Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
File: 2zdeFqGTZ96ZuySsEV0lmioEgaw.mft (raw, json)
Hash identifier: UG8X6Q1GnO9o3UrqPT+eMr7ch+4FH/nvtzX+tgjpcMY=
Subject key identifier: 4E:D8:11:82:FF:3B:CB:12:64:79:69:2A:CF:D9:8E:AE:41:4B:F0:CE
Authority key identifier: DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
Certificate issuer: /CN=db375e16a19367de99bb24ac115d259a2a0481ac
Certificate serial: 019A4EF48290673C505C493DA0BB238514EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
Manifest number: 0CA6
Signing time: Tue 04 Nov 2025 13:00:38 +0000
Manifest this update: Tue 04 Nov 2025 13:00:38 +0000
Manifest next update: Wed 05 Nov 2025 13:00:38 +0000
Files and hashes: 1: 2zdeFqGTZ96ZuySsEV0lmioEgaw.crl (hash: t3gFAOZ9+Gik3ha0JAT48ijO1MuDgKjooRyaq3Cj/g0=)
2: x6hLDer_XW1q_iEu4GXkzkZyC4s.roa (hash: WqVvea5/LNqbNIIZsdml33Mg9/QcNbUM12u8YdmaIWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:82:90:67:3c:50:5c:49:3d:a0:bb:23:85:14:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db375e16a19367de99bb24ac115d259a2a0481ac
Validity
Not Before: Nov 4 13:00:38 2025 GMT
Not After : Nov 5 13:00:38 2025 GMT
Subject: CN=4ed81182ff3bcb126479692acfd98eae414bf0ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2a:87:89:6d:79:70:e2:56:d3:01:ee:96:64:
ce:b8:a9:e2:e6:76:a0:81:ea:ed:a8:60:24:f3:b3:
80:af:1d:cd:c7:23:56:3f:34:12:9f:1e:14:88:7f:
a3:31:02:e3:28:db:fa:67:40:30:6f:a3:66:cf:a5:
f9:4f:24:94:9a:2e:7d:ba:89:60:bf:c9:1b:cb:1a:
a5:6d:df:90:60:41:e8:20:55:90:07:2d:42:47:92:
5a:15:15:96:35:8a:f5:54:97:ef:0d:6c:15:20:c6:
81:72:46:4f:cf:1b:0b:67:84:16:52:3b:f7:1d:09:
45:11:45:20:d4:ec:98:3e:0f:9e:83:0a:da:1b:2b:
e1:ef:94:0e:58:7c:d1:19:0d:f9:c3:d5:14:80:a4:
ef:57:a2:90:18:a4:67:4e:7d:99:17:b8:8c:39:5e:
e2:c6:d4:a5:09:be:fd:05:80:4d:f2:86:27:95:b7:
c1:b9:96:a7:0b:96:08:7e:7a:8e:36:b1:09:af:dc:
bd:62:86:8a:35:5a:b5:8d:99:f5:d4:59:82:47:64:
0b:88:81:f6:1d:1a:ab:25:60:28:69:45:e1:df:70:
e2:36:5b:ad:05:81:da:93:8a:e6:f6:db:6f:a1:1f:
5f:3a:72:53:2f:0b:89:96:31:55:ee:90:6c:8c:05:
aa:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D8:11:82:FF:3B:CB:12:64:79:69:2A:CF:D9:8E:AE:41:4B:F0:CE
X509v3 Authority Key Identifier:
keyid:DB:37:5E:16:A1:93:67:DE:99:BB:24:AC:11:5D:25:9A:2A:04:81:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2zdeFqGTZ96ZuySsEV0lmioEgaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9bc5bc-8f99-42ed-a8ce-5b86ba585922/1/2zdeFqGTZ96ZuySsEV0lmioEgaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:be:da:41:a7:35:3c:86:07:31:b5:43:d2:cd:21:60:8c:b9:
a6:70:c0:76:40:18:d8:44:44:45:65:91:9a:60:05:cb:3f:c7:
1b:38:67:d8:74:bb:16:78:73:08:df:29:a5:19:4a:93:24:51:
77:6e:7c:03:a6:7f:9e:c5:42:77:d7:d7:6c:d0:87:53:2d:4e:
fe:17:b7:06:18:04:4e:bd:e1:c2:a5:0e:83:81:c2:4e:49:b8:
63:c8:be:9b:8d:9b:0f:c2:b4:7d:38:93:bc:77:40:2d:01:75:
fa:07:d8:39:a8:4d:54:29:de:c6:3a:a9:ed:90:62:d5:f4:8b:
01:1e:17:15:30:4d:8b:06:a3:cd:4f:38:98:e1:85:16:6c:a1:
85:f3:52:bb:36:63:f4:1b:51:7a:c8:20:c7:2b:d3:87:e0:71:
9f:ad:56:5d:e4:42:f8:ee:b2:be:d0:01:62:06:8e:35:31:bd:
09:44:6c:5b:10:f4:b6:37:f1:69:ad:62:e5:8a:82:dc:fb:fc:
89:29:0d:e5:fe:db:2d:41:42:2e:52:01:ce:64:bc:41:5a:c7:
3d:d3:e1:eb:88:27:1d:e1:03:f9:08:b6:b2:7e:7c:29:99:a6:
71:b2:7a:fd:57:9d:20:e7:cc:f0:37:0f:c7:74:36:6a:0c:c3:
96:1e:40:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:23:35 2025 by rpki-client