Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
File: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft (raw, json)
Hash identifier: RPXFrLebe9zoffI53RDG50j0QhqW53vnOsvw63rxhKY=
Subject key identifier: 77:4C:94:DC:98:08:E5:17:81:DF:07:2A:35:91:67:98:56:BB:54:BC
Authority key identifier: DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
Certificate issuer: /CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Certificate serial: 019A4DE21847149EFD236875E606410CEBDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
Manifest number: 054E
Signing time: Tue 04 Nov 2025 08:00:54 +0000
Manifest this update: Tue 04 Nov 2025 08:00:54 +0000
Manifest next update: Wed 05 Nov 2025 08:00:54 +0000
Files and hashes: 1: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl (hash: KcWfGb7BZwmBKBV1cH6T+c4vkX8lDjMouSy5w4TlfSM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e2:18:47:14:9e:fd:23:68:75:e6:06:41:0c:eb:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Validity
Not Before: Nov 4 08:00:54 2025 GMT
Not After : Nov 5 08:00:54 2025 GMT
Subject: CN=774c94dc9808e51781df072a3591679856bb54bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8d:fa:40:62:b2:4b:2b:c6:c1:91:65:1f:3c:
9d:b9:ad:cc:20:e8:d7:31:9e:33:25:14:59:b9:0d:
c9:ac:65:e5:10:9c:ee:55:ca:56:d9:8d:e5:28:38:
07:43:75:b9:47:16:66:0d:e1:2f:56:00:f8:88:0c:
ab:49:0d:93:b0:b5:75:06:8d:a1:ce:97:df:4d:69:
19:35:08:8b:04:3a:45:b0:bd:0d:65:b9:06:e9:2a:
a3:12:d6:c5:c6:ac:cc:90:71:06:00:80:6d:be:0c:
1a:2f:76:61:7f:72:af:02:1f:5e:de:a2:e7:66:23:
d3:c0:3d:9f:c0:af:d8:c9:4b:e4:c6:c5:b7:26:c1:
c8:52:c1:fd:0e:37:3f:5e:f2:cb:e6:97:86:6f:c4:
73:20:be:9e:14:30:b7:7d:c0:2e:53:32:bf:8d:05:
84:8f:0a:fd:d5:00:d7:1c:aa:d3:62:45:c0:35:70:
56:58:39:20:4c:f9:5c:22:3b:b6:b2:cc:b6:fd:36:
97:70:5a:40:eb:69:47:34:ab:f4:28:f8:7a:ab:aa:
48:cf:a9:14:e4:42:dc:3d:79:20:16:dd:8f:99:9b:
60:90:09:5b:0c:cf:55:b8:aa:0b:c7:7d:47:ec:89:
b3:07:95:a0:0e:a2:32:75:82:9b:a9:c8:0b:5b:78:
ae:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:4C:94:DC:98:08:E5:17:81:DF:07:2A:35:91:67:98:56:BB:54:BC
X509v3 Authority Key Identifier:
keyid:DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:93:f5:95:54:c2:56:a3:df:5a:5e:c1:fc:11:9e:5f:05:f9:
e0:80:b6:29:a4:46:90:50:7a:e6:55:fe:10:e6:f6:63:2a:e4:
a9:a3:7a:78:c9:e4:d7:9e:3e:2a:79:43:8b:87:e9:7f:87:9d:
49:e4:15:c2:68:8e:78:e4:7b:39:ea:03:58:dc:21:da:8e:c4:
f0:c8:60:75:04:d1:27:84:b9:60:24:80:d1:f3:5e:38:ca:74:
8d:3a:db:72:0c:f7:0d:9e:c2:b6:e5:72:5c:50:ab:64:a9:15:
25:54:cc:04:4d:40:6f:10:3f:60:8b:9c:68:09:b0:97:f7:ed:
dc:4c:57:cb:98:b4:95:b6:96:7d:49:8b:37:b0:79:77:fb:d2:
f1:33:a4:80:d6:54:e9:24:6c:52:38:a5:99:a9:f5:2e:7e:ae:
64:eb:fd:54:34:30:49:a9:69:ab:57:51:0f:00:e5:39:ae:d7:
1d:9b:3c:0e:62:6b:f2:2c:3f:e8:e5:08:3f:4b:24:5a:86:66:
07:88:fe:e9:eb:45:65:f4:08:e2:89:d7:40:60:f7:34:7b:5b:
d0:5e:d2:07:2a:74:91:b2:a7:b5:e1:3e:b5:01:bb:a4:1a:61:
14:e1:f0:22:d5:16:b5:33:60:ba:1c:13:fb:e8:2a:fd:11:92:
ee:34:a4:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:05:03 2025 by rpki-client