Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
File: 2dYxVsGDbxbDtDDv-7cqxpky6ps.mft (raw, json)
Hash identifier: ny0PZYNc4TGQd775pMqjMprMuSkgZDdBkOKwFE66Vpc=
Subject key identifier: C2:BF:FF:27:F0:31:F8:30:C7:6E:6F:48:69:C9:57:51:57:03:CD:71
Authority key identifier: D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B
Certificate issuer: /CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
Certificate serial: 019A4EF4A8A32C93451D9F9731D9A2FB5590
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
Manifest number: 1388
Signing time: Tue 04 Nov 2025 13:00:48 +0000
Manifest this update: Tue 04 Nov 2025 13:00:48 +0000
Manifest next update: Wed 05 Nov 2025 13:00:48 +0000
Files and hashes: 1: 2dYxVsGDbxbDtDDv-7cqxpky6ps.crl (hash: IEun9V7IMaU6wUe+eC5u6Bt8AtQJJhOnL9bUBVuYQOc=)
2: Jfj9dSZw93m0LgWLC-5cHZtQPbI.roa (hash: oiCigciFJOGI1kCvszmmuaaLh0TPamcLgyxjc9J3FC4=)
3: M_Z-VhDZc2uLCtQfe10yHlwcSGg.roa (hash: AB/qLdUMcV196Xzj3vZ4mE4S8cay+jmGliBEUDalnEc=)
4: f_1g2Z_O5AiL3yW6mcyUEsXnVQ8.roa (hash: d0LuTF/iwiSUpGBh2NLV29ONLEQ7pXLVwvq/UHuDiNA=)
5: m7iDzlCGf343P9LUMQ7CzCNMpq8.roa (hash: 25V4vL1hxRuT+EiKGjaMOxdCAH/Rao4IMyItMWn6Kn4=)
6: wuWM0Bqfn2DOTXAQfUUvKBidXpo.roa (hash: m6fPdbSddi0hJ1qwurB1jCC8tnof8GXCRJUIPf5vVWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:a8:a3:2c:93:45:1d:9f:97:31:d9:a2:fb:55:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d63156c1836f16c3b430effbb72ac69932ea9b
Validity
Not Before: Nov 4 13:00:48 2025 GMT
Not After : Nov 5 13:00:48 2025 GMT
Subject: CN=c2bfff27f031f830c76e6f4869c957515703cd71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8b:fa:33:57:8d:a4:53:a9:a1:af:70:1a:2b:
18:43:3c:01:f6:92:72:66:dc:e3:9f:6a:81:8d:a1:
c7:cf:06:73:fa:fe:92:c6:58:74:b3:e4:62:79:2a:
41:43:ab:0e:88:b4:47:87:df:ef:8b:87:f3:20:93:
7f:bf:36:2f:52:05:65:33:1a:53:d2:9c:cd:19:72:
a4:33:4b:3f:6d:40:93:f9:f4:d1:bb:90:23:6d:5c:
31:cc:49:2b:f2:5d:64:40:78:12:80:23:17:8c:c5:
9f:ed:34:d4:0a:c2:6a:ad:1b:50:95:2e:e2:39:3b:
8f:c2:d9:f3:a7:f5:f6:dd:f1:30:f4:2b:d2:1f:2d:
e5:db:02:89:bd:57:83:4b:4d:3b:a3:22:e9:a8:1c:
48:12:9e:76:3b:b3:a2:cf:3e:74:b2:a9:c3:0b:3e:
6b:27:a1:03:b4:cc:6f:25:d4:bb:4f:26:a0:61:08:
12:03:12:8b:9e:0c:76:fd:45:96:ed:b3:20:31:de:
f4:a4:b5:db:3c:2a:ba:46:34:ac:6d:26:98:a1:cf:
33:f5:28:fb:26:d8:d4:f2:a5:a1:1d:62:b8:54:a0:
e8:86:3a:e7:ec:8a:45:f8:68:37:31:0f:7d:d9:cc:
d0:46:b3:8d:f6:34:95:bf:3f:6f:8a:d0:25:0a:47:
3d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:BF:FF:27:F0:31:F8:30:C7:6E:6F:48:69:C9:57:51:57:03:CD:71
X509v3 Authority Key Identifier:
keyid:D9:D6:31:56:C1:83:6F:16:C3:B4:30:EF:FB:B7:2A:C6:99:32:EA:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dYxVsGDbxbDtDDv-7cqxpky6ps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f46be-028b-4d03-a973-fda011e5c972/1/2dYxVsGDbxbDtDDv-7cqxpky6ps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:6f:6d:2e:c0:32:db:a2:e7:d4:0e:48:53:8c:27:46:04:2f:
01:de:e8:0c:14:dc:76:1d:e0:e0:e6:64:a9:78:26:87:08:b5:
0e:48:47:de:a6:41:e1:fe:bc:26:92:4d:34:8c:1d:7b:ba:ef:
cb:f9:ae:fd:a6:5e:54:b4:2a:4e:02:f2:34:30:25:60:5d:c1:
6f:72:9d:06:0f:21:a3:08:c0:0f:78:a2:7c:3d:ad:f4:ed:b0:
5d:78:97:7f:b2:08:bc:e4:79:bf:91:e5:aa:5b:f8:b8:c2:1e:
26:79:0f:a2:4c:46:fc:1b:17:5d:6f:aa:e8:cb:9a:34:12:95:
61:62:ca:fe:a1:5d:4c:c0:b3:c2:e2:41:66:af:b9:2a:ce:20:
20:79:ae:66:fe:a4:73:f7:08:81:db:e9:4c:0e:7b:8d:0d:46:
b5:47:29:6b:57:9c:aa:61:06:95:f1:73:67:55:19:ec:48:a1:
c8:45:b9:5e:d7:64:5a:dd:1c:52:7b:27:17:5f:80:f7:37:a8:
5f:3b:d3:32:3b:2d:e2:6a:11:88:4d:10:cf:8f:89:cd:e3:2b:
d8:0d:4d:50:0d:f1:f9:2c:47:86:9b:dd:94:a4:d2:f5:47:50:
8d:7b:e3:d0:35:f0:80:7d:cb:53:a5:f6:86:2f:e3:13:d7:bb:
80:77:3b:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpO9KijLJNFHZ+XMdmi+1WQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ZDYzMTU2YzE4MzZmMTZjM2I0MzBlZmZiYjcyYWM2OTkz
MmVhOWIwHhcNMjUxMTA0MTMwMDQ4WhcNMjUxMTA1MTMwMDQ4WjAzMTEwLwYDVQQD
EyhjMmJmZmYyN2YwMzFmODMwYzc2ZTZmNDg2OWM5NTc1MTU3MDNjZDcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4v6M1eNpFOpoa9wGisYQzwB9pJy
Ztzjn2qBjaHHzwZz+v6Sxlh0s+RieSpBQ6sOiLRHh9/vi4fzIJN/vzYvUgVlMxpT
0pzNGXKkM0s/bUCT+fTRu5AjbVwxzEkr8l1kQHgSgCMXjMWf7TTUCsJqrRtQlS7i
OTuPwtnzp/X23fEw9CvSHy3l2wKJvVeDS007oyLpqBxIEp52O7Oizz50sqnDCz5r
J6EDtMxvJdS7TyagYQgSAxKLngx2/UWW7bMgMd70pLXbPCq6RjSsbSaYoc8z9Sj7
JtjU8qWhHWK4VKDohjrn7IpF+Gg3MQ992czQRrON9jSVvz9vitAlCkc9ZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMK//yfwMfgwx25vSGnJV1FXA81xMB8GA1UdIwQY
MBaAFNnWMVbBg28Ww7Qw7/u3KsaZMuqbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy84ZjQ2YmUtMDI4Yi00ZDAzLWE5NzMt
ZmRhMDExZTVjOTcyLzEvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy84ZjQ2YmUtMDI4Yi00ZDAzLWE5NzMtZmRhMDExZTVjOTcy
LzEvMmRZeFZzR0RieGJEdEREdi03Y3F4cGt5NnBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYm9tLsAy
26Ln1A5IU4wnRgQvAd7oDBTcdh3g4OZkqXgmhwi1DkhH3qZB4f68JpJNNIwde7rv
y/mu/aZeVLQqTgLyNDAlYF3Bb3KdBg8howjAD3iifD2t9O2wXXiXf7IIvOR5v5Hl
qlv4uMIeJnkPokxG/BsXXW+q6MuaNBKVYWLK/qFdTMCzwuJBZq+5Ks4gIHmuZv6k
c/cIgdvpTA57jQ1GtUcpa1ecqmEGlfFzZ1UZ7EihyEW5XtdkWt0cUnsnF1+A9zeo
XzvTMjst4moRiE0Qz4+JzeMr2A1NUA3x+SxHhpvdlKTS9UdQjXvj0DXwgH3LU6X2
hi/jE9e7gHc7Tg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:37:30 2025 by rpki-client