Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
File: 2fGfBczyIhOYRpwL6N3ATOFOE1o.mft (raw, json)
Hash identifier: Zvei8ua9rUhssMYrXvALzOWTmknhChS77Y0tYp+yZYE=
Subject key identifier: 99:B2:AB:17:75:E4:B1:9F:35:3A:78:C1:69:86:43:91:F2:65:90:7D
Authority key identifier: D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
Certificate issuer: /CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Certificate serial: 019A50750E5B9DEC2605FD9AD7B5BA7A1A97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
Manifest number: 12DB
Signing time: Tue 04 Nov 2025 20:00:39 +0000
Manifest this update: Tue 04 Nov 2025 20:00:39 +0000
Manifest next update: Wed 05 Nov 2025 20:00:39 +0000
Files and hashes: 1: 2fGfBczyIhOYRpwL6N3ATOFOE1o.crl (hash: 1ZJfB3LaeelrOK/bIm7rxBOxfIwnXBcVLf19cIIzEqw=)
2: B9-JyKOh9vcA8Yt248kp1OHsLjE.roa (hash: IbF0FRhBYEIf5hZ2KcvfEljtf1YgGGazPG/5I71dHJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 20:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:75:0e:5b:9d:ec:26:05:fd:9a:d7:b5:ba:7a:1a:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f19f05ccf2221398469c0be8ddc04ce14e135a
Validity
Not Before: Nov 4 20:00:39 2025 GMT
Not After : Nov 5 20:00:39 2025 GMT
Subject: CN=99b2ab1775e4b19f353a78c169864391f265907d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f6:9a:48:5f:b7:4c:95:f4:a3:d0:18:ae:2c:
45:ea:8f:db:7a:52:a1:01:b7:73:20:fb:53:30:f4:
51:58:d4:7e:f6:96:b0:13:b3:d3:5e:97:7f:e1:ef:
71:0b:ef:49:cc:22:ad:42:b5:23:65:94:c9:e7:8b:
a5:56:fb:bc:36:64:c3:2d:a8:e4:f1:1c:11:3f:5b:
29:e3:08:8b:36:82:5a:15:5a:1c:72:9c:00:9b:84:
58:ea:4c:95:91:d6:bc:27:65:c1:3e:0f:4f:3e:a0:
92:95:dc:e8:15:68:b9:28:71:d8:2b:79:32:32:46:
14:25:2f:53:72:12:98:3f:ed:59:da:1f:ea:f7:62:
00:c1:9f:e9:a1:46:44:40:92:7c:88:68:f3:db:08:
10:08:a7:e9:dc:b7:f0:65:b4:6b:73:9f:1d:2a:4a:
66:c0:6a:9f:1d:09:f9:c2:7a:59:de:d2:d9:a2:ea:
b4:f4:fb:27:92:e3:03:55:66:a1:89:a0:40:2d:d4:
e6:1c:00:52:91:fa:16:7a:0f:41:3e:34:66:b5:9c:
e7:8c:dd:7c:b2:b7:44:8b:69:b7:96:a5:55:d1:6c:
e0:b7:65:18:ae:d7:5f:a9:91:1c:4a:cb:64:22:c6:
a8:1d:46:16:85:48:2f:4e:1f:6b:16:be:bb:68:37:
f5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:B2:AB:17:75:E4:B1:9F:35:3A:78:C1:69:86:43:91:F2:65:90:7D
X509v3 Authority Key Identifier:
keyid:D9:F1:9F:05:CC:F2:22:13:98:46:9C:0B:E8:DD:C0:4C:E1:4E:13:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fGfBczyIhOYRpwL6N3ATOFOE1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/6e3246-fba6-4e1d-8089-4ff33338361e/1/2fGfBczyIhOYRpwL6N3ATOFOE1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:8f:31:5d:e6:b2:da:e6:91:fe:7c:80:93:f8:f3:59:d6:17:
d5:98:00:ea:3f:dc:48:f1:4d:55:b9:d0:23:be:1d:4a:bd:02:
7b:31:25:05:5f:80:2c:ba:3e:c1:6c:ee:3a:d5:f1:7a:aa:5d:
81:fb:13:ad:07:98:77:2d:8a:4d:45:32:58:23:a7:7e:83:ae:
76:45:e2:7f:44:e5:9e:69:e7:53:32:4a:77:c1:ce:75:44:3e:
cc:19:1d:27:3b:05:1b:60:90:81:1b:d0:3c:72:1b:64:f9:22:
61:37:02:c5:c0:2d:d7:67:1e:9f:2a:05:47:cd:6a:f7:d8:a9:
c8:c6:d1:22:15:24:1b:06:e1:b2:dc:69:52:1e:3e:40:b9:5c:
4e:e4:17:35:b5:58:5d:b6:1e:ff:0b:ed:47:5a:73:32:9e:62:
51:22:b9:e8:68:91:a6:6a:cc:b7:9c:09:da:62:a7:a2:52:d1:
93:6e:56:ac:fe:21:7f:41:f5:6c:57:aa:7f:f2:4f:86:c2:d4:
87:3f:2a:ea:80:fd:d9:90:90:48:c2:30:4f:67:aa:c2:11:da:
9c:c6:80:cf:68:6f:a3:c9:b8:eb:84:06:33:fb:2b:67:4e:5d:
31:85:72:48:c7:52:b5:17:9f:13:e5:0f:40:83:1a:25:f4:e2:
66:69:51:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 04:28:31 2025 by rpki-client