Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
File: 2fwL7GDQus4YiWd72buQGQzE_SI.mft (raw, json)
Hash identifier: k7LnVdmoyLu6NX4rKGC422/rtwz7Ri3rajrPfpgI930=
Subject key identifier: B0:5E:0E:7C:DB:88:B2:8D:B0:0F:93:E3:25:F6:B9:1A:B8:2F:A1:5C
Authority key identifier: D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
Certificate issuer: /CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Certificate serial: 0199C3B1F42C0F55F46D5740A992F16927C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
Manifest number: 16CA
Signing time: Wed 08 Oct 2025 12:00:43 +0000
Manifest this update: Wed 08 Oct 2025 12:00:43 +0000
Manifest next update: Thu 09 Oct 2025 12:00:43 +0000
Files and hashes: 1: 0I8Tv0UylD63i4vV2xwB6rppwxI.roa (hash: QA7YvKS+a4NHe+cVmaIAaBQvm5w2dBSibTU49pm5mxM=)
2: 2fwL7GDQus4YiWd72buQGQzE_SI.crl (hash: /tJwLrNIAFrKgkl1XvDZqVTdUm6PLtVa8Y34EloE/Wg=)
3: 8Dt0TuVJVMCN6RnRhXhKGlf_lII.roa (hash: sSGLTETKxbNSq3MrBGV2DgOI7we1i0Q8mkHNa5K3SUY=)
4: BvWnnBlWW44V8sVOxm98LqahBBA.roa (hash: 6mRHK+yOMdXINEIp3lFBzgdVlSN/9ntwMd5HVLaTroY=)
5: GSlFodh40GWtFXJ0cvtNrC5QQZs.roa (hash: OLiyxfNtsv2LTCfXCwftWJpdQJ+N0fnXvmkjqgnZmno=)
6: S-JnIhmXL5e2DsjQFgno_k2Vz8E.roa (hash: /YQsaxBTg9/GiAQu4cI2KHBUoCqKcZjkOS7l2+NOeWg=)
7: pVnXYoxQriC-WtOLcwsA6Za2gDI.roa (hash: 1qcQ0hH+Vk55dAqX/63+B6qLf3cPHgQEfJdfgWLNx0w=)
8: q_VxYTNksLn-A2DiKrfsqvcSMaw.roa (hash: 9v/49noAVbeRiYCi+xkrBzJwESjZSadJSkvsw1PN9x8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Oct 2025 12:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:c3:b1:f4:2c:0f:55:f4:6d:57:40:a9:92:f1:69:27:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Validity
Not Before: Oct 8 12:00:43 2025 GMT
Not After : Oct 9 12:00:43 2025 GMT
Subject: CN=b05e0e7cdb88b28db00f93e325f6b91ab82fa15c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d4:3b:37:a0:4c:57:65:91:2c:cb:df:07:cc:
13:6c:e8:7f:4c:e2:b2:35:71:1b:4e:4f:b4:9a:9a:
84:63:1f:a2:f4:59:92:b3:40:b0:c2:7a:e4:79:f2:
26:17:46:e3:f2:e5:54:90:25:43:96:78:01:08:08:
7b:91:ab:5d:90:61:fc:63:a7:f8:c3:93:f9:bb:c4:
85:40:aa:9c:18:a1:51:7d:d9:70:02:21:38:cf:50:
81:46:2e:ea:1f:69:e3:2b:68:14:fb:f1:e5:a9:a8:
3a:b7:26:f6:28:44:6a:2e:bd:50:73:18:2c:e0:ac:
b6:1e:ff:4f:86:d1:e2:eb:08:6d:f0:f3:61:81:12:
f9:12:7a:a0:a0:e5:4b:5b:04:e8:fa:b2:27:c2:38:
cb:16:c5:c0:f9:63:d0:c3:3b:c1:8b:5e:f2:73:76:
8d:70:d2:b0:8a:11:12:93:b5:9b:f9:22:eb:7f:36:
c0:ad:f9:bb:9b:99:bb:59:c8:d0:af:cb:13:ff:03:
64:ef:e0:66:e5:76:6f:5f:70:41:c4:39:78:c2:16:
2a:8b:bc:bc:27:e1:1e:bf:00:87:d8:0e:bc:b4:42:
dd:12:94:36:55:d4:d8:a0:c4:f1:16:fb:ee:19:4c:
2c:66:05:f7:7c:6e:02:55:fa:dd:e8:27:31:5e:20:
38:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:5E:0E:7C:DB:88:B2:8D:B0:0F:93:E3:25:F6:B9:1A:B8:2F:A1:5C
X509v3 Authority Key Identifier:
keyid:D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:e5:20:57:2a:e5:d8:92:6b:81:3b:30:aa:bc:ca:de:35:5e:
df:88:10:07:24:c0:7b:91:a0:ea:c1:06:c5:29:74:1c:75:2e:
14:7d:93:b5:89:27:50:7e:ce:8b:35:cb:dd:b6:6d:64:bd:13:
cd:ce:f6:e9:b0:bd:ed:0b:7b:43:e3:aa:53:cf:7b:7c:ab:8b:
14:d8:55:b8:2a:85:fc:db:88:6c:46:01:5c:45:64:4e:a1:0b:
34:e9:75:60:90:19:44:28:27:58:49:ba:2b:b8:0b:02:de:51:
d4:fa:8b:27:52:16:85:05:9c:0c:83:83:b4:06:ac:0d:d1:95:
c9:06:28:3c:29:b4:c0:6e:cf:93:1b:25:31:fb:51:9e:6d:f2:
33:cc:94:c4:ee:e4:b7:8a:f4:b5:e2:d5:4d:6b:46:8f:f0:89:
b3:8d:f7:04:37:ba:a6:d5:a0:19:11:10:b5:86:60:f8:fc:f1:
32:3a:9e:0d:2e:1c:23:5f:45:d8:a1:90:52:08:d0:93:af:0b:
cf:51:d9:2f:44:02:ff:3b:f6:18:b2:45:00:d0:a2:81:c0:ba:
87:f2:8e:86:f8:ac:ed:6a:c2:f7:bb:93:c2:40:e7:fe:2f:7a:
41:ab:a2:89:06:96:bb:79:24:4f:87:b6:3e:59:05:ed:7b:f8:
53:d6:69:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 15:48:23 2025 by rpki-client