Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft
File: 2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft (raw, json)
Hash identifier: yIBbYrfOtPUmHgIP/IvM72PbMYVgOrLcfUdzez7UuEA=
Subject key identifier: A6:D3:96:A2:C0:79:66:F9:AF:ED:43:9A:1D:93:CB:45:60:3C:49:74
Authority key identifier: DA:3D:25:80:C5:49:80:CA:B3:DB:13:56:18:2E:D8:CC:81:9F:FC:07
Certificate issuer: /CN=da3d2580c54980cab3db1356182ed8cc819ffc07
Certificate serial: 019A25F866D8A2C2B57C8EE39076F59D8852
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft
Manifest number: 16F4
Signing time: Mon 27 Oct 2025 14:00:27 +0000
Manifest this update: Mon 27 Oct 2025 14:00:27 +0000
Manifest next update: Tue 28 Oct 2025 14:00:27 +0000
Files and hashes: 1: 2j0lgMVJgMqz2xNWGC7YzIGf_Ac.crl (hash: Kpg7cqA9/QQ2wlGqERufxK9ZsohUKqf9O/QUMO6S74k=)
2: aVrm11uPiyldKPviAWZVNw7mX_s.roa (hash: +aUpO78+V+9JLiQkkmCO8C80eoccRFxUM2jJ9r7mFkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft
rsync://rpki.ripe.net/repository/DEFAULT/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 14:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:f8:66:d8:a2:c2:b5:7c:8e:e3:90:76:f5:9d:88:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da3d2580c54980cab3db1356182ed8cc819ffc07
Validity
Not Before: Oct 27 14:00:27 2025 GMT
Not After : Oct 28 14:00:27 2025 GMT
Subject: CN=a6d396a2c07966f9afed439a1d93cb45603c4974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:11:bb:4a:9f:13:fa:2d:7e:98:a9:99:1f:05:
0b:66:e0:27:3c:84:2b:dd:00:1b:2b:35:a3:24:83:
89:d7:f6:38:78:e1:30:1f:6d:f9:16:d7:76:5c:5f:
0f:f9:2e:e7:26:d7:51:fd:5c:7f:91:b3:34:64:b1:
b6:bb:a6:7d:59:67:4b:3d:46:a1:31:f7:b2:b8:52:
34:56:e1:21:ea:c1:19:cb:dc:b7:15:10:fe:af:36:
8e:e9:1d:1d:df:77:03:d2:6d:f6:59:26:33:63:02:
e7:55:dc:6a:9c:3b:33:a5:54:f4:4d:c2:f5:d0:d2:
53:ce:b5:5c:7b:b1:80:96:81:cd:64:f6:92:93:3c:
f6:ea:18:f0:52:2c:bd:11:f5:32:69:7a:73:1d:9b:
c8:11:c3:c5:60:4d:b3:14:b3:8f:b1:9b:3d:50:f8:
74:3f:7c:14:d0:f7:ab:66:97:9a:0f:9c:7b:26:2a:
c0:20:bd:27:df:a9:f0:ff:52:d8:94:fb:24:bf:9c:
22:ba:78:66:4c:5e:50:65:39:bc:25:19:90:16:86:
10:a3:fa:ed:ac:f5:1c:dd:1c:3f:9a:f9:02:ad:f1:
70:bc:c0:38:3f:4b:49:92:72:f9:55:7c:39:2d:83:
fb:43:ab:d6:c0:f9:b6:50:c5:53:c7:49:53:84:c7:
87:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:D3:96:A2:C0:79:66:F9:AF:ED:43:9A:1D:93:CB:45:60:3C:49:74
X509v3 Authority Key Identifier:
keyid:DA:3D:25:80:C5:49:80:CA:B3:DB:13:56:18:2E:D8:CC:81:9F:FC:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:23:44:90:10:5f:54:1e:a1:31:37:e9:d7:cc:e7:3b:32:4b:
02:0a:33:99:8a:df:41:ac:2e:31:2f:3f:df:1f:0d:c8:2e:d0:
72:a2:2e:91:0c:af:50:d3:4b:fc:ce:0f:35:76:1d:2b:ce:5a:
8f:f3:2e:b7:f7:d0:11:22:35:64:37:12:df:ab:13:33:76:0e:
a1:0c:2c:b4:55:d6:e4:9c:ca:00:b2:9b:25:f0:77:91:01:7d:
52:37:8c:ca:95:53:2f:34:68:5e:7c:1d:b7:bf:9b:37:00:b7:
75:f2:ec:d6:2e:3b:e1:88:b7:d8:18:ae:82:d0:1b:13:00:5c:
b5:73:b1:d1:84:bc:af:8f:22:11:37:a9:82:0a:f8:25:c7:25:
f6:0b:db:0c:b0:8f:f7:fe:5c:42:74:e0:c2:30:fa:eb:0e:9b:
9b:73:5b:6a:df:ad:80:bc:ff:ed:ab:5d:f1:fa:bd:07:30:00:
b2:93:0e:ed:30:0d:ab:bd:99:4f:13:be:96:01:b5:86:1f:14:
b5:d4:da:43:9c:44:91:3d:da:ab:af:6d:de:8e:f1:34:22:fb:
80:31:b5:d6:d8:af:ce:84:7c:7f:19:b3:55:f5:7d:d2:e0:5e:
e6:3b:ad:dd:b1:75:2a:ec:eb:72:5e:0d:ef:1b:74:e0:16:df:
2c:3b:c1:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 23:23:36 2025 by rpki-client