Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
File: 2DLajUWISdX0C6bwuSCPhYXZ4j4.mft (raw, json)
Hash identifier: Ab1+0cilQll+M8vr/P/YuePtt08rL8PE4H4pg29cc5Q=
Subject key identifier: E4:16:E9:96:09:76:57:B3:16:C2:7B:86:44:FA:8A:BC:FA:CD:79:63
Authority key identifier: D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
Certificate issuer: /CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Certificate serial: 019A503E512973C0678047EFDEF5D0C00210
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 19:00:52 +0000
Manifest this update: Tue 04 Nov 2025 19:00:52 +0000
Manifest next update: Wed 05 Nov 2025 19:00:52 +0000
Files and hashes: 1: 0LdCYiyoo_rQZDLAQK9EXmWdrLs.roa (hash: ii+DUPaWPj2PKPLgx9rgU4vJhM6MjQajOc4FBEHl1O8=)
2: 2DLajUWISdX0C6bwuSCPhYXZ4j4.crl (hash: Uo5AZGCBR+qX1s4D+2EQH5W7zUJhzjOTauA5NapR680=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:3e:51:29:73:c0:67:80:47:ef:de:f5:d0:c0:02:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d832da8d458849d5f40ba6f0b9208f8585d9e23e
Validity
Not Before: Nov 4 19:00:52 2025 GMT
Not After : Nov 5 19:00:52 2025 GMT
Subject: CN=e416e996097657b316c27b8644fa8abcfacd7963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ab:86:5e:9a:14:b0:99:ef:f5:83:20:a2:07:
f3:bd:fd:42:6b:76:b1:31:19:ef:9e:93:78:66:a5:
82:ed:c4:f8:4f:83:4b:fe:ab:87:27:8e:49:bc:e0:
dc:91:e6:3c:96:90:13:e9:50:84:e4:7b:91:a8:74:
b3:e5:f7:f5:85:21:9b:a5:9f:40:db:39:99:e7:5e:
5e:8e:8b:b7:9a:cc:07:35:29:78:d4:60:09:50:e7:
f7:46:bb:b1:58:d7:9e:d7:b3:09:ad:04:b0:3c:b5:
1d:3a:f4:02:88:22:c9:59:a0:46:16:47:0e:4d:d3:
1c:4f:53:63:fc:10:31:a9:2b:1c:f5:5f:5c:a8:2d:
a4:4c:52:0a:73:f5:ab:e3:8a:db:ad:17:6a:38:16:
b5:12:f4:9a:86:46:68:c2:4a:26:58:3d:f1:22:2f:
df:9e:a4:d5:1e:c0:3a:ff:1e:ac:00:8a:a2:0f:4a:
ab:38:cb:ef:00:17:98:02:85:14:b0:21:41:7c:f3:
68:1f:13:89:af:27:d5:36:df:68:08:89:5f:3d:88:
4e:68:78:c1:19:e2:ad:5d:1b:41:8a:39:6b:e6:02:
42:8c:31:f9:e5:e1:20:50:34:da:3b:1f:e5:95:59:
77:02:6f:16:01:db:72:9b:98:dd:de:b7:58:1c:4f:
7b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:16:E9:96:09:76:57:B3:16:C2:7B:86:44:FA:8A:BC:FA:CD:79:63
X509v3 Authority Key Identifier:
keyid:D8:32:DA:8D:45:88:49:D5:F4:0B:A6:F0:B9:20:8F:85:85:D9:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DLajUWISdX0C6bwuSCPhYXZ4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7d21ee-a460-4c39-9e6f-c99795f3885f/1/2DLajUWISdX0C6bwuSCPhYXZ4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:a1:2b:06:78:d5:4b:ab:88:8d:ba:2a:d9:7a:33:e7:e4:2b:
83:b9:8c:b4:88:12:cd:60:f6:77:0a:ea:b4:b1:d9:52:59:24:
a2:a3:eb:fa:81:fc:36:79:c4:be:0e:dd:61:a5:d2:b7:50:d6:
68:ff:1b:8f:e3:9d:47:41:16:ac:55:53:ca:77:71:da:40:6f:
ba:6e:2c:5d:30:0f:50:42:7f:f5:16:55:f0:74:25:aa:36:e3:
84:b1:bb:05:4f:be:ef:d3:52:65:df:ce:0f:1f:65:e1:14:57:
88:f0:cd:8a:f0:43:05:40:4f:9b:d5:b9:58:5f:9c:c1:aa:27:
ce:4f:d3:6e:52:0f:64:b5:37:08:77:9e:1d:31:9f:dd:20:9f:
7f:41:38:c7:bf:e1:b1:0e:51:f2:5b:64:3b:cb:a5:53:7e:74:
b2:8c:81:4a:04:a7:d2:4a:94:a5:be:82:4f:de:03:94:18:60:
11:fa:75:a8:01:f2:e6:aa:61:c4:b9:9e:59:bb:99:fd:a2:b0:
dc:51:aa:ca:4c:56:2b:2b:75:df:41:57:b2:39:f5:da:07:7b:
53:31:44:d7:8c:20:16:da:2e:76:4c:39:5c:13:67:dc:13:fa:
50:9b:e3:e7:dc:26:8f:dc:73:49:d8:29:ab:f7:71:29:30:f2:
cc:34:37:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQPlEpc8BngEfv3vXQwAIQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MzJkYThkNDU4ODQ5ZDVmNDBiYTZmMGI5MjA4Zjg1ODVk
OWUyM2UwHhcNMjUxMTA0MTkwMDUyWhcNMjUxMTA1MTkwMDUyWjAzMTEwLwYDVQQD
EyhlNDE2ZTk5NjA5NzY1N2IzMTZjMjdiODY0NGZhOGFiY2ZhY2Q3OTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1quGXpoUsJnv9YMgogfzvf1Ca3ax
MRnvnpN4ZqWC7cT4T4NL/quHJ45JvODckeY8lpAT6VCE5HuRqHSz5ff1hSGbpZ9A
2zmZ515ejou3mswHNSl41GAJUOf3RruxWNee17MJrQSwPLUdOvQCiCLJWaBGFkcO
TdMcT1Nj/BAxqSsc9V9cqC2kTFIKc/Wr44rbrRdqOBa1EvSahkZowkomWD3xIi/f
nqTVHsA6/x6sAIqiD0qrOMvvABeYAoUUsCFBfPNoHxOJryfVNt9oCIlfPYhOaHjB
GeKtXRtBijlr5gJCjDH55eEgUDTaOx/llVl3Am8WAdtym5jd3rdYHE97JwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOQW6ZYJdlezFsJ7hkT6irz6zXljMB8GA1UdIwQY
MBaAFNgy2o1FiEnV9Aum8Lkgj4WF2eI+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkRMYWpVV0lTZFgwQzZid3VTQ1BoWVhaNGo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZDIxZWUtYTQ2MC00YzM5LTllNmYt
Yzk5Nzk1ZjM4ODVmLzEvMkRMYWpVV0lTZFgwQzZid3VTQ1BoWVhaNGo0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83ZDIxZWUtYTQ2MC00YzM5LTllNmYtYzk5Nzk1ZjM4ODVm
LzEvMkRMYWpVV0lTZFgwQzZid3VTQ1BoWVhaNGo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB6ErBnjV
S6uIjboq2Xoz5+Qrg7mMtIgSzWD2dwrqtLHZUlkkoqPr+oH8NnnEvg7dYaXSt1DW
aP8bj+OdR0EWrFVTyndx2kBvum4sXTAPUEJ/9RZV8HQlqjbjhLG7BU++79NSZd/O
Dx9l4RRXiPDNivBDBUBPm9W5WF+cwaonzk/TblIPZLU3CHeeHTGf3SCff0E4x7/h
sQ5R8ltkO8ulU350soyBSgSn0kqUpb6CT94DlBhgEfp1qAHy5qphxLmeWbuZ/aKw
3FGqykxWKyt130FXsjn12gd7UzFE14wgFtoudkw5XBNn3BP6UJvj59wmj9xzSdgp
q/dxKTDyzDQ3qA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 22:33:20 2025 by rpki-client