Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
File: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft (raw, json)
Hash identifier: bv8tL+DDHlUFi02sXAv6HETYNMf9HKtu4lRr3cEizjo=
Subject key identifier: 55:72:0E:E3:11:72:7C:97:F9:0F:B9:31:1A:25:D1:A3:64:72:85:15
Authority key identifier: D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
Certificate issuer: /CN=d97a77930122879a766470df8d660c98442a9932
Certificate serial: 019A522C00D23D3A989937E315D8645A1D97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
Manifest number: 01E7
Signing time: Wed 05 Nov 2025 04:00:06 +0000
Manifest this update: Wed 05 Nov 2025 04:00:06 +0000
Manifest next update: Thu 06 Nov 2025 04:00:06 +0000
Files and hashes: 1: 2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl (hash: xuTOJnDvnkBFIPobOIgFdnGXNwxtqWTmzVu8Nxxw9DA=)
2: HVaoDMotksZf76Ju74TL_0gQqQw.roa (hash: 6Wt6s6Ldu4cKxpBhxwlW4dbeWtmB6JUQE70sEXR7L0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:2c:00:d2:3d:3a:98:99:37:e3:15:d8:64:5a:1d:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d97a77930122879a766470df8d660c98442a9932
Validity
Not Before: Nov 5 04:00:06 2025 GMT
Not After : Nov 6 04:00:06 2025 GMT
Subject: CN=55720ee311727c97f90fb9311a25d1a364728515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:cb:5f:d4:3c:9e:31:d0:fd:f7:46:64:7a:90:
49:7d:ef:1a:87:c9:0f:55:8f:6e:30:f7:a1:d4:60:
c3:0f:e1:b6:99:38:d9:cd:df:9e:f9:b4:bc:90:07:
30:bd:c8:ed:04:7f:b2:84:83:2d:15:67:02:ad:83:
2e:e3:89:cd:5e:fc:99:4e:1a:fa:d9:fc:c2:c8:e7:
f5:eb:0b:84:ba:27:cd:b5:c4:2d:7f:0d:35:28:98:
d1:b5:5b:f7:7f:8d:fd:db:37:11:2b:75:4f:ea:2d:
0c:8c:5e:fc:f2:7f:79:3e:d5:e0:82:d4:42:8f:0a:
05:4b:31:4c:54:be:69:3e:7e:26:5d:54:83:f3:05:
b9:82:c6:c7:cf:ce:e6:ea:50:3f:de:6d:35:8c:4c:
5a:72:dd:ef:16:28:46:2e:0b:3b:c2:01:48:81:8e:
d3:14:19:49:ad:64:9a:49:4a:f7:21:9f:94:2f:2c:
32:44:f6:90:49:9b:70:6c:a4:4d:5e:2d:b0:ac:c2:
a1:36:bc:b3:49:ee:50:b8:87:68:62:ff:76:ba:fd:
08:59:e6:da:91:85:ba:e1:c1:75:25:e8:01:e1:f0:
47:50:b1:0c:2b:5b:c8:43:ce:a2:9f:20:7d:60:8c:
87:fb:90:c9:b7:5a:69:90:5c:3f:0e:9b:50:8e:55:
c2:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:72:0E:E3:11:72:7C:97:F9:0F:B9:31:1A:25:D1:A3:64:72:85:15
X509v3 Authority Key Identifier:
keyid:D9:7A:77:93:01:22:87:9A:76:64:70:DF:8D:66:0C:98:44:2A:99:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2a4922-434b-47b1-b304-cd459a65721b/1/2Xp3kwEih5p2ZHDfjWYMmEQqmTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:47:ee:22:df:8b:02:f1:3d:a4:a9:52:02:a4:b3:96:c2:cc:
26:fb:13:ad:b4:3e:fc:2f:9b:31:a6:69:58:c9:97:53:10:a6:
c8:94:fb:11:58:8c:2e:6e:13:5f:c9:73:5a:4a:d5:7e:a9:cb:
fd:64:1d:95:7d:85:c8:b3:38:67:c8:ae:f7:4e:bb:8d:0c:b8:
67:2e:b1:33:93:6e:3d:0e:a9:df:62:8b:0b:3c:ae:08:2b:83:
79:68:63:3b:22:d0:b7:55:17:bd:8e:cb:ff:a8:11:69:d9:28:
fe:12:68:5a:84:57:a9:dd:c9:40:e5:5d:a7:fe:5e:48:e3:e1:
79:a4:0a:e5:ab:48:a1:35:32:fd:7f:25:cd:6c:fc:05:02:9c:
6e:96:5d:a2:cb:d3:85:79:8c:09:24:ef:94:91:c6:54:12:41:
f3:a2:90:c0:1d:fe:bf:db:45:a9:99:ed:35:9d:2a:cf:3a:e6:
8d:9b:cd:0b:3d:8e:1a:63:c2:e7:17:0a:2e:2b:23:f9:4c:97:
da:fd:c9:0a:fb:cb:67:f5:a0:35:84:b7:7f:2a:4c:2b:fc:42:
f0:32:9c:44:f5:28:b5:4f:cd:7c:c9:45:4d:cd:ec:d0:ae:c6:
0b:be:07:5a:ed:cd:55:85:94:b2:7d:66:73:82:7d:c2:57:1e:
9b:26:9d:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:08:25 2025 by rpki-client