Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
File: 2ChPGM1EYEvdbQj02HjcYUVsQP0.mft (raw, json)
Hash identifier: dM5uEL/niIggrbOR2QoNg9WaVo0yo9NTs7scov3EwbM=
Subject key identifier: 24:70:D0:88:BB:28:D0:FF:17:B1:49:5F:E5:8A:CD:67:53:7C:8E:EF
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 019A4DAB0F30F2B447B29B2C0D1E7DA41A08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
Manifest number: 171D
Signing time: Tue 04 Nov 2025 07:00:47 +0000
Manifest this update: Tue 04 Nov 2025 07:00:47 +0000
Manifest next update: Wed 05 Nov 2025 07:00:47 +0000
Files and hashes: 1: 2ChPGM1EYEvdbQj02HjcYUVsQP0.crl (hash: +uFfa3WZ36cJgkdGf+YI5x4rN8G9KK5Qyd62i3EXSgY=)
2: QwB_J4IBjr_kwpZ0DSZt7jLyFUw.roa (hash: xjQoVVO98cxf92eXukztlmvd0mAJHZVRoWG3GH3edIU=)
3: RZQ5y55NZ91q7qGueZI2kyy2lHI.roa (hash: s/DyWvu0J1swkDaWXLLyRdJ0euIh4+uqvas0DU4Xq7I=)
4: noQO1tLrNCKz3bIWnBbDMmvuYLg.roa (hash: hYTtEju7KkB6LYquIBvGjeZyYymRK8/pFRz4XyGZMT8=)
5: qWeBIgMT9yofaevmnsJv-k3J7gM.roa (hash: OVmNg3h2HayVISC+svzIkwU6u8HmPx4SN/OehOmAqgY=)
6: qq3OJ7E8FdGE4BJdu3ZOq4LInY8.roa (hash: jyVlOFzMs6a5a3ty01oIP3DwXzFAJhXu3CIHkhRdIo8=)
7: v5y-XO_c3BUL4I2vKl0yvM3sR48.roa (hash: job18wRUBRjomyukO0QxaFg1pEdwxYB+4rsX0iFAoJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:ab:0f:30:f2:b4:47:b2:9b:2c:0d:1e:7d:a4:1a:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: Nov 4 07:00:47 2025 GMT
Not After : Nov 5 07:00:47 2025 GMT
Subject: CN=2470d088bb28d0ff17b1495fe58acd67537c8eef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d8:d1:a9:13:de:a1:4d:34:e7:52:18:d2:09:
50:1b:ec:b6:d4:30:bb:cf:51:a6:f3:b8:3d:56:08:
fa:57:09:ba:e5:b1:c6:e2:dd:ed:89:94:aa:1c:0c:
93:cd:90:19:90:dc:e0:aa:d6:81:ba:40:97:a8:e1:
29:98:e9:7d:0f:b3:51:dc:e5:97:de:a5:96:20:54:
b3:8d:48:39:67:79:3a:7f:20:59:76:bd:e7:62:ed:
d6:48:4e:16:fa:3f:16:c7:95:f5:39:e3:2d:8e:a0:
01:a5:99:c3:0e:0e:a9:01:2f:e1:da:b7:af:b0:5b:
29:68:0c:7a:e8:c6:38:6b:86:52:08:8a:35:38:0b:
88:81:52:d3:2e:f2:9b:a1:a2:8a:9f:23:57:21:49:
d4:95:ee:72:1c:c6:79:06:26:e8:72:26:10:7b:ed:
25:ed:e1:c2:7d:3f:af:34:fa:a7:f4:da:59:85:6d:
e2:a9:c0:33:dc:82:51:ee:18:38:72:6b:fe:b8:79:
94:90:df:d0:4b:67:05:31:1d:22:fd:c3:4f:f0:5e:
a8:6f:f9:02:db:38:8b:e0:a2:39:32:e4:af:7c:de:
81:49:a7:19:62:bc:98:88:d3:55:1c:70:c9:88:f0:
0a:d0:b2:dc:24:b5:d8:30:7e:77:f8:f2:ad:12:da:
b4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:70:D0:88:BB:28:D0:FF:17:B1:49:5F:E5:8A:CD:67:53:7C:8E:EF
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:f5:8c:e5:ac:2c:5f:f8:b9:28:77:92:a4:c8:77:20:64:2f:
07:cd:9e:12:30:88:17:be:64:96:07:e3:2f:92:85:cf:8d:76:
cf:3b:0e:57:2a:0c:a1:6f:d8:5a:6d:36:5b:9f:ca:ec:28:70:
55:ba:5d:87:cf:77:6b:64:3d:30:2e:f0:db:ad:f5:01:fe:6f:
37:ac:5f:56:b3:02:a6:66:51:db:8a:e6:28:16:76:b7:08:44:
e5:f1:29:e4:7a:86:93:81:bc:f8:31:31:34:d6:fd:c9:ff:fc:
c4:32:94:c1:3d:9b:f5:70:f8:b5:26:7f:db:a9:0a:ff:98:60:
a9:5f:1d:3d:ba:3e:fe:c3:26:a3:df:cf:99:84:9a:3b:b8:d5:
5a:77:25:a1:ff:e1:05:58:b4:12:b7:83:1f:22:a1:45:e2:83:
09:76:2e:ab:55:bc:36:7a:93:af:91:2e:98:20:a7:bc:09:f6:
e0:99:d5:04:b0:26:ef:bf:0a:67:f0:1e:12:0d:04:a1:58:b2:
5b:bd:7f:e8:ed:72:6c:26:68:4a:cc:d2:10:80:a2:e6:f6:d9:
bd:4f:39:e1:fc:c4:8d:46:93:0b:6e:3e:9d:31:b7:03:97:ab:
33:e8:9b:ed:4c:d0:cc:34:ba:90:6b:da:22:5f:be:25:68:74:
48:3f:f8:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:46:34 2025 by rpki-client