Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
File: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft (raw, json)
Hash identifier: Vlx6NyetKysV/vwgdMoOTG3sPUaPIEwnIPey7i7Kjiw=
Subject key identifier: 08:77:41:2E:B3:D1:D3:A2:38:11:F6:1A:65:58:88:AF:32:59:19:66
Authority key identifier: D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53
Certificate issuer: /CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753
Certificate serial: 019A51BE8EE82C6172B41F57628082B6E40E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
Manifest number: 0518
Signing time: Wed 05 Nov 2025 02:00:34 +0000
Manifest this update: Wed 05 Nov 2025 02:00:34 +0000
Manifest next update: Thu 06 Nov 2025 02:00:34 +0000
Files and hashes: 1: 2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl (hash: TtYiXa6oWoXirO1Xe9UzvwoVa03DGvBIGnI9yZ1sE0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:be:8e:e8:2c:61:72:b4:1f:57:62:80:82:b6:e4:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d811dd22f7eaf272bc4bf3ebb152d364bb4d9753
Validity
Not Before: Nov 5 02:00:34 2025 GMT
Not After : Nov 6 02:00:34 2025 GMT
Subject: CN=0877412eb3d1d3a23811f61a655888af32591966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:41:22:8f:bc:b1:1e:fd:fb:fe:57:5b:94:0c:
05:8f:5a:ab:05:f9:21:dd:71:91:4b:68:8c:87:94:
ee:4b:db:b9:82:8c:51:23:fe:61:9e:6f:06:61:13:
27:9a:57:54:3b:e9:28:f7:00:de:67:04:1f:93:1e:
13:a2:c6:8f:02:48:f0:4c:5f:c3:6a:5a:6e:df:8f:
af:58:24:e9:9a:79:9f:d4:3a:55:73:c2:e5:a2:89:
b7:67:3c:d5:11:1a:3a:d0:74:f9:58:2a:9f:e4:61:
6c:12:f4:30:e0:79:5e:f9:26:8f:fe:32:97:8d:33:
2c:00:d6:93:b0:3f:da:c5:a8:44:66:2d:da:22:38:
7b:6a:eb:80:27:21:f4:85:57:98:39:7e:81:82:ab:
a0:73:34:87:87:0e:f7:43:bd:d5:1f:77:f9:06:9c:
e7:56:56:9d:a5:58:f0:16:6b:93:bf:e5:65:da:ea:
5f:0f:85:1c:71:a5:fe:1e:a4:c7:09:da:c0:f5:bd:
cf:51:0e:fc:29:a9:2e:f9:19:32:27:b0:cd:3d:28:
a8:3f:0f:dc:5c:6b:2d:6e:ff:de:7a:7e:d7:18:38:
f2:92:0f:b6:b0:9d:62:11:75:bf:5c:6a:f2:79:bc:
3f:fc:2f:3e:a9:47:80:0b:ae:f9:bf:0a:99:85:86:
a7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:77:41:2E:B3:D1:D3:A2:38:11:F6:1A:65:58:88:AF:32:59:19:66
X509v3 Authority Key Identifier:
keyid:D8:11:DD:22:F7:EA:F2:72:BC:4B:F3:EB:B1:52:D3:64:BB:4D:97:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2BHdIvfq8nK8S_PrsVLTZLtNl1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4762c6-5eaf-4e7c-a824-f70adf1dc0fe/1/2BHdIvfq8nK8S_PrsVLTZLtNl1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:f1:0b:dc:a2:4c:e6:af:56:0a:61:9c:8a:59:6f:17:4b:56:
d9:38:38:b2:2d:19:47:15:dd:6c:86:86:4b:da:80:1a:74:ab:
49:26:aa:01:73:89:d3:a6:f0:be:a4:36:4f:43:5e:79:30:22:
50:1c:4e:48:48:55:e9:76:37:bd:1f:fe:7f:b8:38:b9:82:08:
3e:e2:3a:5e:d0:0f:9a:b8:61:7c:3a:61:da:40:2d:5a:61:a4:
02:62:90:7b:ce:21:d7:df:8d:c8:00:89:b2:82:e8:ae:5b:e4:
5f:a6:ab:f6:02:8f:d4:7b:13:9d:74:79:a7:fa:c3:d0:dc:4f:
52:60:cf:5a:d7:e1:0a:04:4b:6f:b5:20:a0:05:fc:0d:f7:18:
d5:9f:de:9e:18:78:3f:9a:b6:6d:6a:77:e8:97:d5:1a:04:32:
7c:45:ca:2f:ef:46:95:16:55:05:60:b3:f3:88:04:6b:01:2a:
8d:79:c9:77:7b:1b:96:c4:06:2d:5e:4a:85:f3:c7:63:03:5e:
74:42:56:9f:0c:23:20:ca:02:20:91:de:17:c7:01:3a:03:bb:
83:a4:6d:4f:e9:fe:e2:39:a6:f5:63:69:ac:d4:36:f4:16:15:
4d:7c:65:cc:31:d5:4b:c5:41:d9:43:57:0e:f6:cf:c4:e3:1f:
af:e8:27:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:20:43 2025 by rpki-client