Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
File: 2RTaVuGpNGSdoClkrBLro0xcuE8.mft (raw, json)
Hash identifier: s/aGZYgp/t+xVU3/tX4oeUaZVvuFsmr7E4lz56e4kLY=
Subject key identifier: 61:54:05:EC:C7:60:43:59:B0:02:8F:6C:CB:BB:49:A7:C2:AD:3E:15
Authority key identifier: D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
Certificate issuer: /CN=d914da56e1a934649da02964ac12eba34c5cb84f
Certificate serial: 019A50AB90FEEE5FC52FC0E8844C1F8F5AB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
Manifest number: 046A
Signing time: Tue 04 Nov 2025 21:00:12 +0000
Manifest this update: Tue 04 Nov 2025 21:00:12 +0000
Manifest next update: Wed 05 Nov 2025 21:00:12 +0000
Files and hashes: 1: 2RTaVuGpNGSdoClkrBLro0xcuE8.crl (hash: ISOAcs+gOG3rgjtZf0rF4XAWRdAswKrjOVT1kSJJrmM=)
2: As7V6ZE1xBs1gl2SXAEbNIUHC00.roa (hash: kQVt6PxymkEnwafOS16jS1OEQiU/aYHOchiiJ14/rGk=)
3: PIhsP1al3YizxN861NowDoYoHI0.roa (hash: R9+qOpDwEb0Q5efJFh94SK/9P5J9FFbPDMd4Z1g9adY=)
4: RVfWb6AeQUrXaw0eh9r6r19sjZE.roa (hash: v4r/LVDf839QcMU4tAbsB+argaU/EH+WPkLUSna1SOM=)
5: h2By371OCvj77wNVdyQcqgznsSg.roa (hash: soUA/0DY5+xPnyfK/0AF2K5yBnM6iGB14VNuRKlaQjI=)
6: yP_dwUj9wkpGZraCJm3_QUlcxSc.roa (hash: PpcRyK/zlLSo8ZccoU5Ov6j3mDsKb8kB7dCU9P4KBZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:ab:90:fe:ee:5f:c5:2f:c0:e8:84:4c:1f:8f:5a:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d914da56e1a934649da02964ac12eba34c5cb84f
Validity
Not Before: Nov 4 21:00:12 2025 GMT
Not After : Nov 5 21:00:12 2025 GMT
Subject: CN=615405ecc7604359b0028f6ccbbb49a7c2ad3e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6d:e4:35:9a:9f:51:9a:53:0f:d2:10:54:a7:
12:a6:60:d9:c7:79:ee:fe:1a:91:b8:be:8f:ae:1a:
92:58:8c:a7:57:65:1c:56:f0:4a:dc:f1:97:bc:60:
30:39:f5:f0:be:dc:1e:aa:86:dc:59:47:d3:17:86:
d2:fc:bf:d0:9a:4b:0d:46:e3:69:30:b4:31:51:5a:
d3:fd:88:8f:15:3b:c4:8c:2c:a9:b5:3c:6a:c1:5d:
76:fc:76:19:03:97:15:82:7b:cd:37:33:73:dd:f5:
3a:55:db:41:e0:96:cd:d6:df:34:86:51:3e:d3:aa:
27:47:bd:ab:a3:a6:49:59:ec:a4:77:28:4a:0d:1f:
ad:00:4f:93:a5:c7:71:1e:3b:11:b0:b0:7a:ee:53:
80:a8:53:b3:7a:d6:ea:13:cb:af:91:9a:51:6c:93:
15:05:1d:13:a9:f7:93:17:b7:5f:0a:6b:2e:f7:97:
ab:5c:ce:96:23:dc:8a:2b:6b:0b:f7:2b:97:54:77:
7b:b4:b5:d1:f6:b1:82:7a:3f:45:ab:3a:2d:45:57:
3c:cf:ec:81:e3:3c:69:15:de:a9:c9:04:6f:53:92:
0a:5a:ff:15:ac:c5:bd:e6:77:27:bb:16:d5:a3:e4:
ff:ac:6a:86:70:d0:7b:7a:8a:3f:cf:b9:76:60:91:
a0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:54:05:EC:C7:60:43:59:B0:02:8F:6C:CB:BB:49:A7:C2:AD:3E:15
X509v3 Authority Key Identifier:
keyid:D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:01:7c:d3:9c:06:7d:ba:db:eb:a9:8e:cb:69:a1:ed:33:fd:
bb:7c:ea:36:62:a8:e4:e5:43:9b:98:ff:fa:45:0e:5e:13:82:
c2:09:93:09:58:41:2a:a4:20:27:6d:0c:2e:53:c9:3c:4f:cf:
b3:cc:5d:fc:ef:b9:d2:f6:37:19:79:3d:2e:25:c9:50:4d:41:
d6:8f:f2:09:3d:90:d6:57:63:30:bf:93:e2:b3:f0:2c:91:20:
00:80:aa:c0:1e:9f:b2:12:57:97:c2:37:10:8b:35:cd:f3:8d:
8a:9c:d4:9d:6e:75:b7:a0:2a:50:e1:55:a9:e8:23:82:ee:eb:
de:a0:e0:99:06:1d:0f:81:76:ab:45:14:9e:9b:6c:8f:62:a4:
e4:06:53:86:6a:ff:34:20:ed:eb:62:80:72:66:d4:79:b0:31:
43:f0:42:76:3b:48:6f:40:8f:e6:4d:ca:ec:81:67:52:fc:fc:
b1:0d:4b:ff:dc:bb:d1:e2:2d:d8:4f:4c:24:12:03:c0:d5:6b:
3b:44:d0:8f:58:34:13:f5:c4:7f:86:17:d4:67:bd:33:bb:70:
90:aa:ee:2a:d8:8e:bd:95:5f:ef:dd:d8:d6:4d:8d:fb:19:81:
0f:93:bd:fa:71:fd:43:c1:c1:08:64:4f:42:69:d7:94:5e:e1:
03:5a:d1:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 01:08:52 2025 by rpki-client