Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
File: 2lTIIO5UFUMsaLATYZJ1_0xubqU.mft (raw, json)
Hash identifier: RujpQi2hBfy/Gm9WmRaEoDHJpheAROu5Xgtntb6ej44=
Subject key identifier: 6B:A8:6C:1A:C9:7B:09:42:5E:93:A7:CA:25:6D:88:19:86:AF:C9:67
Authority key identifier: DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5
Certificate issuer: /CN=da54c820ee5415432c68b013619275ff4c6e6ea5
Certificate serial: 019A4D075A4DDD46AF288E36BCC1AB0CECE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
Manifest number: 0790
Signing time: Tue 04 Nov 2025 04:01:58 +0000
Manifest this update: Tue 04 Nov 2025 04:01:58 +0000
Manifest next update: Wed 05 Nov 2025 04:01:58 +0000
Files and hashes: 1: 2lTIIO5UFUMsaLATYZJ1_0xubqU.crl (hash: RBKkdAU/Zw7QLOF9x4fP5jJ7j9lSmOhENLzq2mcDagA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:07:5a:4d:dd:46:af:28:8e:36:bc:c1:ab:0c:ec:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da54c820ee5415432c68b013619275ff4c6e6ea5
Validity
Not Before: Nov 4 04:01:58 2025 GMT
Not After : Nov 5 04:01:58 2025 GMT
Subject: CN=6ba86c1ac97b09425e93a7ca256d881986afc967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fe:45:2c:4f:a1:09:89:63:e4:e9:84:12:e7:
74:34:1e:3b:eb:29:43:39:7a:a9:3b:63:36:b2:ef:
b4:06:18:44:35:27:ad:0c:8f:93:0c:56:24:ab:2b:
03:ec:4d:28:a2:5f:be:60:a8:5a:bf:16:77:9e:c5:
ad:75:fa:e1:a8:be:0d:b2:ac:fb:aa:be:ff:00:96:
03:83:db:3b:81:4c:ce:ba:08:4f:16:c4:48:ac:5b:
85:f1:fe:96:07:0a:9d:d1:ae:bc:a6:19:1d:68:dd:
ba:6b:60:d2:44:e1:4b:c0:d9:bf:bb:8c:97:4c:88:
3c:b9:e5:31:06:ea:6b:c5:3a:14:35:56:b9:17:f3:
75:a9:40:ab:4e:94:7f:ef:90:3c:d6:70:3a:c4:49:
0f:dc:68:b6:2b:83:b1:57:4e:0c:2a:b9:c3:bd:a8:
70:8f:c2:b0:56:2f:e7:2a:06:26:59:3c:b4:4f:e5:
59:f5:0a:fa:94:92:8f:32:63:40:a7:b7:90:dc:80:
5e:bd:d8:ca:b3:ec:5e:86:ce:80:07:27:89:41:06:
3f:e9:b8:31:d6:51:7a:bb:d8:fd:a0:9c:8e:5c:55:
a3:06:db:a7:9c:7d:be:91:07:dd:5e:33:76:5f:2f:
80:8f:eb:9a:b5:41:93:61:f1:fc:db:8b:74:e4:27:
9b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:A8:6C:1A:C9:7B:09:42:5E:93:A7:CA:25:6D:88:19:86:AF:C9:67
X509v3 Authority Key Identifier:
keyid:DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:39:a7:93:98:94:21:23:82:50:0d:72:73:8a:9d:fe:06:fd:
4b:60:a0:27:03:04:fa:f9:b5:6b:3b:57:3c:f5:1b:05:5d:8e:
42:f5:78:78:db:f1:17:a7:f4:25:62:0f:f4:97:8d:21:6f:56:
7e:fc:97:24:53:40:4a:65:ab:9a:4f:8a:c7:60:ac:99:2f:1f:
3e:6f:3a:87:8d:2c:f9:e2:b5:a4:b9:69:20:75:2c:cb:10:10:
10:2a:45:10:80:12:03:f8:7b:42:c4:45:67:be:71:63:e8:23:
59:48:b0:12:4c:65:cf:52:2c:5c:bf:5a:88:c1:81:ea:45:88:
e7:1e:ff:cd:7d:66:e8:61:27:d6:ea:38:0a:bd:7e:ab:0b:d3:
71:81:36:2e:96:85:12:6c:81:d2:2a:ad:9a:07:85:e5:fb:d6:
80:bf:a0:58:3e:1a:5e:e0:0e:28:33:45:9d:89:f7:5c:bc:94:
ec:5c:6b:8c:6c:d0:98:59:54:da:8d:22:21:d3:79:d0:a2:6d:
ac:dd:9e:37:b9:f6:5e:5f:85:30:39:48:b3:fb:68:d9:33:a3:
12:b1:8b:5f:ee:24:77:9e:01:58:f2:3a:21:5f:c9:2c:5c:fc:
18:d4:cb:2c:ae:40:0c:07:19:62:6e:02:58:0e:b0:88:1f:b5:
0d:71:aa:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:45:59 2025 by rpki-client