Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
File: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft (raw, json)
Hash identifier: tVcaKOGYuDoNZzkLVB7cIEANZvH4nPlS6Xawk6kPo0I=
Subject key identifier: 21:A9:1C:46:3D:47:1C:27:9C:A2:46:B4:C6:54:C0:05:44:2C:29:E6
Authority key identifier: D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
Certificate issuer: /CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Certificate serial: 019A0C6F9716B8B600249972014F0939E629
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
Manifest number: 16E9
Signing time: Wed 22 Oct 2025 15:00:30 +0000
Manifest this update: Wed 22 Oct 2025 15:00:30 +0000
Manifest next update: Thu 23 Oct 2025 15:00:30 +0000
Files and hashes: 1: 2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl (hash: JO2Q/yUBzKhGnDetOuuLyIVFoV6sindm71FnOkexjvs=)
2: wIuWmKQqKRafTdpQCAjgZGdOwSg.roa (hash: FSZWMB16h9Z2ZEIxjWe18pWkdzeyGtdch3JRTJHt/gU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0c:6f:97:16:b8:b6:00:24:99:72:01:4f:09:39:e6:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8073d06b58652f849fa8bcf3cec6b950909bd68
Validity
Not Before: Oct 22 15:00:30 2025 GMT
Not After : Oct 23 15:00:30 2025 GMT
Subject: CN=21a91c463d471c279ca246b4c654c005442c29e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:54:a7:ed:55:63:5b:4e:1a:97:83:3c:88:16:
cf:fd:2f:82:1b:93:18:77:92:33:db:b0:f7:d2:3f:
fa:40:a3:6e:88:a8:58:cb:01:c0:a0:e0:56:cf:72:
a0:4c:29:ca:c4:e7:56:1f:f8:f2:48:18:7d:a2:19:
9a:11:c8:b1:c4:a6:c7:66:eb:ac:38:16:49:0f:7c:
78:bf:2b:1c:fb:af:37:ac:10:29:da:5d:21:34:b9:
cd:78:17:e3:ba:9f:d2:37:5d:af:fb:8a:81:14:4d:
99:84:7a:f7:7c:60:0e:b2:c2:b0:57:f2:2d:44:89:
50:f3:20:a8:52:c0:fe:bd:62:ed:88:8f:4b:54:dd:
8b:25:07:42:51:e2:94:58:fb:e0:80:7d:fa:68:86:
6e:e6:dd:da:e3:84:ff:2e:06:ea:72:d7:cd:67:08:
2b:46:7c:4f:2e:4e:9a:a4:76:3d:eb:38:07:be:13:
bf:f0:bc:e4:3a:d9:d9:fb:67:b4:0e:11:b8:12:3a:
66:4e:a4:b6:1a:87:91:19:51:66:79:d8:c3:20:e3:
c2:39:f6:63:8c:01:c6:fb:fd:3c:14:95:d8:0c:c5:
e3:03:4c:ca:1a:20:af:fb:78:75:8b:b8:51:ce:01:
f0:53:c8:b9:72:43:82:ac:6f:80:62:b8:52:3c:44:
3d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:A9:1C:46:3D:47:1C:27:9C:A2:46:B4:C6:54:C0:05:44:2C:29:E6
X509v3 Authority Key Identifier:
keyid:D8:07:3D:06:B5:86:52:F8:49:FA:8B:CF:3C:EC:6B:95:09:09:BD:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/721920-939b-412b-a3c5-2329d79c4ae3/1/2Ac9BrWGUvhJ-ovPPOxrlQkJvWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:1d:72:56:08:9f:e0:3a:61:7d:b4:9e:8d:0b:db:2f:63:29:
fa:b3:bf:97:64:58:38:ae:58:6a:7b:e1:1c:1d:8b:7f:af:24:
e7:f4:41:37:cf:be:39:07:50:6a:8f:7e:b9:8a:2d:6a:41:cb:
12:02:fa:b3:a4:b7:bb:cd:d5:1c:2c:9e:c4:42:96:11:64:7a:
90:d6:68:cd:37:d2:03:6a:ea:d9:af:fd:2c:3b:22:e7:f6:d1:
17:26:39:5f:5b:1c:2b:ed:50:3c:b6:ea:98:3b:07:65:02:3f:
1f:b0:da:1c:1b:20:8e:cf:55:05:45:fa:49:5b:ac:a3:ad:a6:
7c:9a:94:5b:0b:99:39:c0:7f:e3:89:36:5a:27:cd:b2:90:c3:
be:75:f2:4f:8b:b5:b8:ac:0c:f4:bd:3a:b6:4a:f8:b1:e7:ac:
86:b3:4a:68:28:d9:0d:5b:36:47:a1:e0:81:9e:73:89:da:dd:
f0:16:a8:30:15:5f:57:cf:e9:d4:30:1e:5d:da:5b:e1:72:6c:
64:5f:fb:84:32:c8:01:88:b2:85:e7:84:70:2a:40:ca:4d:a9:
62:12:48:8a:69:b4:f3:25:2a:b3:f7:43:83:02:ea:7a:5a:21:
41:c4:0d:a7:7f:21:2b:3c:e3:f4:e3:47:c1:fb:cd:11:dc:52:
4a:0a:ba:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 19:02:24 2025 by rpki-client