Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
File: 2JFWCWVvCPeijSS3xLqbY5ygsAk.mft (raw, json)
Hash identifier: oVYLj4DeNcwQuB3dwn5ya5enC4gBgWHM3QdGN2mFZPQ=
Subject key identifier: 6A:5F:17:78:30:68:2E:74:52:22:19:27:7E:4B:A8:2C:90:52:09:BC
Authority key identifier: D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
Certificate issuer: /CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Certificate serial: 019A4F2B522DE6B303ADAA69038D22021E77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
Manifest number: 1172
Signing time: Tue 04 Nov 2025 14:00:30 +0000
Manifest this update: Tue 04 Nov 2025 14:00:30 +0000
Manifest next update: Wed 05 Nov 2025 14:00:30 +0000
Files and hashes: 1: 2JFWCWVvCPeijSS3xLqbY5ygsAk.crl (hash: /z+wCrFNVkCdymz1grBzExsMXrjtsW+KwOu/0fD01HM=)
2: Wi60RxjWIlDPb3_szVmN-Gl0qoE.roa (hash: IAjzw2r7E4lx4vW0Aq4BO6OsCC7MgvRuI1axCmQxfb0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:52:2d:e6:b3:03:ad:aa:69:03:8d:22:02:1e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Validity
Not Before: Nov 4 14:00:30 2025 GMT
Not After : Nov 5 14:00:30 2025 GMT
Subject: CN=6a5f177830682e74522219277e4ba82c905209bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1f:8b:be:4d:e2:70:8b:8f:29:4e:98:87:97:
9d:d6:c5:b2:d6:aa:d5:fb:de:ca:09:2d:ae:6c:08:
e9:91:e3:46:c3:66:47:98:df:a9:3f:ea:98:43:a8:
a1:40:de:3e:df:41:40:a7:f2:fe:68:43:13:1b:e6:
b8:18:9b:9c:60:13:d3:cb:3f:d0:d6:0e:12:80:ba:
cd:83:25:21:7f:65:84:a9:ea:26:2b:ec:06:26:de:
e7:69:bb:4c:83:0d:fd:8e:f5:b2:20:72:d4:bf:5c:
3e:f0:3b:c1:e7:f4:b3:47:a5:09:de:f2:65:69:66:
0f:f6:39:a3:29:15:64:81:27:c0:59:bb:e8:25:4f:
a7:4c:0b:43:7b:42:56:ca:80:e4:f8:40:c6:bb:cd:
f4:ab:eb:da:40:33:01:2b:4c:03:e7:65:9a:b9:11:
ba:96:22:5b:d1:f8:de:85:21:a4:39:d1:a4:8f:ca:
f0:91:64:7f:07:a9:e2:50:62:6b:6c:a6:e4:9a:0d:
c9:38:eb:87:9a:cd:b9:11:74:f7:b4:05:a9:91:5c:
d0:52:f4:96:33:98:31:3d:c5:8b:25:e8:ce:5e:18:
89:d5:12:a4:20:c9:11:04:d9:37:cf:b3:c4:fe:aa:
21:4c:fa:a1:01:d2:63:90:87:fa:d9:61:78:42:8a:
62:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:5F:17:78:30:68:2E:74:52:22:19:27:7E:4B:A8:2C:90:52:09:BC
X509v3 Authority Key Identifier:
keyid:D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:82:89:40:82:2f:6b:f1:80:f1:0c:1b:62:bb:84:48:13:40:
a6:5d:10:20:b6:ce:a3:ad:16:74:28:79:93:7a:c8:60:a7:e7:
44:24:27:0f:87:df:f4:0c:8f:2c:23:e0:17:83:a5:76:67:ef:
c1:7a:7a:81:12:43:ef:dc:09:a9:92:49:8e:2f:fb:b9:2d:46:
da:b4:1a:1c:c3:5e:3f:4c:29:b3:e1:26:a1:51:60:f6:2c:08:
c2:36:83:d0:a6:a5:f8:28:0c:2a:1f:9c:86:6b:58:c1:0d:01:
bd:e7:17:cc:d9:3a:ae:bd:a6:a6:a8:49:09:d0:31:c5:b0:a3:
70:98:18:9c:b0:91:15:66:01:50:ab:e7:6c:d6:7a:fa:66:6f:
ee:8a:bd:b6:84:f7:63:06:d0:35:bd:14:97:dc:43:dc:d1:98:
75:9e:83:4d:5f:7a:22:ae:37:b8:65:e6:95:ba:99:7c:bd:49:
5d:be:31:7a:e6:ed:31:38:35:c6:32:1d:3c:94:3a:06:47:0b:
c5:fa:4b:94:78:6c:c7:c6:84:27:4d:ef:bf:f4:8b:3a:4e:ad:
ca:71:85:bc:10:18:d4:7b:cf:3a:33:87:c2:36:5d:cb:86:1e:
64:92:cc:5d:bf:c7:75:13:e4:ef:9a:b1:a6:a0:a6:fd:78:52:
1d:86:91:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPK1It5rMDrappA40iAh53MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4OTE1NjA5NjU2ZjA4ZjdhMjhkMjRiN2M0YmE5YjYzOWNh
MGIwMDkwHhcNMjUxMTA0MTQwMDMwWhcNMjUxMTA1MTQwMDMwWjAzMTEwLwYDVQQD
Eyg2YTVmMTc3ODMwNjgyZTc0NTIyMjE5Mjc3ZTRiYTgyYzkwNTIwOWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyR+Lvk3icIuPKU6Yh5ed1sWy1qrV
+97KCS2ubAjpkeNGw2ZHmN+pP+qYQ6ihQN4+30FAp/L+aEMTG+a4GJucYBPTyz/Q
1g4SgLrNgyUhf2WEqeomK+wGJt7nabtMgw39jvWyIHLUv1w+8DvB5/SzR6UJ3vJl
aWYP9jmjKRVkgSfAWbvoJU+nTAtDe0JWyoDk+EDGu830q+vaQDMBK0wD52WauRG6
liJb0fjehSGkOdGkj8rwkWR/B6niUGJrbKbkmg3JOOuHms25EXT3tAWpkVzQUvSW
M5gxPcWLJejOXhiJ1RKkIMkRBNk3z7PE/qohTPqhAdJjkIf62WF4QopivQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGpfF3gwaC50UiIZJ35LqCyQUgm8MB8GA1UdIwQY
MBaAFNiRVgllbwj3oo0kt8S6m2OcoLAJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkpGV0NXVnZDUGVpalNTM3hMcWJZNXlnc0FrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy8yMGU4ZTAtNjhkMy00ODllLWJjZjMt
ZmU0YjVlMzQ2ODQwLzEvMkpGV0NXVnZDUGVpalNTM3hMcWJZNXlnc0FrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy8yMGU4ZTAtNjhkMy00ODllLWJjZjMtZmU0YjVlMzQ2ODQw
LzEvMkpGV0NXVnZDUGVpalNTM3hMcWJZNXlnc0FrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAboKJQIIv
a/GA8QwbYruESBNApl0QILbOo60WdCh5k3rIYKfnRCQnD4ff9AyPLCPgF4Oldmfv
wXp6gRJD79wJqZJJji/7uS1G2rQaHMNeP0wps+EmoVFg9iwIwjaD0Kal+CgMKh+c
hmtYwQ0BvecXzNk6rr2mpqhJCdAxxbCjcJgYnLCRFWYBUKvnbNZ6+mZv7oq9toT3
YwbQNb0Ul9xD3NGYdZ6DTV96Iq43uGXmlbqZfL1JXb4xeubtMTg1xjIdPJQ6BkcL
xfpLlHhsx8aEJ03vv/SLOk6tynGFvBAY1HvPOjOHwjZdy4YeZJLMXb/HdRPk75qx
pqCm/XhSHYaRcA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 17:56:31 2025 by rpki-client