Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft
File: 2rU_myHRPgeOPoRNZF7qhYDxzOE.mft (raw, json)
Hash identifier: 8NySBqzBMarhYHu7LkEUNg6jFuB8pfVJ0ipb6fNQnNI=
Subject key identifier: D4:43:55:32:91:A3:A6:11:64:EB:FC:01:2E:60:CE:31:D7:9E:84:89
Authority key identifier: DA:B5:3F:9B:21:D1:3E:07:8E:3E:84:4D:64:5E:EA:85:80:F1:CC:E1
Certificate issuer: /CN=dab53f9b21d13e078e3e844d645eea8580f1cce1
Certificate serial: 019A503DD2418E4AFC208F97CEC67700EBCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2rU_myHRPgeOPoRNZF7qhYDxzOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft
Manifest number: 1711
Signing time: Tue 04 Nov 2025 19:00:19 +0000
Manifest this update: Tue 04 Nov 2025 19:00:19 +0000
Manifest next update: Wed 05 Nov 2025 19:00:19 +0000
Files and hashes: 1: 2rU_myHRPgeOPoRNZF7qhYDxzOE.crl (hash: xdP/nIA5VoUzIY/NywMiQ4kBcSJxx8TE9kAZF7GdJXQ=)
2: j5EgrSQFNO5qiK2MQhAbkuBr0AM.roa (hash: 3l8vc26sWxsBZ7GtQ/O2+xbOokopGZddgpM84WquKxU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/2rU_myHRPgeOPoRNZF7qhYDxzOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3d:d2:41:8e:4a:fc:20:8f:97:ce:c6:77:00:eb:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dab53f9b21d13e078e3e844d645eea8580f1cce1
Validity
Not Before: Nov 4 19:00:19 2025 GMT
Not After : Nov 5 19:00:19 2025 GMT
Subject: CN=d443553291a3a61164ebfc012e60ce31d79e8489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2a:0b:4e:ee:b1:ce:9f:1a:47:23:b2:ef:4c:
b7:25:d2:11:8d:b1:66:b4:b8:0c:d9:9f:d9:d2:f0:
65:fb:7c:aa:5c:af:3d:e3:11:ee:03:a2:bd:a2:28:
fa:fd:e4:56:ab:9d:88:9d:9a:a0:69:13:0c:48:ef:
8f:78:a4:2a:39:f9:f8:54:82:7b:1d:6b:52:11:58:
f9:c1:da:f7:7f:86:3a:cb:97:8e:22:01:ae:93:80:
b2:44:00:70:b2:e9:5f:64:c4:eb:2f:5c:d9:ab:ec:
c3:40:be:4d:f0:47:94:e9:ce:15:19:78:e4:e8:22:
80:3a:ea:14:14:d1:3a:43:8a:0e:d9:f8:dc:3f:53:
3d:0c:47:e4:dc:0c:9b:b4:1d:63:fb:b3:12:cc:f9:
a5:a5:58:96:9e:fb:98:c1:ae:89:e7:5d:f5:c5:74:
17:8a:56:9e:12:49:ab:37:d9:64:4f:da:31:63:98:
ef:69:6b:f6:25:2d:41:81:f2:3f:71:32:2e:2a:e7:
e0:c2:35:e4:3e:72:d0:44:b3:2f:4d:dd:c3:d2:9d:
8e:52:7a:11:b6:36:22:a6:92:58:9f:07:0c:4c:5e:
5b:3d:14:2c:81:27:9d:7f:dc:13:12:82:ff:cc:7f:
34:b9:96:a3:7f:00:bb:f4:bd:24:c5:60:ed:36:02:
6c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:43:55:32:91:A3:A6:11:64:EB:FC:01:2E:60:CE:31:D7:9E:84:89
X509v3 Authority Key Identifier:
keyid:DA:B5:3F:9B:21:D1:3E:07:8E:3E:84:4D:64:5E:EA:85:80:F1:CC:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2rU_myHRPgeOPoRNZF7qhYDxzOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:aa:12:ee:5a:bc:b7:3a:9c:f6:eb:6b:82:0a:c2:d6:5c:45:
61:e4:64:f0:38:d8:23:fc:21:13:df:02:59:f8:8a:ec:55:fc:
b7:ca:72:e6:36:44:b1:af:5d:5f:7d:f7:f7:01:43:77:d5:bc:
0d:9c:7a:66:da:c0:45:44:43:50:a9:cc:cd:25:ff:49:64:e9:
fe:0d:bb:29:9d:b2:55:b1:50:a5:7b:2b:72:1d:a5:79:bc:01:
bf:7f:3f:98:35:df:62:df:77:e1:57:e4:6c:1b:46:03:9c:4e:
77:1b:22:95:4c:ec:28:fd:4a:e2:3f:05:71:6e:25:ca:59:af:
38:8f:43:d1:f3:c0:3c:cb:ad:aa:5d:a0:30:c6:31:9e:a2:3c:
bd:ce:8e:e4:42:a3:ac:ec:68:b9:91:06:30:5d:dc:3b:49:65:
79:8f:b6:da:97:9b:c4:9d:a3:9b:50:cf:18:4b:b1:0b:7b:13:
d1:cb:3f:f2:3d:c9:cd:fa:00:21:90:7a:d4:0d:e7:a5:c4:96:
ec:9b:89:71:8e:72:84:f7:3f:c2:84:71:62:d0:ae:81:94:a8:
8c:34:27:de:76:19:24:6a:0b:e4:28:1e:f9:c6:64:f2:10:e7:
f8:16:4c:da:3f:27:69:12:f4:d8:79:6f:b5:55:a4:42:ca:44:
9b:eb:72:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:44:16 2025 by rpki-client