Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
File: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft (raw, json)
Hash identifier: 0U2Rol1+wJx6v/6a7Q+/UsbIizCvg9M+xnIaJnOIHYE=
Subject key identifier: 3A:E4:16:1D:9C:46:01:3D:71:AA:00:1D:5E:0D:76:B1:AE:8A:0C:6B
Authority key identifier: D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77
Certificate issuer: /CN=d90482763070955e7ea87e2ca37b891b864b2577
Certificate serial: 019A4FCFBB74245442434F2271E74ABA9F9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
Manifest number: 0519
Signing time: Tue 04 Nov 2025 17:00:04 +0000
Manifest this update: Tue 04 Nov 2025 17:00:04 +0000
Manifest next update: Wed 05 Nov 2025 17:00:04 +0000
Files and hashes: 1: 2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl (hash: i5/ZuoXZdMnlrwkWEQFrEp3RE9iO+4Sh4T+4nGOMYjM=)
2: kZsXR7fR0Ou_RuvSVexqd7WF5Zw.roa (hash: VeB6BvnRbCRLPDDkoYsxbMM4NdMeIicaUa0njjeL7mg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:cf:bb:74:24:54:42:43:4f:22:71:e7:4a:ba:9f:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d90482763070955e7ea87e2ca37b891b864b2577
Validity
Not Before: Nov 4 17:00:04 2025 GMT
Not After : Nov 5 17:00:04 2025 GMT
Subject: CN=3ae4161d9c46013d71aa001d5e0d76b1ae8a0c6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7a:5b:c7:2c:2a:9a:41:b7:2c:e5:7c:26:35:
29:b7:44:46:01:a2:79:dc:ea:e3:45:43:0c:c2:04:
32:57:48:1a:96:b2:3a:08:a1:e6:ed:f9:fe:3f:8b:
d4:56:33:ab:a4:cc:ad:35:9c:e8:17:14:ba:35:37:
97:2e:f1:0f:ef:d2:c7:f7:a0:65:00:a5:5d:ec:c6:
83:ca:94:61:7b:24:a3:95:6b:4d:a6:03:6f:02:bf:
b0:ab:2a:d6:2f:be:ab:78:8a:d4:78:4d:e0:d2:cc:
40:40:03:22:c2:e0:5e:49:52:0b:54:60:cb:d7:af:
3f:8b:91:f0:d9:31:3e:62:87:c1:15:0f:f0:83:39:
d2:07:34:33:26:ac:b6:d6:c5:53:24:66:64:18:d7:
e1:f6:9a:eb:87:37:a9:72:72:cf:0d:5f:2d:6b:93:
df:e8:66:db:70:8e:cd:8d:79:8a:81:25:17:dd:d0:
b9:77:b9:c7:c3:e4:77:19:0b:c1:d7:a1:b6:c7:5a:
b7:92:66:e9:03:2b:55:05:df:d0:cb:63:b7:d9:a8:
4e:74:82:4b:8b:ff:c1:c9:e3:ca:ac:40:41:eb:18:
77:01:a3:eb:85:67:29:0b:a4:1b:68:84:ff:14:29:
e1:53:a1:8e:a6:a9:ec:a8:49:59:4e:98:21:85:ba:
81:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E4:16:1D:9C:46:01:3D:71:AA:00:1D:5E:0D:76:B1:AE:8A:0C:6B
X509v3 Authority Key Identifier:
keyid:D9:04:82:76:30:70:95:5E:7E:A8:7E:2C:A3:7B:89:1B:86:4B:25:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QSCdjBwlV5-qH4so3uJG4ZLJXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/94c2bb-e80a-4f2c-8208-a9b2766773aa/1/2QSCdjBwlV5-qH4so3uJG4ZLJXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:da:bf:03:e9:42:c6:32:b7:5c:bb:75:63:2b:fb:0c:40:57:
3f:18:8d:6b:3b:86:bf:1e:f7:fa:fe:5c:6c:01:57:4b:5a:74:
f0:20:80:7a:83:57:11:11:7e:b5:f8:4f:7a:6a:99:d1:dd:01:
e1:2f:2e:8c:af:28:19:da:51:41:dc:e6:0b:37:73:98:aa:8f:
eb:98:de:dc:9f:09:d6:60:0f:c1:fb:05:4c:7f:46:2f:cc:e8:
3e:c9:57:3d:32:95:31:22:c4:d2:5a:74:b7:5e:3a:a8:2b:e1:
dd:a7:27:91:d7:b1:cb:96:5a:5a:c4:b0:da:60:4d:7b:d2:51:
e8:9e:f2:32:73:fd:75:dc:0f:dd:de:92:76:31:01:ef:c6:f5:
41:ff:4d:e0:2d:ee:d2:5e:21:d4:70:f6:9f:c5:fd:39:a6:66:
9c:54:42:35:3e:70:f4:d9:ce:62:f6:c0:49:99:9b:76:d2:30:
5c:ab:22:88:6f:1b:c3:17:61:df:6f:48:8f:89:8c:bf:7a:c5:
38:e1:10:bc:04:74:e6:f9:01:dc:e2:6d:33:76:03:94:5d:b3:
70:65:1a:3f:c1:fe:4f:f4:6b:d0:a3:7c:04:c4:21:f9:6e:96:
98:7d:d7:93:90:80:5c:10:34:d6:95:00:64:e2:d3:41:04:96:
87:07:d1:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:34:28 2025 by rpki-client