Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
File: 2KPKzfjzNRS-Or3FLFDshkZ16VU.mft (raw, json)
Hash identifier: 8wtKZGEdEzkWF6TCF2kvc88zlxkagQxCCmTTcNBFDIw=
Subject key identifier: 83:AB:ED:83:6F:27:A1:5A:C1:70:75:28:C5:4F:44:B1:CA:F6:06:3C
Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Certificate serial: 019A4EF43467EFA19272406661CE539F1851
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
Manifest number: 0C65
Signing time: Tue 04 Nov 2025 13:00:18 +0000
Manifest this update: Tue 04 Nov 2025 13:00:18 +0000
Manifest next update: Wed 05 Nov 2025 13:00:18 +0000
Files and hashes: 1: 2KPKzfjzNRS-Or3FLFDshkZ16VU.crl (hash: p9/PQI4SsYlcHdWRtUJ4UROxSngVkSX9LoGgrtMfhfo=)
2: YfAgsC_cdxTTdTc3lRuKLUA9Ek4.roa (hash: 6JxCw6QKy553BkYrq5SFqTFyUQePShSh+1QhYyHxmes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:34:67:ef:a1:92:72:40:66:61:ce:53:9f:18:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955
Validity
Not Before: Nov 4 13:00:18 2025 GMT
Not After : Nov 5 13:00:18 2025 GMT
Subject: CN=83abed836f27a15ac1707528c54f44b1caf6063c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4a:a7:2f:f5:05:9b:ed:7b:38:36:83:97:84:
84:ee:57:ae:21:f1:1c:2d:79:91:0e:9c:ab:41:b4:
9c:2f:f6:dd:bd:ec:d4:11:11:ea:7e:e0:6a:b0:2c:
e9:0f:97:e0:92:69:7e:c6:33:d3:be:3a:fa:5d:37:
d3:76:d1:4c:62:32:e0:ee:80:7b:4c:5a:17:e0:db:
7d:64:61:61:5a:42:34:a3:d9:79:cc:3b:ff:30:da:
9b:71:a8:69:3e:a2:1f:49:69:4a:31:4a:b4:34:ed:
3e:11:f4:12:8e:a2:9a:47:d5:12:d4:d7:6a:64:40:
ff:d1:ca:be:59:d7:93:40:cb:0c:59:50:55:db:69:
26:fa:0b:78:31:f6:60:02:52:15:45:80:c8:d8:c6:
98:d9:2b:80:4c:c9:77:b5:e9:24:5d:b4:16:28:2a:
75:8f:3e:82:b4:b3:f4:1b:73:50:15:47:c7:9d:93:
c1:54:36:f8:de:9d:5a:b5:3c:db:4d:2d:90:5a:57:
b1:6a:a4:e7:c7:b4:40:6d:ea:14:c2:51:ce:74:76:
52:80:0a:55:74:01:4d:84:bd:8b:be:49:21:ca:25:
8c:02:94:d4:1c:a7:93:08:21:cb:8b:3a:4d:9f:4e:
e8:b5:0e:72:4d:77:7e:01:d1:c7:5c:47:2c:29:da:
13:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:AB:ED:83:6F:27:A1:5A:C1:70:75:28:C5:4F:44:B1:CA:F6:06:3C
X509v3 Authority Key Identifier:
keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:a3:ab:8f:69:70:0a:55:67:3d:d8:53:33:d9:cd:c2:63:a3:
12:fd:b2:b7:17:a4:de:4f:c8:ac:e0:4d:d5:bd:b9:38:10:84:
e2:28:f4:2c:97:77:2a:2a:e3:41:39:c5:3e:ce:34:54:5c:b4:
6f:e2:39:ed:fa:ad:40:56:62:e9:4d:93:34:31:b7:d5:01:f8:
39:27:3e:a9:b8:87:bd:0b:fc:a9:02:bb:0f:8d:aa:ba:03:85:
2f:9c:ff:dd:08:ab:af:04:e7:6e:0b:66:bc:e9:4c:b6:e9:12:
4a:46:9f:8c:eb:31:fa:d5:4f:ae:69:d5:49:fc:94:d1:31:fb:
9b:1d:18:f8:6b:cd:58:e8:12:55:b1:6a:74:e8:e4:cc:15:5e:
a1:cb:81:0f:99:63:96:51:12:6f:7d:2d:c3:ca:a5:85:81:19:
71:b5:26:8d:3a:72:d8:9f:a9:99:3f:80:05:5f:93:6b:b4:57:
3b:dc:e2:2b:9e:c6:a2:15:ee:28:0a:84:9f:f3:10:a3:b5:63:
14:14:a7:a7:2a:83:b4:ae:03:92:cd:00:b5:85:23:24:db:f2:
5b:09:18:a3:16:56:5a:73:ac:f0:45:8a:93:df:b5:8a:67:91:
d8:b9:ac:95:80:0f:9e:d8:6a:fb:c3:bd:53:c3:5f:2a:23:ec:
5d:bb:3f:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:22:50 2025 by rpki-client