Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft
File: m2JkjpE6NkDwMbY6a9krDijhOfs.mft (raw, json)
Hash identifier: cceH82epL30KZPzqbiuvzsK9hZ/qRY4j3+VZWv0MmlY=
Subject key identifier: 66:64:A9:26:43:B9:21:4D:D1:76:03:E2:89:C8:48:54:B3:61:42:FD
Authority key identifier: 9B:62:64:8E:91:3A:36:40:F0:31:B6:3A:6B:D9:2B:0E:28:E1:39:FB
Certificate issuer: /CN=9b62648e913a3640f031b63a6bd92b0e28e139fb
Certificate serial: 019A70DC29C53B57B3803E45692C20C6D17A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2JkjpE6NkDwMbY6a9krDijhOfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft
Manifest number: 02B7
Signing time: Tue 11 Nov 2025 03:01:08 +0000
Manifest this update: Tue 11 Nov 2025 03:01:08 +0000
Manifest next update: Wed 12 Nov 2025 03:01:08 +0000
Files and hashes: 1: GFs318vhhs43UeJYStMCcJcloVE.roa (hash: W8/O6hKTgxLPwLzEgTm/PKRsS6eSZm8+16PIQciHYr8=)
2: m2JkjpE6NkDwMbY6a9krDijhOfs.crl (hash: LprmJ8uFZLNuQ3zrNxkd+LFGRx6A62MxmZxTqwecHfA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft
rsync://rpki.ripe.net/repository/DEFAULT/m2JkjpE6NkDwMbY6a9krDijhOfs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:29:c5:3b:57:b3:80:3e:45:69:2c:20:c6:d1:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b62648e913a3640f031b63a6bd92b0e28e139fb
Validity
Not Before: Nov 11 03:01:08 2025 GMT
Not After : Nov 12 03:01:08 2025 GMT
Subject: CN=6664a92643b9214dd17603e289c84854b36142fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:8b:76:be:66:b0:f1:65:b2:86:99:32:c3:1d:
9a:ad:e1:76:3a:94:d9:53:95:92:a8:ff:8e:a8:9f:
75:9c:ca:2f:f8:5a:ab:1a:82:08:a9:8b:ea:bc:75:
2c:f8:43:f8:35:25:6e:50:40:44:a8:aa:c9:e6:c7:
29:c2:e1:e6:d5:eb:bd:db:41:69:00:a2:c9:c1:d8:
a7:bb:ff:77:7f:1a:19:ef:18:89:d8:92:70:e9:7d:
bb:d8:2e:bf:f2:71:66:6e:68:27:ed:aa:e0:91:3c:
b5:74:08:ad:9a:76:c5:43:7e:42:c5:91:f3:eb:47:
22:6f:86:51:a5:2b:1d:06:b1:90:17:81:78:4a:69:
ff:e2:78:5c:94:5b:17:3c:10:85:5b:ca:58:29:61:
94:39:61:03:d0:73:f5:0c:18:49:72:dd:cd:97:bc:
7e:46:f5:2b:fd:e7:dd:00:ad:60:8c:2d:88:f7:03:
69:c2:0d:49:09:c3:45:cb:1d:a7:38:fb:97:d6:f3:
52:c7:86:b4:56:64:98:ec:0c:b9:77:73:d5:16:47:
0d:70:49:14:cd:7f:96:53:b0:78:f1:e0:05:83:44:
33:35:39:bb:d7:15:6b:5f:0c:52:1a:89:6e:2d:06:
4d:2d:f1:4b:a3:8b:32:a9:fe:21:6d:4b:ff:e7:2a:
b0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:64:A9:26:43:B9:21:4D:D1:76:03:E2:89:C8:48:54:B3:61:42:FD
X509v3 Authority Key Identifier:
keyid:9B:62:64:8E:91:3A:36:40:F0:31:B6:3A:6B:D9:2B:0E:28:E1:39:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2JkjpE6NkDwMbY6a9krDijhOfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8865d7-9fea-47f6-a3fc-98bd156029c0/1/m2JkjpE6NkDwMbY6a9krDijhOfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:dc:a8:30:d4:ff:66:d3:53:58:70:f3:c0:2a:a6:79:ce:5b:
bd:3c:c3:be:22:1a:bf:96:7a:2b:76:c9:65:4c:72:75:fb:a2:
8f:44:c7:ef:4c:d6:49:92:e2:e3:b6:3f:04:7d:21:c6:f1:0f:
16:d5:c7:14:cc:45:54:e6:b3:9f:da:83:ab:ae:d1:d4:fc:b6:
40:49:28:2c:91:2d:14:5c:38:ab:61:e4:df:e3:00:0f:4d:c7:
8d:23:b5:8c:0d:23:8d:33:38:c5:5e:8c:97:a9:37:31:b4:46:
c7:a3:88:ee:e9:3f:38:62:5e:b1:64:78:f4:11:c8:87:56:da:
e7:35:84:f1:a0:dc:d1:fc:4e:8a:9f:c4:50:64:d2:17:94:89:
25:05:fc:1b:99:82:82:6b:22:10:89:ff:7e:7f:67:7b:97:68:
b5:48:55:2e:5c:df:ae:d5:23:c6:57:03:c3:1c:dc:0e:34:fe:
63:52:a1:4c:77:25:2b:ab:d6:21:f9:21:38:07:53:6f:79:48:
b0:fc:ac:25:3d:d0:a1:34:54:82:a0:7f:1d:9c:21:aa:d2:17:
65:bb:d6:b4:fd:9c:ab:d1:1b:18:77:ff:24:2c:39:25:35:76:
13:97:a3:b2:66:44:90:2e:22:88:1c:1f:db:2c:7c:5c:47:35:
53:9d:52:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:43:11 2025 by rpki-client