Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
File: 2GucF3igUp7n4jIAPL5cmTw2_ds.mft (raw, json)
Hash identifier: yCO4GFhY0y9BflXckH7VNZMQ2y7+t0sVswCYUvEWxoE=
Subject key identifier: A6:68:83:4F:2A:77:08:1A:42:E5:06:D2:15:06:09:D7:46:67:CD:DF
Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Certificate serial: 019A22C05BF9E7934528F8504CDC88C44B96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
Manifest number: 0456
Signing time: Sun 26 Oct 2025 23:00:22 +0000
Manifest this update: Sun 26 Oct 2025 23:00:22 +0000
Manifest next update: Mon 27 Oct 2025 23:00:22 +0000
Files and hashes: 1: 2GucF3igUp7n4jIAPL5cmTw2_ds.crl (hash: Q5hX86cva2Fx42WIOTKcFT8U2hvUH+bbkx+jBcU0b+k=)
2: xaTFNHvIwGFGt2nvvisSJGJJn1U.roa (hash: dncutlGZCp4ijfHdULe589Ce9+6dKbRvNV71t7mvtSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:c0:5b:f9:e7:93:45:28:f8:50:4c:dc:88:c4:4b:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Validity
Not Before: Oct 26 23:00:22 2025 GMT
Not After : Oct 27 23:00:22 2025 GMT
Subject: CN=a668834f2a77081a42e506d2150609d74667cddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e5:09:00:53:4b:98:12:82:3c:40:8a:67:e8:
f1:9e:f2:d2:27:e9:8e:1a:e7:01:bf:a6:1e:b7:05:
4b:ba:d6:c0:02:35:7f:dc:90:ef:42:16:7c:c5:e6:
b5:19:dd:c4:9d:c7:a3:fa:11:77:c1:1e:b3:54:16:
6f:f3:97:20:c4:08:00:86:b7:81:2c:68:4b:da:1e:
72:5f:2e:f3:16:c6:99:cd:5b:ca:9f:bc:5f:5a:87:
81:65:ac:6f:31:ec:74:34:7a:aa:b0:35:0e:19:f8:
3d:cb:09:c0:ab:86:4e:53:8c:84:cc:14:46:da:bc:
72:60:4f:65:1d:7b:2a:aa:9b:a9:39:4f:e2:ad:73:
33:3c:31:04:63:f3:27:58:2f:49:a3:35:34:74:ee:
62:c5:bd:12:4f:ff:38:d0:a2:25:70:1a:29:09:2b:
62:ac:0d:e7:16:48:97:67:7a:55:ea:f5:b9:8d:a2:
cb:12:83:07:c1:0c:db:4c:18:82:2a:17:9d:39:98:
dc:15:79:8f:4b:d0:77:31:45:7e:5f:5c:41:68:a8:
59:34:4d:e9:b5:3e:2c:4d:6f:69:38:27:fb:de:8a:
3b:bd:a3:13:b3:d3:ba:7c:73:04:dd:40:a5:aa:7e:
f2:8e:7e:09:33:7a:c6:ae:ad:b4:9c:98:39:e6:c6:
1c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:68:83:4F:2A:77:08:1A:42:E5:06:D2:15:06:09:D7:46:67:CD:DF
X509v3 Authority Key Identifier:
keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:cc:a2:83:54:24:5d:36:d3:47:6d:fd:c8:40:a0:01:97:e1:
9a:2f:07:eb:d1:b6:d8:57:30:55:50:60:99:5c:a5:1b:80:90:
fd:c7:1d:15:5b:6b:52:d9:36:9e:b3:ab:a0:86:f5:23:1c:04:
30:d8:8d:fe:cf:4f:46:ef:0d:ad:cb:ba:46:52:da:31:9f:59:
1c:a0:71:d2:dd:27:94:63:44:ec:56:42:d1:1c:3c:ee:5f:64:
4d:5e:3b:88:9f:40:72:84:59:ea:7c:dc:39:66:60:10:c5:c3:
30:ab:4e:df:1a:80:32:4a:a1:e6:af:64:9a:62:51:ba:9d:63:
47:0c:24:e8:01:66:03:ed:c6:0c:9d:34:08:ec:d9:50:87:d6:
1f:ec:45:2a:c9:06:e3:d0:b0:68:3a:0d:9f:2c:6e:c1:49:39:
0a:5a:e7:f3:2c:ce:b8:db:74:aa:b8:2a:d6:76:4f:ed:fd:db:
47:8e:a1:99:2b:91:a2:1f:5d:27:c1:96:b3:9a:3e:fc:f4:12:
8d:d9:c0:42:cc:ba:c5:51:4d:2a:cf:05:e5:5d:77:19:ea:d0:
13:e2:6e:4d:45:8b:14:26:a7:2a:bc:0c:de:f2:af:6a:03:38:
1e:9c:5f:7b:2f:dd:87:1b:0d:83:89:f3:f6:25:be:62:0d:73:
f6:db:f1:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 01:28:03 2025 by rpki-client