Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: jmg1DV2hoDV6pZrKqKNvfUsQggF4rGNbbdmu/uwVHCc=
Subject key identifier: 66:F4:F0:19:51:E9:A3:77:B1:5C:37:C2:15:10:AF:F9:60:B4:02:A0
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 019A729337DF0644A7D36EC6B40B7D6C5F4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 1030
Signing time: Tue 11 Nov 2025 11:00:41 +0000
Manifest this update: Tue 11 Nov 2025 11:00:41 +0000
Manifest next update: Wed 12 Nov 2025 11:00:41 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: SC0f8lCDSvA8Z/BIKbPx1Y5dRe8R7GYWMU33+p+WdGw=)
2: fvccoh-XRGUydolEQwVKUg__llM.roa (hash: MESTegxG3uX73jrknXUqcZY7a9Gll4oI6clWX78ISS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:37:df:06:44:a7:d3:6e:c6:b4:0b:7d:6c:5f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: Nov 11 11:00:41 2025 GMT
Not After : Nov 12 11:00:41 2025 GMT
Subject: CN=66f4f01951e9a377b15c37c21510aff960b402a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:12:08:35:10:a1:3f:d6:f8:74:53:6c:29:35:
e3:d4:8f:32:98:08:47:81:86:b6:57:31:50:d6:59:
41:ee:32:02:38:a2:c3:40:09:7f:be:5b:75:48:32:
20:30:bb:07:e3:38:df:5a:b9:3b:21:63:a5:ec:d2:
52:f3:a5:b2:d2:aa:5b:d1:77:5c:50:90:b0:bc:4d:
d5:54:7d:8b:e2:29:aa:24:6d:f8:3c:ee:63:7d:bc:
59:5f:61:0b:58:7c:2f:df:ca:59:c5:e6:8b:3c:b9:
06:d4:63:99:79:a9:28:ec:1f:cb:f4:49:cc:79:ca:
56:9e:26:aa:02:92:4d:3c:ca:e9:e6:66:35:4f:2a:
06:d6:43:d5:43:5d:d2:23:c3:b5:fc:b9:50:42:8d:
46:b6:8f:74:cd:85:c9:38:f8:1e:02:37:19:23:71:
82:0c:e3:dd:57:4a:79:2a:c0:13:a2:aa:d6:ac:34:
2d:a6:30:5b:69:f9:e3:9e:4e:06:8b:90:16:49:7f:
b2:3f:dc:06:01:98:3a:be:ed:82:91:25:32:ad:36:
26:0b:f6:d3:9a:c4:d0:57:d6:f4:21:7f:84:8c:47:
13:ee:95:a6:b7:bb:89:e8:39:d0:ee:7d:d7:20:b0:
1f:17:af:75:5c:d6:0b:62:06:57:33:cf:5f:b6:04:
30:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:F4:F0:19:51:E9:A3:77:B1:5C:37:C2:15:10:AF:F9:60:B4:02:A0
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:f4:5a:a4:60:09:84:76:bb:e7:d1:e5:ca:94:20:77:71:bc:
71:72:2f:d9:22:b5:8d:e9:90:12:54:f4:b5:ac:46:7d:e6:89:
46:74:23:4f:42:8d:6a:7d:48:e4:53:b3:e4:e6:60:4a:e5:b6:
47:88:61:cc:14:70:68:38:7e:83:de:c0:c2:8a:cf:df:90:1b:
d7:12:c4:78:c0:ee:7b:58:dc:d1:1c:98:a7:ed:03:47:cb:c4:
0d:1b:18:da:1e:0a:97:4f:6b:cd:65:71:0b:20:9e:14:7e:01:
d1:90:d8:2f:57:b2:7b:8a:da:02:88:98:b0:0e:3d:18:b1:00:
1d:86:5c:d7:58:88:4e:9e:5e:9f:e4:10:a4:d6:59:c4:54:c9:
a7:32:da:4a:f7:8a:bf:77:91:a3:cc:bb:a5:3d:6e:16:2d:e0:
c3:99:c7:f7:a3:a6:c7:a9:2c:20:f5:ce:46:a3:d1:a8:95:58:
e3:80:68:7f:de:44:ad:82:42:82:9c:64:f0:ee:37:a0:97:38:
9e:ee:6e:5b:d6:4a:74:64:1f:89:56:64:1c:d6:a9:95:97:d6:
fe:bb:d0:33:b5:7b:79:b3:df:36:9d:8b:99:f8:44:f3:51:fa:
fc:52:14:f5:cb:ff:1c:1d:73:b5:9c:72:24:cc:72:98:a7:ef:
44:41:ba:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:22:05 2025 by rpki-client