Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
File: 2sTLURUIAqQBjMJWrSn1RyBnXtU.mft (raw, json)
Hash identifier: TfAABHgcCwZ1AV46bsYwyAQjqSSTN4Rshq9PodnlKXs=
Subject key identifier: 12:8F:5A:0B:EB:A1:D5:F7:2F:4F:A7:CF:1C:0E:31:E9:23:0F:43:E0
Authority key identifier: DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5
Certificate issuer: /CN=dac4cb51150802a4018cc256ad29f54720675ed5
Certificate serial: 019A4EF52B9FA8B6FE0FC121427CB69B379D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
Manifest number: 1220
Signing time: Tue 04 Nov 2025 13:01:21 +0000
Manifest this update: Tue 04 Nov 2025 13:01:21 +0000
Manifest next update: Wed 05 Nov 2025 13:01:21 +0000
Files and hashes: 1: 2sTLURUIAqQBjMJWrSn1RyBnXtU.crl (hash: HLNNlFZQhE2xv27fZyUa8m8Dr4d6yTWe5ctXjcd0FDw=)
2: 49hgdGQLZzb2UEr0v1DR3B_4G88.roa (hash: ieB3PoGbaENiV1L+4PpT2lhh7W1Z3Cv1HFM+GYljVmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:2b:9f:a8:b6:fe:0f:c1:21:42:7c:b6:9b:37:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac4cb51150802a4018cc256ad29f54720675ed5
Validity
Not Before: Nov 4 13:01:21 2025 GMT
Not After : Nov 5 13:01:21 2025 GMT
Subject: CN=128f5a0beba1d5f72f4fa7cf1c0e31e9230f43e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c9:78:99:8e:51:28:aa:0a:b4:0a:e2:df:d3:
dc:a9:05:ad:1f:eb:95:de:86:73:4f:81:0e:67:5d:
41:f5:2b:34:47:13:ec:48:cc:ec:54:fc:37:68:19:
6a:c3:28:ff:92:93:e3:4e:05:cd:69:78:be:16:53:
3c:72:a9:2d:f0:26:88:78:f8:8e:0d:bc:2e:e0:e2:
8a:d4:2a:3b:6b:81:fe:28:8c:d4:94:c8:1e:c4:00:
4e:90:d8:58:69:28:c0:dd:62:dd:d6:94:dc:81:af:
98:cf:7f:e8:95:7a:94:8f:0a:06:47:db:1c:55:ae:
30:0f:f5:3d:db:c3:9f:61:8f:8f:d1:99:86:1c:af:
8f:68:d4:65:a4:0a:ba:c2:d9:54:d5:09:73:07:43:
99:4e:36:c2:85:25:32:e7:0a:a2:5e:79:26:e5:84:
fc:03:dd:ff:9c:57:1d:6e:a7:49:be:93:0a:c5:52:
1c:2a:9c:fc:d2:29:59:c5:10:71:83:94:da:cf:1b:
e2:b2:14:88:dd:ee:c5:8d:46:f2:a9:67:82:78:68:
99:4b:ed:7e:5a:f4:cb:9f:1a:ad:8b:83:39:89:44:
d4:b8:c4:da:06:30:0d:57:ba:fa:fe:c5:64:1c:41:
28:31:1c:3c:f9:9b:9e:15:ab:76:43:83:ae:e4:78:
8b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:8F:5A:0B:EB:A1:D5:F7:2F:4F:A7:CF:1C:0E:31:E9:23:0F:43:E0
X509v3 Authority Key Identifier:
keyid:DA:C4:CB:51:15:08:02:A4:01:8C:C2:56:AD:29:F5:47:20:67:5E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sTLURUIAqQBjMJWrSn1RyBnXtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/36e838-1bbf-4cc0-b5da-4180f9e30945/1/2sTLURUIAqQBjMJWrSn1RyBnXtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:91:ef:4c:c5:ce:56:cb:f0:0f:05:8d:02:49:6a:c1:fd:0b:
da:1c:5e:40:07:24:19:22:21:55:f9:1d:19:ec:28:64:20:51:
cc:d8:36:19:79:e6:87:a1:42:13:23:4d:1a:8c:c6:95:34:60:
1f:d5:20:49:70:92:81:c2:3b:03:fd:89:5a:3a:76:86:d6:d3:
ea:89:98:9f:5c:4f:39:45:86:55:e3:ff:ac:59:72:16:f3:4b:
c1:30:31:e8:77:3e:43:ac:32:f2:e8:0e:01:61:fe:10:bf:46:
ff:3f:60:8e:40:1b:24:99:0b:53:31:5c:06:9c:8e:72:81:ee:
5f:a3:93:6d:00:3f:6b:2b:c6:97:d8:01:56:0b:f4:a7:1a:01:
38:ed:0e:95:4b:b2:85:57:20:85:69:e1:e1:7b:b9:63:04:ec:
d2:1f:0b:67:3e:77:ac:96:f6:8a:f7:fa:7a:4f:b1:0a:c9:d8:
9f:0e:52:64:0c:a3:6f:43:11:9a:77:b2:8f:a9:98:f5:29:de:
20:7e:8e:10:d2:40:31:1c:94:df:80:1b:06:06:ff:88:12:67:
f6:44:4b:a6:fa:d8:5e:dd:ca:06:02:df:a7:17:ef:1a:42:9c:
c4:67:e6:af:06:aa:b9:2f:17:bf:a1:6e:8a:91:99:fd:07:f7:
4c:6b:44:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:43:42 2025 by rpki-client