Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
File: 2J8W9XSSQzePgUyUskA010s5J98.mft (raw, json)
Hash identifier: C28AI+FntjNYFmAYsGFrdGDBtzVQdVREnErpECvWKnc=
Subject key identifier: D6:76:AB:F5:85:E9:AF:1E:95:9B:2F:44:08:1C:8E:3C:63:8D:F6:BE
Authority key identifier: D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
Certificate issuer: /CN=d89f16f5749243378f814c94b24034d74b3927df
Certificate serial: 019A4F61FA208887620768F38457C347A22D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
Manifest number: 03BB
Signing time: Tue 04 Nov 2025 15:00:12 +0000
Manifest this update: Tue 04 Nov 2025 15:00:12 +0000
Manifest next update: Wed 05 Nov 2025 15:00:12 +0000
Files and hashes: 1: 2J8W9XSSQzePgUyUskA010s5J98.crl (hash: zW0wju3f/WWlLHL51cgUIUp1ziDEmjr2kJzr98KDuwE=)
2: S9_pIBHq75Wq7oGW-jAli5gxMaE.roa (hash: cpq5fUvjVAhKKLO06wh9HRGgk0x/xpun3Cli9g36l8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:61:fa:20:88:87:62:07:68:f3:84:57:c3:47:a2:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89f16f5749243378f814c94b24034d74b3927df
Validity
Not Before: Nov 4 15:00:12 2025 GMT
Not After : Nov 5 15:00:12 2025 GMT
Subject: CN=d676abf585e9af1e959b2f44081c8e3c638df6be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e7:e2:9d:89:04:b0:4d:a7:cc:24:f8:7a:31:
e6:d1:87:94:a8:64:2d:25:da:67:22:d7:06:6e:38:
c3:4b:7c:d3:5a:fa:b7:29:d3:ad:e0:e8:e6:6d:11:
28:02:4a:7f:fb:20:5f:60:f5:df:90:a8:ca:0a:31:
3f:e2:56:0e:ca:81:28:b0:6b:21:53:88:e6:8a:fc:
41:3a:3d:01:f2:11:cc:95:ef:76:e2:45:e1:78:ce:
02:a5:76:51:04:c2:db:99:35:b1:2b:76:c2:d2:79:
33:d8:b7:c6:61:2e:ff:1c:d8:a8:0e:4d:8c:a6:c0:
80:59:60:18:85:0b:29:b0:31:5b:de:fd:72:94:c9:
06:4c:b8:a0:b9:68:63:6d:86:cb:a2:8b:86:5e:a0:
6f:38:3a:95:0d:48:53:fd:21:8a:f7:38:ce:5e:b6:
9d:b1:18:a7:68:1a:74:93:f8:86:65:56:40:0d:24:
35:ed:b5:6c:23:9b:51:39:27:9e:c2:7d:19:e1:16:
18:81:47:0a:f1:5c:c9:b2:2f:75:1c:07:81:8a:66:
55:22:e8:61:42:14:1f:52:f2:bb:6a:66:8e:eb:96:
0c:c1:17:ae:e5:3c:69:35:58:0d:19:46:a6:e2:d0:
22:e7:18:6e:32:56:88:90:ce:b3:87:a6:cf:6b:91:
eb:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:76:AB:F5:85:E9:AF:1E:95:9B:2F:44:08:1C:8E:3C:63:8D:F6:BE
X509v3 Authority Key Identifier:
keyid:D8:9F:16:F5:74:92:43:37:8F:81:4C:94:B2:40:34:D7:4B:39:27:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2J8W9XSSQzePgUyUskA010s5J98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/797e65-3da0-4d6e-b695-346bd973c843/1/2J8W9XSSQzePgUyUskA010s5J98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:7e:3a:69:30:05:83:30:13:f6:d2:e2:79:72:33:3e:51:3d:
75:af:78:54:fa:1d:67:0f:1e:a1:7c:45:cd:99:97:97:52:05:
8b:e8:44:08:9f:59:f1:81:58:77:80:96:40:51:bf:05:ef:a9:
63:7d:a1:a1:12:5e:4b:af:2e:03:9a:c7:d9:cb:0c:dd:77:1a:
9a:7d:1e:bc:8a:4f:7a:f2:5f:d3:54:b3:64:98:21:3d:51:c6:
8a:90:42:a2:17:7f:33:2a:12:2c:62:a2:7e:8e:88:a8:2e:82:
81:2f:9a:83:61:7e:cc:eb:8a:67:df:c7:d0:8a:b0:a8:f9:04:
f8:95:de:9c:e0:e0:cf:ae:73:78:b9:ac:f2:3e:c9:02:f6:6f:
07:24:8e:c3:77:fe:f4:da:65:ae:56:06:4d:1a:a9:2a:0b:65:
97:83:ab:11:4a:0b:2a:88:c4:76:00:60:4f:2f:c3:b8:26:98:
a9:c6:f7:79:46:5f:27:fd:78:1a:c0:12:15:49:0b:4b:f3:b4:
78:b8:5c:02:4b:25:f5:26:49:9d:04:79:19:0e:a2:ff:d1:e4:
e9:0f:12:d6:77:bd:d6:98:a6:ed:31:7d:d5:74:a9:c1:be:f3:
e8:fb:4e:6d:1b:d1:42:88:8f:ae:c9:12:97:60:ea:cf:d4:b8:
29:54:f3:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:02:00 2025 by rpki-client