Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
File: 2KmU2EbLZpboicHMMiheCyOvx3c.mft (raw, json)
Hash identifier: fJmZ5VbzuA7mfjhsdOX0nToCT5KLISPacFMVKMxOX1M=
Subject key identifier: EB:EB:ED:81:F9:0D:E3:A0:0A:6F:A6:8D:DD:B6:03:C7:F0:48:DC:74
Authority key identifier: D8:A9:94:D8:46:CB:66:96:E8:89:C1:CC:32:28:5E:0B:23:AF:C7:77
Certificate issuer: /CN=d8a994d846cb6696e889c1cc32285e0b23afc777
Certificate serial: 019A4FD04599A0DD5DE80ECDA02B2E8A7196
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KmU2EbLZpboicHMMiheCyOvx3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
Manifest number: 15F7
Signing time: Tue 04 Nov 2025 17:00:40 +0000
Manifest this update: Tue 04 Nov 2025 17:00:40 +0000
Manifest next update: Wed 05 Nov 2025 17:00:40 +0000
Files and hashes: 1: 2KmU2EbLZpboicHMMiheCyOvx3c.crl (hash: iRevPdn/a7tTC3BlFFpCJGLVTWv9OE54SFFrKbRP5m8=)
2: UHp7t70IbcWp2bwKOGl-4b8ScF4.roa (hash: UvX//cn/2erRwYZHy/h/xPpeIQdcBl4GUvhBbyEANqc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
rsync://rpki.ripe.net/repository/DEFAULT/2KmU2EbLZpboicHMMiheCyOvx3c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:d0:45:99:a0:dd:5d:e8:0e:cd:a0:2b:2e:8a:71:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a994d846cb6696e889c1cc32285e0b23afc777
Validity
Not Before: Nov 4 17:00:40 2025 GMT
Not After : Nov 5 17:00:40 2025 GMT
Subject: CN=ebebed81f90de3a00a6fa68dddb603c7f048dc74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f6:d9:0a:ab:69:52:fd:14:e3:8a:d9:9a:69:
b5:5c:b0:74:71:6d:62:af:23:85:46:cc:50:2a:02:
1e:03:e9:0d:4e:07:b2:0d:fa:22:bd:8b:75:2d:41:
d4:aa:7d:7f:61:0d:d4:11:04:6e:02:3d:8d:c7:a7:
0a:72:64:88:6e:ea:b9:a1:b4:6e:89:b5:b1:ae:6e:
7e:04:a0:8f:8f:60:50:60:50:cc:b3:10:9f:34:7a:
c9:c2:c5:a7:02:25:a9:e5:54:98:18:13:1b:32:a6:
42:ce:2d:40:09:32:e0:3b:0d:a7:dd:c5:0d:43:6b:
f0:72:f9:5e:1e:97:55:ae:a9:fd:d9:9c:c5:f2:77:
24:66:8a:da:c7:32:ec:57:dc:8f:0c:2b:d9:5d:9c:
6a:89:4e:11:85:d8:df:65:9a:b8:55:0b:e4:5c:80:
54:81:e3:9d:80:f3:37:aa:36:68:a6:c1:2a:1e:28:
5f:e2:d7:32:ed:2d:ee:84:89:5a:52:c7:8f:06:78:
08:72:99:a0:99:d0:be:42:05:3b:5f:3f:82:5a:2a:
57:c5:33:07:25:68:b0:3f:27:29:89:17:f0:6a:e7:
f4:74:db:47:1b:88:7a:59:12:78:97:e6:34:70:59:
bc:85:5b:ec:22:4b:45:bb:53:9d:cc:83:fb:21:3e:
cc:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:EB:ED:81:F9:0D:E3:A0:0A:6F:A6:8D:DD:B6:03:C7:F0:48:DC:74
X509v3 Authority Key Identifier:
keyid:D8:A9:94:D8:46:CB:66:96:E8:89:C1:CC:32:28:5E:0B:23:AF:C7:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KmU2EbLZpboicHMMiheCyOvx3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/dd08f7-b6f4-4b42-81d7-23ab59798421/1/2KmU2EbLZpboicHMMiheCyOvx3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:ca:84:17:1a:f4:9d:76:ea:7f:85:dc:f8:b0:c9:4f:d1:cc:
ab:20:b8:16:bf:10:03:18:46:58:f4:df:17:e1:8a:33:43:37:
f9:61:db:db:f1:52:8a:3a:13:34:dc:37:dd:0e:f3:bf:1f:27:
81:e6:c3:6d:9c:a1:aa:a4:02:c6:e1:a6:41:74:c1:84:2d:e1:
68:1e:3f:de:c8:2e:39:0c:cc:42:48:93:a6:0a:2b:97:86:b3:
ca:96:69:9f:05:92:49:48:3e:9e:0d:d6:c6:3c:cf:82:0b:68:
50:ef:71:e6:9b:cd:e1:e2:d4:73:f5:70:46:cd:8c:d7:21:de:
d3:9e:26:d6:e6:c7:4b:a1:51:68:de:c4:88:d0:93:a4:a9:0a:
ca:ad:14:15:77:37:71:ec:6e:39:4f:a5:c4:d3:3f:cb:5e:a0:
d3:09:25:fd:5e:6e:46:77:0c:4b:b9:47:be:4f:81:81:99:f6:
88:4a:52:40:6f:c3:1c:ec:92:3d:f8:90:5f:71:fd:42:63:fc:
5a:d1:d7:d1:07:5c:a2:8d:5f:1b:b3:14:bf:c3:c1:af:cc:f0:
2e:19:3f:fd:98:d7:20:8e:8d:36:55:40:9d:a1:86:4b:f2:0c:
63:41:53:4f:8f:bb:05:bf:9c:fe:d6:a2:23:66:a4:10:4f:10:
ac:92:13:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:20:52 2025 by rpki-client