Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
File: 2gszzdt5m3vPXT3OAE_bqMPoZP8.mft (raw, json)
Hash identifier: 4dyXKOh9k6mi94/OK05l06GKs81jfph1lCpgCx6rmPY=
Subject key identifier: 29:14:71:83:30:C3:2E:E9:B9:5A:B8:6A:29:44:99:82:B7:27:B7:CE
Authority key identifier: DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
Certificate issuer: /CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Certificate serial: 019A274264AB7E1BCC44AAA25E1BCF2EA33E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
Manifest number: 0D62
Signing time: Mon 27 Oct 2025 20:00:53 +0000
Manifest this update: Mon 27 Oct 2025 20:00:53 +0000
Manifest next update: Tue 28 Oct 2025 20:00:53 +0000
Files and hashes: 1: 17FLk26rZWNpnvEJucbEAG-7zqY.roa (hash: qMmpcRGKwOqOR5+GsVwNkgRbdBAdNorVpaMiale+nXI=)
2: 2gszzdt5m3vPXT3OAE_bqMPoZP8.crl (hash: 6B7yOVptCFpng7TOxWUV4RUvjhJ/GYKD6LXqj2LzGZM=)
3: bBGzNd5qGUUIPYH3-5zWMnwwyJg.roa (hash: 290Z2J6Jo9xanYpdqpciKr53wSmtU/PW4k3Qs+NnOTs=)
4: k29cbE30TGhu-1q8rRu7-jpqTg4.roa (hash: 9mQL8HUgIQzEZ7MXmoS/sUavd/K/UaaalJ5/ztoLSTk=)
5: s7mUu7WrVHVPJEBCCdi0H3bHpis.roa (hash: ExGJpFM76OJZURK1GFJNiBKKffY4pIrBrUBBm9tcC8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 20:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:27:42:64:ab:7e:1b:cc:44:aa:a2:5e:1b:cf:2e:a3:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Validity
Not Before: Oct 27 20:00:53 2025 GMT
Not After : Oct 28 20:00:53 2025 GMT
Subject: CN=2914718330c32ee9b95ab86a29449982b727b7ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ff:21:1f:bc:8f:30:03:fd:09:b8:1f:5a:be:
50:a5:f0:05:4e:e7:d0:9a:0a:f9:26:8b:86:9b:0b:
07:18:51:54:85:19:96:ee:a1:a3:74:e9:4a:42:24:
4e:f7:3f:10:d4:1c:f7:b8:a1:1c:d5:7b:b3:29:a3:
c2:fb:36:f3:ed:c4:c9:f1:59:66:29:90:cf:c9:d5:
79:c8:7a:42:62:ae:b9:1a:ab:ca:a1:5a:c7:01:19:
a7:dd:5d:2d:f8:d1:87:63:77:43:6a:32:ee:1e:b3:
89:a3:b7:ce:d4:8e:00:b8:e5:59:94:b4:d4:8f:d9:
97:98:a2:3c:2e:98:ab:8b:3c:22:c9:c1:6f:a0:94:
60:45:06:45:2d:e3:1b:6f:bf:60:63:fc:ca:13:1f:
16:b0:78:7f:54:ed:b6:ae:30:05:f0:b4:e7:c1:e7:
ac:38:d8:b5:83:3b:c7:24:2a:88:ad:9f:7f:b2:ce:
3d:66:0b:3e:67:46:9d:3b:b2:2a:35:55:2e:79:a8:
2f:74:94:17:2a:81:45:f0:62:6f:a9:5e:1f:5c:f8:
82:3d:77:b0:db:9e:0f:f9:b3:b2:97:8d:a9:61:0a:
30:f2:67:50:20:af:83:d8:07:3e:6f:d4:2e:df:f0:
f3:4f:d7:f5:54:d6:68:fb:85:a3:59:fe:53:93:75:
da:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:14:71:83:30:C3:2E:E9:B9:5A:B8:6A:29:44:99:82:B7:27:B7:CE
X509v3 Authority Key Identifier:
keyid:DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:35:aa:aa:96:aa:41:ce:55:0d:8e:13:0e:9c:00:bc:a8:35:
d9:c5:df:80:c3:b6:c6:46:14:91:78:96:ff:a4:3e:a0:49:08:
8a:2f:fa:8c:82:f3:fa:8b:e1:88:c7:fd:e9:4b:cc:91:d3:8c:
36:73:08:62:84:4c:2c:01:f3:ab:45:f9:47:0f:5a:3e:77:d9:
08:35:73:5e:4c:03:e9:d9:4b:b2:2c:bf:83:3b:45:93:aa:a8:
3c:ff:61:d7:6e:54:19:f4:70:a1:6c:b7:41:72:cf:0d:a5:ed:
24:81:67:c2:f0:31:43:dd:81:80:b3:4c:37:d8:8b:09:f3:c3:
f5:d2:2f:76:d3:4c:6e:9f:a0:93:04:f9:ce:b8:5d:b3:1b:ac:
ec:65:9d:42:3b:a5:32:a3:2e:ac:e3:e3:ed:b3:36:36:1a:1f:
c1:f2:71:f7:74:75:1c:c6:d8:1e:bc:b0:d4:d4:ed:04:d6:d5:
63:c4:21:05:fc:7c:02:ef:78:b9:72:73:92:df:45:08:0a:73:
30:ba:10:67:46:e1:90:b3:61:db:e3:55:22:95:3c:03:b2:7c:
ec:37:8a:44:56:ae:77:a8:a9:c5:f5:b1:4b:a1:98:a1:26:91:
07:1a:a3:8b:75:ce:a8:94:df:a5:81:66:88:78:99:c8:76:94:
f2:04:37:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 04:47:48 2025 by rpki-client