c:
3d:8c:f4:fe:c7:05:70:ba:85:86:c4:97:6f:d3:a1:
ba:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:79:E2:77:0D:8D:9F:6D:F1:86:29:7A:53:7F:26:4F:22:DC:5C:53
X509v3 Authority Key Identifier:
keyid:DA:DD:D1:B6:36:FE:3D:F1:DF:3D:81:1F:64:45:83:31:2A:65:13:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2t3Rtjb-PfHfPYEfZEWDMSplEzc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4643d7-37d7-4b3c-a1a5-632ce67c085a/1/2t3Rtjb-PfHfPYEfZEWDMSplEzc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:32:a5:a4:bc:c1:31:8a:b8:98:cb:1e:af:7d:df:c4:97:d9:
55:92:b5:b9:66:eb:ce:0d:a2:02:a1:b6:0e:c3:7b:90:05:22:
7a:61:12:c5:84:28:8a:75:70:b2:03:a5:73:e1:6a:82:00:8c:
cb:9b:4a:74:ef:0d:59:25:f2:ad:6a:77:89:10:30:cd:3c:c0:
e8:90:7f:f5:1d:26:2c:b8:30:a9:e3:86:47:48:ab:52:94:22:
32:42:05:3d:e8:98:3d:bc:a3:a1:4a:ad:6b:9e:90:95:bd:80:
44:4e:fe:cf:68:21:33:48:53:e6:3f:e2:74:09:64:3d:f5:95:
15:38:dc:90:3a:02:4f:36:da:e6:7d:92:41:9b:39:9d:b6:3f:
d2:71:7f:a0:dd:b0:f3:47:26:6d:bb:48:d5:5a:74:c0:ce:a8:
d4:61:e3:99:7d:93:0d:e2:11:52:0d:86:85:85:c3:76:cf:09:
4b:bc:48:49:7e:7a:ab:3f:86:2f:a9:e1:90:1f:5b:c4:09:94:
ae:ba:f4:44:b4:ed:89:e8:14:02:d8:20:2b:a7:56:1b:72:d6:
4f:dc:e8:6f:54:60:08:0c:9b:94:c2:3c:1f:e7:d3:e1:89:ec:
f9:71:35:bb:ef:a6:26:e2:d8:a1:3b:e7:c2:4f:cf:e6:81:ac:
c9:26:9a:37
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxt5t500Ix0SxyGYm4687TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhZGRkMWI2MzZmZTNkZjFkZjNkODExZjY0NDU4MzMxMmE2
NTEzMzcwHhcNMjUxMTExMDcwMDQ5WhcNMjUxMTEyMDcwMDQ5WjAzMTEwLwYDVQQD
Eyg4YTc5ZTI3NzBkOGQ5ZjZkZjE4NjI5N2E1MzdmMjY0ZjIyZGM1YzUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1kmb10zOuNC9i155cJNoWlIw9IH
uCawjiayFZCb/1V5g9JVsoXds+AsTVjMD027667hnNLJRi1UJ1BX+mdy96dRQAdz
h6JJLmNMF60SH/RFVrNJ+J2pD/MAjuWYD6jqOpEE+53/+zM3AzJIlu+e6C/An6Bc
kM/4QADWBdQT54gGjEWW9ccTThNb+3h8SPv+S8aR9sqP8kzN5A9HDFXjCTPXRz68
A+8RTjnQFWs6IkkSUAUKp7f+CsjNVJb1tqdP0GZEDW/GswWfIgUBHniNJYlHLYvR
9RjJ7XHTaIlMhM8ZSlz9cVOyvXjS9WY+0Xw9jPT+xwVwuoWGxJdv06G6yQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIp54ncNjZ9t8YYpelN/Jk8i3FxTMB8GA1UdIwQY
MBaAFNrd0bY2/j3x3z2BH2RFgzEqZRM3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnQzUnRqYi1QZkhmUFlFZlpFV0RNU3BsRXpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi80NjQzZDctMzdkNy00YjNjLWExYTUt
NjMyY2U2N2MwODVhLzEvMnQzUnRqYi1QZkhmUFlFZlpFV0RNU3BsRXpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi80NjQzZDctMzdkNy00YjNjLWExYTUtNjMyY2U2N2MwODVh
LzEvMnQzUnRqYi1QZkhmUFlFZlpFV0RNU3BsRXpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZTKlpLzB
MYq4mMser33fxJfZVZK1uWbrzg2iAqG2DsN7kAUiemESxYQoinVwsgOlc+FqggCM
y5tKdO8NWSXyrWp3iRAwzTzA6JB/9R0mLLgwqeOGR0irUpQiMkIFPeiYPbyjoUqt
a56Qlb2ARE7+z2ghM0hT5j/idAlkPfWVFTjckDoCTzba5n2SQZs5nbY/0nF/oN2w
80cmbbtI1Vp0wM6o1GHjmX2TDeIRUg2GhYXDds8JS7xISX56qz+GL6nhkB9bxAmU
rrr0RLTtiegUAtggK6dWG3LWT9zob1RgCAyblMI8H+fT4Yns+XE1u++mJuLYoTvn
wk/P5oGsySaaNw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:02:35 2025 by rpki-client