Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
File: 2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft (raw, json)
Hash identifier: P6q1qUS3qjJ/lqdIaANYeAN4QOPDeiBiGZF1OaT8FaA=
Subject key identifier: 5A:83:2C:84:43:F4:91:3C:1B:AC:DD:61:80:96:31:76:CD:32:5D:1A
Authority key identifier: D8:81:E5:77:7C:CE:99:0C:0B:2B:0F:4C:29:CC:8D:2C:F9:AF:E8:3B
Certificate issuer: /CN=d881e5777cce990c0b2b0f4c29cc8d2cf9afe83b
Certificate serial: 019A4EF4D9D560E20041632F36727531FFB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
Manifest number: 169E
Signing time: Tue 04 Nov 2025 13:01:00 +0000
Manifest this update: Tue 04 Nov 2025 13:01:00 +0000
Manifest next update: Wed 05 Nov 2025 13:01:00 +0000
Files and hashes: 1: 2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl (hash: hJ22BhdsL4aY5T9fEGkBh8/qUagDsSyTMIMB/UVwsh4=)
2: gd86nab0qf28eq3d5pPFq5e9rZo.roa (hash: OleM9BzJjHgCcSMlxVVC1tH0LyJmqbhh/CO/g3APccs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:d9:d5:60:e2:00:41:63:2f:36:72:75:31:ff:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d881e5777cce990c0b2b0f4c29cc8d2cf9afe83b
Validity
Not Before: Nov 4 13:01:00 2025 GMT
Not After : Nov 5 13:01:00 2025 GMT
Subject: CN=5a832c8443f4913c1bacdd6180963176cd325d1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:49:1d:35:8b:86:bc:a9:b3:15:00:5b:8e:ee:
36:0d:ef:9d:a3:34:5d:57:f4:54:60:e5:ab:53:ee:
33:ff:a5:38:28:87:34:94:e6:26:2a:4e:9b:51:03:
f8:f4:b1:dc:c5:35:c3:00:ab:0d:2f:df:98:2a:d6:
30:79:e9:17:71:7d:13:0f:0a:5f:ee:ea:67:4e:d6:
58:c7:ed:ed:4a:f1:be:88:97:ed:7e:3d:bb:88:6e:
fe:b6:13:a8:a6:2d:34:5e:9d:49:c4:74:6f:14:55:
02:b7:21:f2:b0:bc:11:1c:4a:d5:01:48:e7:f0:7a:
4a:a7:ad:04:f3:9e:18:aa:f2:58:1f:55:56:d3:a0:
2a:0b:66:fd:23:97:08:6b:2a:0f:f2:41:de:07:99:
22:7e:ee:52:c6:38:ab:4b:4b:bf:66:f0:80:fa:07:
f7:af:06:eb:13:ff:ea:bd:da:b0:a7:96:54:5d:b5:
87:9a:e9:ad:a6:f3:70:ee:07:1a:4c:87:6d:a1:9e:
bb:d2:83:11:28:6c:f5:75:ab:a5:30:5d:8b:a4:d2:
4a:97:d1:fe:b2:7f:f0:25:68:69:e1:14:9b:01:00:
bf:00:55:da:d8:1d:58:92:62:15:81:36:ae:1b:b9:
8e:d4:e9:8a:cf:f0:a8:91:d1:ca:a6:4e:7e:55:f9:
cc:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:83:2C:84:43:F4:91:3C:1B:AC:DD:61:80:96:31:76:CD:32:5D:1A
X509v3 Authority Key Identifier:
keyid:D8:81:E5:77:7C:CE:99:0C:0B:2B:0F:4C:29:CC:8D:2C:F9:AF:E8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:f5:2d:f5:7e:6f:38:d1:b6:64:e5:d3:f4:6a:32:e5:ee:2c:
5a:b4:83:a0:5f:90:c9:dd:ed:94:9d:bf:f3:9c:2d:95:cc:c8:
38:30:5f:f4:4b:d3:bb:7c:d6:e5:ff:2b:9f:3c:01:f3:2d:18:
aa:8c:3d:06:3f:33:b4:1a:45:9c:54:bd:31:95:c2:64:87:f4:
f2:e5:c8:78:5d:b1:e5:9d:5f:c0:1e:da:4c:3f:cf:c7:60:23:
dc:9e:d7:ce:a6:1e:d6:40:c3:d6:63:fd:46:2c:3b:fc:d3:35:
f8:e7:9c:a9:8e:7a:2d:23:da:ac:c4:20:60:2e:35:e6:ef:19:
ea:20:c2:95:9e:5a:23:d6:40:99:16:b3:c9:a5:35:f7:fe:c2:
74:d6:b8:35:f5:e1:3b:98:b2:5c:84:d0:6a:cd:59:f0:d6:7c:
cc:f1:aa:25:34:16:f8:98:18:e4:4a:fd:2a:4b:0c:0e:a0:06:
b6:1f:cb:6f:ec:ea:ca:3e:b8:95:49:ca:93:d7:3c:21:db:72:
3e:3a:f3:5f:71:38:74:f9:5b:d6:16:17:e0:74:a7:5b:2e:47:
0c:03:45:12:e6:bb:fa:e9:81:83:0a:0c:50:29:9d:86:21:c7:
ed:fe:95:19:c0:f8:85:c1:44:8e:8b:05:0c:4f:c3:c4:9e:1d:
81:08:ed:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:44:38 2025 by rpki-client