Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: GfH2w+PeyOw6pW2aPrXoUh8S2l5VtyIdaL0JJhUmAKE=
Subject key identifier: 2D:BA:92:38:EC:6F:ED:15:77:3E:F7:18:01:E8:3A:5C:19:03:68:3A
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 019A4DAB0B07982F70C281EC1D50DD2A4E43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 166F
Signing time: Tue 04 Nov 2025 07:00:46 +0000
Manifest this update: Tue 04 Nov 2025 07:00:46 +0000
Manifest next update: Wed 05 Nov 2025 07:00:46 +0000
Files and hashes: 1: WWNEma98vqvt3aWub4KvZrisRPY.roa (hash: 8ej/FxtmoHvT2+4JYPncO9OF+5JwUWMEm2sRynTw/0U=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: rY0ChS+MDOffJqmJrr7iCgfZJdjEdvuEN2xiUhih3s4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:ab:0b:07:98:2f:70:c2:81:ec:1d:50:dd:2a:4e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Nov 4 07:00:46 2025 GMT
Not After : Nov 5 07:00:46 2025 GMT
Subject: CN=2dba9238ec6fed15773ef71801e83a5c1903683a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:17:d7:22:99:26:f8:53:9c:89:1d:79:da:f4:
3d:67:94:5e:b4:6b:f4:8a:52:3b:bc:ef:66:f5:42:
cd:f7:e4:cf:12:70:f9:90:01:cf:6a:32:1d:76:d8:
14:83:f0:89:46:62:99:af:96:31:c1:0b:4b:88:0c:
06:51:99:cf:cc:c1:2f:75:c4:fe:cd:e0:14:17:8d:
6d:30:7c:a0:9f:dc:db:69:f3:8b:ce:a5:86:ed:7e:
e6:9c:99:76:c6:39:34:31:18:cb:cc:89:1b:05:7e:
b9:6d:01:a9:ac:3e:2a:bc:f4:d8:43:b9:fe:4b:e6:
4e:a1:94:9a:df:53:93:1a:37:59:4c:c6:83:b3:39:
ce:36:90:7c:b7:8c:f5:b4:7a:9d:72:d0:a5:f7:54:
52:1b:79:32:61:1e:42:49:67:fd:73:b5:9c:d0:0d:
b6:63:eb:b4:f8:59:1b:19:c9:59:49:4f:4e:75:6b:
9f:96:8a:6a:b5:37:48:b1:18:c7:9a:14:70:e0:00:
04:18:b4:19:a4:f8:4c:f9:e8:d3:f1:6c:54:af:02:
ee:04:2f:41:5a:8a:48:86:74:e6:a9:7a:de:e8:91:
6a:21:63:8a:20:97:49:40:b8:f9:61:a4:68:a6:93:
ab:29:82:00:ea:04:2e:71:aa:51:b3:a4:7b:bb:5f:
7c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:BA:92:38:EC:6F:ED:15:77:3E:F7:18:01:E8:3A:5C:19:03:68:3A
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:a7:d4:05:30:da:b7:01:d9:d8:c7:27:b4:f6:6c:4d:64:eb:
b7:1f:47:0a:c6:87:48:17:6c:f4:1e:1c:8c:3f:81:da:4d:d6:
db:f6:21:85:f1:8a:2a:85:ac:8e:26:cb:65:c9:7b:fa:4d:c7:
93:a5:d1:62:e9:38:18:3b:ed:e1:67:0e:d1:69:ef:c6:5a:04:
26:23:18:d5:12:f2:b1:f4:1f:9b:ae:1a:6c:07:48:85:c0:a9:
96:76:34:ce:17:61:78:c6:bd:08:b3:1d:74:3f:38:d8:ae:5d:
44:52:19:5d:5d:ec:59:1d:00:8c:96:e7:d9:66:12:1e:9a:42:
d1:36:ff:a7:76:b7:7b:24:33:aa:ad:61:83:0c:d0:27:4a:a6:
f0:a8:1d:ab:8f:1c:2a:28:50:82:69:f7:3a:c2:1f:e4:6a:85:
50:47:46:2e:8d:dd:62:74:a4:ac:b9:29:99:21:7f:64:c0:07:
d6:0e:48:fc:21:32:ed:40:83:d4:1b:f1:14:5b:06:1c:e7:28:
c7:73:10:ca:6a:e4:bf:4d:de:cb:94:e4:21:02:d3:91:32:16:
0e:2d:56:e0:3a:4b:e4:37:05:0c:a1:0f:82:95:6d:d9:41:10:
bf:b8:9b:3e:f7:5f:25:8a:2c:da:a7:3b:4f:8f:e0:53:77:0c:
34:c1:dc:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:08:30 2025 by rpki-client