Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
File: 2l7eZe_t7t-MigSyRaOl32OmnoQ.mft (raw, json)
Hash identifier: 70efALRZdHlw3N2zNHrzjvv8wdwcPh3WeaOKAk+puUw=
Subject key identifier: BE:AD:52:29:03:A5:7D:E5:93:9C:7D:38:F3:65:81:74:46:06:C6:CE
Authority key identifier: DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
Certificate issuer: /CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Certificate serial: 019A71B82425E8C8D0018A964902CD3C8762
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 07:01:24 +0000
Manifest this update: Tue 11 Nov 2025 07:01:24 +0000
Manifest next update: Wed 12 Nov 2025 07:01:24 +0000
Files and hashes: 1: 2l7eZe_t7t-MigSyRaOl32OmnoQ.crl (hash: xgg15KX6Amh1VT6VJEJ8eI+9e9G/GPww8l1rO1ILN+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:24:25:e8:c8:d0:01:8a:96:49:02:cd:3c:87:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da5ede65efedeedf8c8a04b245a3a5df63a69e84
Validity
Not Before: Nov 11 07:01:24 2025 GMT
Not After : Nov 12 07:01:24 2025 GMT
Subject: CN=bead522903a57de5939c7d38f36581744606c6ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a4:c9:e3:a9:9b:0e:d3:15:d5:d0:f9:da:a3:
2c:07:62:f3:ae:63:fe:37:37:aa:72:6f:58:a0:80:
8c:3c:a2:61:61:a4:2f:53:f3:87:e0:b1:26:1c:af:
60:13:c1:74:bd:c7:0d:01:7d:81:6e:35:ba:ec:fe:
b6:09:e9:b0:5d:32:2f:14:26:3b:45:4d:4d:01:a6:
f1:6e:d5:c0:5e:e6:1e:5a:81:a3:42:fd:dd:72:98:
d7:50:87:72:50:d2:63:71:15:7f:52:96:aa:26:82:
b2:60:80:0f:04:71:39:86:7c:56:2e:fc:52:fe:be:
a9:e3:d9:4d:5c:88:df:29:a8:3c:4e:e8:97:91:62:
4e:1e:08:88:cd:a9:f1:e9:32:fd:e3:3f:db:40:0e:
45:a3:41:f0:99:c3:12:b3:48:1d:f9:c3:fe:85:3d:
ed:ed:37:fb:af:78:98:60:c4:f2:04:ee:84:66:bf:
e7:a6:3d:c0:40:2b:d8:36:c2:36:ec:f2:bc:eb:ec:
35:d5:8f:70:d2:00:ea:98:88:8f:df:93:3d:15:52:
fb:a7:ae:23:d9:c4:fb:e7:66:4c:a8:d3:01:9a:05:
9a:9a:0b:b7:d8:52:00:a3:b6:4f:0a:3e:92:67:86:
5f:1c:95:88:7c:b0:13:62:af:ad:23:1d:a2:7e:7d:
9b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:AD:52:29:03:A5:7D:E5:93:9C:7D:38:F3:65:81:74:46:06:C6:CE
X509v3 Authority Key Identifier:
keyid:DA:5E:DE:65:EF:ED:EE:DF:8C:8A:04:B2:45:A3:A5:DF:63:A6:9E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2l7eZe_t7t-MigSyRaOl32OmnoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/a6a9de-6033-4c9d-861b-aff50e4a0e33/1/2l7eZe_t7t-MigSyRaOl32OmnoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:16:a0:3d:1b:10:5e:28:28:21:11:60:3f:51:51:c9:e6:a2:
3b:9e:a5:e6:70:1c:b8:c0:4f:42:ef:78:b6:92:0b:11:b0:2a:
2e:7a:1f:fa:be:29:f5:df:03:43:0b:25:6d:21:f8:e9:be:58:
0b:17:bc:e2:24:8f:e9:ca:c6:99:66:46:16:28:18:28:88:cb:
d2:10:14:2c:3e:1a:d0:4b:a5:e6:f6:ee:40:4c:37:89:e5:00:
0a:3e:e0:cb:69:71:61:ae:e0:46:3c:34:cb:85:28:47:f5:a1:
b9:30:7f:80:58:a0:3b:d7:33:28:46:00:16:1e:c8:21:04:ef:
46:ad:b7:da:53:fd:fe:c0:30:fd:17:87:8d:83:9f:a4:cb:90:
06:f7:27:22:b7:d2:bd:39:8f:f5:b7:c3:b4:b2:67:00:f9:70:
84:e3:99:04:78:63:1a:af:25:bc:8d:06:36:91:fb:58:a4:0f:
39:bd:00:76:b1:d1:33:5b:2e:ff:db:0f:f0:da:91:ec:05:59:
42:f0:6d:97:d9:33:44:b5:f2:92:91:ef:75:25:71:49:91:a3:
0f:bd:87:95:8b:0f:06:95:5c:7c:a6:b4:18:10:a8:f0:bd:2a:
7b:d8:77:e6:a5:0b:42:2a:1f:d1:fb:23:fe:2a:71:f0:67:94:
f5:9f:86:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:11 2025 by rpki-client