Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft
File: 2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft (raw, json)
Hash identifier: NDmTtfEGLkJB3G/+uWjGw1jvvpR+fDuTy/6+XhkAOHE=
Subject key identifier: 60:7C:6B:63:6E:CC:35:70:F6:18:65:82:78:79:C0:89:C8:03:55:DC
Authority key identifier: DA:35:B2:7E:B5:23:B6:7F:8D:69:1C:80:62:F3:37:0E:14:93:02:FD
Certificate issuer: /CN=da35b27eb523b67f8d691c8062f3370e149302fd
Certificate serial: 019A4D73D0461B1AA72947AFC995F743C0FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2jWyfrUjtn-NaRyAYvM3DhSTAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft
Manifest number: 1666
Signing time: Tue 04 Nov 2025 06:00:26 +0000
Manifest this update: Tue 04 Nov 2025 06:00:26 +0000
Manifest next update: Wed 05 Nov 2025 06:00:26 +0000
Files and hashes: 1: 2jWyfrUjtn-NaRyAYvM3DhSTAv0.crl (hash: Q0EW0EYIAxAJkp+9cGf9AI6/hsvxC9Hc4fp2EozSdEI=)
2: ryWVvW7NydfH0Lg55_MWvg1kBGg.roa (hash: PtmvLKXYoeUQyGlzTXT4GMeJ6VdsraUUI7+TJbIbgOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2jWyfrUjtn-NaRyAYvM3DhSTAv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:d0:46:1b:1a:a7:29:47:af:c9:95:f7:43:c0:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da35b27eb523b67f8d691c8062f3370e149302fd
Validity
Not Before: Nov 4 06:00:26 2025 GMT
Not After : Nov 5 06:00:26 2025 GMT
Subject: CN=607c6b636ecc3570f61865827879c089c80355dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d5:f1:96:ca:27:c1:0a:73:da:17:09:90:f9:
6b:94:bc:8e:b4:75:b0:ee:42:bf:03:c4:ce:b4:01:
ef:69:bb:cc:d0:58:03:9c:5d:86:a7:93:f1:f1:ca:
32:0b:6a:4c:02:db:8d:6e:3e:db:57:e9:87:68:63:
0e:b6:fc:41:aa:4e:04:10:2a:51:9f:f2:42:6b:8a:
43:82:fc:79:af:da:92:f6:ed:57:e4:fd:34:f0:66:
1c:d2:bd:a6:b9:d3:85:39:99:d1:b0:00:7c:bf:fb:
ca:b7:29:76:fc:33:9f:0a:a9:8e:99:af:ee:eb:92:
3e:88:8e:f7:e0:71:5c:40:14:52:e8:5a:2d:a7:90:
05:a1:17:f4:0d:e9:9f:d8:8d:90:00:d2:b3:d4:f2:
8b:f7:6f:30:8a:62:a1:33:01:03:12:07:ce:26:e3:
99:0c:8c:00:df:b5:42:00:55:6a:40:1d:ff:7a:ee:
27:a3:b2:5c:82:ce:1b:86:54:be:df:08:ac:97:1d:
93:d4:73:8c:de:81:4d:1d:61:d6:02:5c:79:9b:72:
8b:44:a5:f8:ed:d4:cb:3e:f2:5e:99:ff:62:45:ef:
5f:38:50:5e:dd:3b:e1:07:93:45:75:42:ae:b9:45:
d0:9b:ed:92:92:1a:8f:7f:8d:55:d5:50:28:69:14:
c0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:7C:6B:63:6E:CC:35:70:F6:18:65:82:78:79:C0:89:C8:03:55:DC
X509v3 Authority Key Identifier:
keyid:DA:35:B2:7E:B5:23:B6:7F:8D:69:1C:80:62:F3:37:0E:14:93:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2jWyfrUjtn-NaRyAYvM3DhSTAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/f3f8c4-19b0-4f3b-88e3-cceaeb5d2db9/1/2jWyfrUjtn-NaRyAYvM3DhSTAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:44:dc:bc:03:03:e0:ec:01:71:e7:33:1d:6f:85:79:55:e8:
9a:13:1f:88:d3:3b:01:50:d7:31:0e:09:78:f8:cd:95:26:5b:
1b:0e:3f:51:97:ac:e5:f6:3c:c1:e3:39:9e:0a:d4:e4:7a:68:
20:29:77:4b:4b:aa:1d:4f:70:f4:3c:9d:fe:06:4f:2f:5b:b3:
91:8c:3c:78:bf:92:57:0e:0c:68:5b:0e:66:d5:3e:fd:0f:90:
bf:e2:32:40:b7:70:1f:61:c4:e4:09:47:e8:bd:10:7f:b9:5d:
7f:a1:7a:51:8c:be:87:10:0f:4c:e2:ef:5f:d9:f9:ca:9d:d6:
22:73:30:45:99:d9:45:f7:6d:26:5f:10:cc:33:34:73:57:7b:
e9:33:c8:e3:e5:bc:e9:09:40:2a:ea:9c:51:25:fb:73:0e:47:
01:ef:f4:ff:2a:66:ea:bc:fd:32:90:90:ca:e6:23:f7:a1:0f:
1e:e4:e1:17:67:15:b8:4c:9b:0a:9b:4f:c6:df:1b:a4:56:34:
db:88:02:d9:98:24:68:6a:5a:11:d1:1e:81:63:b1:6a:c2:d6:
27:9c:63:e8:e0:4c:a6:e1:f1:37:21:69:7a:b1:a5:11:64:7e:
fe:49:59:18:64:d9:04:cd:41:7a:cc:d8:c6:b2:a4:aa:2c:2f:
08:89:aa:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:44:10 2025 by rpki-client