Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
File: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft (raw, json)
Hash identifier: 4EaYv2H5+bP4xngse5T1b58sOS8cifc3RzCubDMzdHc=
Subject key identifier: 61:25:C1:FD:89:9D:A9:9B:09:0E:7B:9C:6E:6D:51:75:43:2A:D8:AE
Authority key identifier: D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE
Certificate issuer: /CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de
Certificate serial: 019A4EBD515BD218C71A844984629FC62405
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
Manifest number: 02F1
Signing time: Tue 04 Nov 2025 12:00:21 +0000
Manifest this update: Tue 04 Nov 2025 12:00:21 +0000
Manifest next update: Wed 05 Nov 2025 12:00:21 +0000
Files and hashes: 1: 2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl (hash: yVr7cGAwM/oVUATCEH6rXAkBhxtly1Hj0Kgw6hqhElU=)
2: 7YxrmczVFpaeBMBQOkdecPyU13g.roa (hash: ldyrR2pk0wwrAcATlluvhy35oOBdxvxckCQpFcLrUa0=)
3: IK6BLrV0EEpKCWmR8y07wOSk68U.roa (hash: 2f+csqFlNzMlLrmcJAwXYvsvPfVBQ0wkksbKjz0lRi0=)
4: xb1c81OFtbINdLQq-ZwRav9UWoI.roa (hash: XHYFd0tSE5d2fh7X6gspcN3JIn/ONDCV3VHTC+ocClI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:bd:51:5b:d2:18:c7:1a:84:49:84:62:9f:c6:24:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d3ca2c231afdf3b0355c77a7cbb226f81b74de
Validity
Not Before: Nov 4 12:00:21 2025 GMT
Not After : Nov 5 12:00:21 2025 GMT
Subject: CN=6125c1fd899da99b090e7b9c6e6d5175432ad8ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:1a:b3:f7:f4:59:2b:ec:23:a9:5c:02:fb:38:
47:2b:7a:ce:ff:5d:78:ab:dd:a2:90:fa:d0:2f:f0:
fb:39:a4:0c:ff:bf:19:68:ef:17:a3:9c:fc:e6:00:
c5:ff:25:58:63:20:43:36:2a:c8:bb:0b:bc:ad:03:
16:c4:ae:7b:ff:01:6b:63:f8:d7:f2:df:cc:0e:42:
ce:ab:b9:a7:ac:9a:b7:8e:b0:c6:71:7a:6e:18:02:
41:a6:75:b8:1f:99:e7:d0:1b:5a:57:a8:3f:0c:92:
0a:ec:b1:c6:84:dc:a8:fb:2d:4d:31:3c:47:b8:8a:
ce:43:2f:7c:12:2a:fa:7a:fd:43:dc:63:d1:ba:30:
b0:8c:4c:a3:7d:e8:52:49:c5:d3:27:ec:82:c1:fc:
4e:56:c9:db:b8:0d:fc:27:94:83:f1:6b:bf:81:59:
93:c4:ce:94:14:66:97:a3:9d:34:ff:a8:8e:30:0d:
9d:cb:ef:f2:a9:ed:c2:09:83:d0:01:d5:48:9d:09:
ab:83:f8:3a:64:4a:6b:c6:22:cf:53:61:b8:68:d3:
58:7f:7f:c6:19:73:54:b3:36:fd:1b:8e:c0:2f:fc:
b8:c4:ed:f6:24:5d:21:c8:b7:42:16:f9:b1:6a:ef:
a1:84:63:46:d8:70:73:a3:c6:24:6d:8f:2e:e6:08:
60:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:25:C1:FD:89:9D:A9:9B:09:0E:7B:9C:6E:6D:51:75:43:2A:D8:AE
X509v3 Authority Key Identifier:
keyid:D8:D3:CA:2C:23:1A:FD:F3:B0:35:5C:77:A7:CB:B2:26:F8:1B:74:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NPKLCMa_fOwNVx3p8uyJvgbdN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/3c076b-aea1-4a33-a9e9-99128bf6a841/1/2NPKLCMa_fOwNVx3p8uyJvgbdN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:77:78:95:87:64:bb:f6:20:d6:b7:e0:b0:50:2f:52:23:fc:
e7:ea:82:83:43:7b:84:86:0e:f7:43:61:83:b6:ce:24:c9:f5:
70:f1:f9:31:e4:b1:3a:0a:34:af:59:75:d6:50:14:c1:52:21:
a4:50:67:83:8b:8d:d8:14:66:17:aa:17:d6:43:6c:ba:09:61:
d1:0c:2a:cd:c8:d9:18:f9:f4:d7:53:1f:70:ea:de:34:7b:1a:
58:12:3e:cf:4f:6c:82:97:ed:59:ed:68:9f:03:d7:9d:79:e0:
a9:3a:2a:19:e6:fc:68:4a:7e:63:c3:3b:62:9c:75:5e:91:2b:
4b:dc:96:8b:2d:3c:86:c2:bb:90:ad:37:83:72:9a:66:5a:cf:
a4:dd:a7:5f:cb:e7:b5:6e:4e:56:e2:90:98:b5:24:a4:89:60:
c1:ca:ab:a6:88:18:f5:dc:01:6a:62:78:f0:3a:65:5e:9d:c5:
78:9b:86:42:64:29:69:0b:23:80:20:c5:f4:ef:e8:6d:b1:3d:
39:19:72:86:0f:d4:bc:ff:b1:86:dd:bb:0f:73:8b:60:18:00:
e3:da:e2:3d:5b:66:57:71:06:ab:1a:2e:42:cb:17:7a:cb:c0:
3b:e8:53:c1:5f:00:35:4c:68:2a:29:63:c6:a0:5c:9c:39:20:
c0:94:8c:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:17:17 2025 by rpki-client