Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
File: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft (raw, json)
Hash identifier: vpwa/1Vy6OUHSrIu7rjCJSYH1xaw06lw0HmuSyJa8JM=
Subject key identifier: 17:A4:C6:4A:7B:08:EC:F1:88:2D:D6:BB:C2:87:72:1F:6A:39:21:D8
Authority key identifier: DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
Certificate issuer: /CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Certificate serial: 019A51BEC0CFFDDA2A49343F6E4B4CA812E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
Manifest number: 101F
Signing time: Wed 05 Nov 2025 02:00:46 +0000
Manifest this update: Wed 05 Nov 2025 02:00:46 +0000
Manifest next update: Thu 06 Nov 2025 02:00:46 +0000
Files and hashes: 1: 2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl (hash: guaJVSPv1YmH9jFNsVrbvvH6C9vyRBvMaSGOggVvf/o=)
2: fvccoh-XRGUydolEQwVKUg__llM.roa (hash: MESTegxG3uX73jrknXUqcZY7a9Gll4oI6clWX78ISS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 02:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:be:c0:cf:fd:da:2a:49:34:3f:6e:4b:4c:a8:12:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da90d04bf57fa4868e69997c83b3ad771fd50a9d
Validity
Not Before: Nov 5 02:00:46 2025 GMT
Not After : Nov 6 02:00:46 2025 GMT
Subject: CN=17a4c64a7b08ecf1882dd6bbc287721f6a3921d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f9:78:a4:98:a9:a8:63:97:1f:81:98:fc:47:
62:1a:e7:dd:a3:66:4a:23:85:5f:3c:92:36:7a:a3:
6d:5b:91:b7:a4:2b:aa:a3:70:a3:08:73:37:f8:99:
e5:43:7a:4c:e3:4c:1e:6f:8f:b3:c3:0e:1d:72:31:
8e:22:ab:90:ea:e9:2e:e0:62:00:9b:69:19:da:48:
ef:c0:bd:34:c6:88:6a:00:4d:39:51:2b:71:df:bd:
14:14:30:6d:32:43:10:0d:a0:54:6d:11:39:67:48:
5e:0c:5e:81:ca:44:20:80:02:46:1d:08:48:ef:7a:
49:49:41:24:16:05:00:10:cc:2d:63:f6:98:1a:4c:
8e:d4:93:76:96:73:a2:05:06:4c:34:24:52:43:80:
52:ca:08:a0:33:3a:fa:0e:83:e3:2d:32:48:5a:2e:
eb:73:93:58:c5:86:f0:5a:28:a1:6d:f8:f3:ea:9b:
44:bd:b4:84:37:06:08:6c:46:3a:1f:49:35:c7:2f:
66:fc:f7:32:cc:02:88:d3:8c:a3:fc:2c:64:59:8c:
b2:e6:1f:50:f9:0a:bc:f4:34:8c:53:ec:d5:45:df:
9e:b3:fc:a4:99:ef:0c:6d:68:cf:0a:37:06:6c:1f:
79:d0:8d:7d:be:53:5d:9f:ea:5c:66:b8:e6:f6:2e:
e3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:A4:C6:4A:7B:08:EC:F1:88:2D:D6:BB:C2:87:72:1F:6A:39:21:D8
X509v3 Authority Key Identifier:
keyid:DA:90:D0:4B:F5:7F:A4:86:8E:69:99:7C:83:B3:AD:77:1F:D5:0A:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pDQS_V_pIaOaZl8g7Otdx_VCp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/4d2545-a7d5-465c-9618-51ad9c382a8d/1/2pDQS_V_pIaOaZl8g7Otdx_VCp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:a5:10:99:8d:4b:57:67:2c:4f:83:8d:f4:96:a5:55:57:24:
ca:fb:af:ad:75:75:0b:d6:15:fe:0e:06:b6:31:20:cd:5c:88:
71:06:91:33:2b:1a:6b:cf:28:3d:7a:bb:7a:1e:b0:f8:9e:5c:
14:1f:ad:d5:fa:93:0f:a3:8e:35:b6:2e:0d:3c:28:0e:88:c2:
f8:6e:c1:b0:f6:21:db:d9:bf:65:51:0c:d7:02:d2:03:fa:ce:
9e:59:14:e8:34:ce:87:71:88:89:e9:d6:e3:64:95:fb:9e:dd:
9c:19:af:fb:72:24:15:bf:d7:e0:67:7c:be:67:b3:aa:93:4c:
75:10:4a:2c:0c:d4:bd:24:1b:05:b6:1f:5b:39:db:ee:55:f4:
70:b5:c6:4d:f9:ce:05:b6:10:f6:7b:07:60:44:13:fb:c8:7d:
05:41:af:53:24:42:05:6b:e7:16:10:64:d0:43:7b:cd:8b:06:
cc:2a:59:e8:ac:f3:e6:71:79:be:88:bc:a0:8e:91:02:34:0c:
71:c0:37:8d:c1:f4:0b:7a:6a:6c:61:0f:04:50:7f:e3:1c:97:
a0:9d:b7:fb:1e:88:4c:22:af:79:63:2f:a9:81:4b:0f:38:db:
a2:14:6f:c4:0a:4a:2e:b7:31:8f:96:98:69:1a:f1:fc:b5:fa:
ca:c1:22:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:10:22 2025 by rpki-client