Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
File: 2hvwCCS2KL9iY7t03ndK3fmZD8k.mft (raw, json)
Hash identifier: 6nGqEcSOUfq7JlCCqIZJXXKuuIjJHXkBp0swrLJYT7g=
Subject key identifier: F0:AC:2B:21:B7:33:DA:1C:04:60:0E:F8:0D:B4:81:03:33:2E:32:2F
Authority key identifier: DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
Certificate issuer: /CN=da1bf00824b628bf6263bb74de774addf9990fc9
Certificate serial: 019A4E4F452C56537D0F1D53D5090AD174A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
Manifest number: 1490
Signing time: Tue 04 Nov 2025 10:00:09 +0000
Manifest this update: Tue 04 Nov 2025 10:00:09 +0000
Manifest next update: Wed 05 Nov 2025 10:00:09 +0000
Files and hashes: 1: 2hvwCCS2KL9iY7t03ndK3fmZD8k.crl (hash: gCZ+l564PhtVhpcHQXhWjkUs4tCqxjq7aRFVyO1bJRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:45:2c:56:53:7d:0f:1d:53:d5:09:0a:d1:74:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1bf00824b628bf6263bb74de774addf9990fc9
Validity
Not Before: Nov 4 10:00:09 2025 GMT
Not After : Nov 5 10:00:09 2025 GMT
Subject: CN=f0ac2b21b733da1c04600ef80db48103332e322f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c7:35:e1:0b:2f:28:61:f3:9e:14:be:e9:5b:
d8:16:a6:24:05:f7:c9:15:5a:2e:04:52:c9:0e:38:
58:01:3c:0d:3d:60:b4:29:17:de:be:a3:ba:cb:9c:
df:be:bf:c5:5c:63:61:4e:4a:54:92:08:49:f0:ea:
ab:50:ac:75:32:46:ac:9c:2e:f9:9e:28:e6:4e:37:
4d:a8:7e:d9:71:2a:67:34:ec:28:3b:4b:dd:64:60:
ba:d0:76:7b:20:ce:d6:c2:4a:ec:dd:ce:b8:f0:7b:
d5:49:ed:59:b5:06:61:bf:81:cb:6e:c7:ad:a4:e0:
30:18:b3:17:32:00:fe:c6:66:6f:47:d6:48:8a:8f:
7f:6c:00:7e:ba:c0:6f:8b:e5:fd:f8:c4:e9:48:30:
78:15:4b:9f:f3:0e:71:62:97:73:20:eb:9c:7a:58:
92:85:3c:76:fa:35:7b:5d:2a:2d:0f:87:33:aa:cb:
4d:c2:54:6a:65:64:7a:c4:2a:9f:02:68:d4:e6:8c:
bd:d1:60:d7:13:9a:54:1c:f5:ad:32:00:34:f7:e7:
28:3e:11:0c:0d:02:1d:14:53:ef:37:af:39:48:60:
79:f4:10:6b:f0:42:13:ee:49:6b:00:1d:c2:0a:0e:
79:f3:c0:07:74:7d:74:a4:29:81:18:00:cf:c3:63:
68:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:AC:2B:21:B7:33:DA:1C:04:60:0E:F8:0D:B4:81:03:33:2E:32:2F
X509v3 Authority Key Identifier:
keyid:DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:8a:2a:c6:72:b6:3f:92:0c:38:18:6b:47:cf:0f:22:ec:b0:
d5:b3:0b:f0:bd:cb:ec:96:e7:89:cf:a7:bf:b5:46:90:20:73:
bb:3b:91:dd:66:fd:fe:35:a9:81:9e:42:04:89:22:ff:96:ab:
90:5c:29:af:fb:9c:15:c8:96:40:83:20:ff:95:d0:1c:3a:48:
ef:4f:0b:7e:7f:0e:c9:97:56:a5:65:a1:15:0e:b8:b6:18:51:
02:79:1a:9d:16:db:36:eb:e4:17:9a:73:12:53:bf:62:16:3f:
67:fd:16:d0:88:af:af:fc:e2:50:f1:9e:c4:c6:7e:81:ea:77:
6d:1b:70:30:54:fd:45:d1:d2:11:e7:62:6d:5a:eb:12:89:a8:
d6:76:c3:5f:10:84:40:e5:1b:c5:e4:33:03:ee:4a:37:4c:0f:
4e:b5:13:68:63:c3:ee:eb:e8:59:2c:3e:31:08:a5:96:79:4e:
ca:9d:e9:9b:ab:e7:8f:b5:9d:20:f5:e8:e2:15:43:90:11:42:
37:a6:df:4e:88:42:7c:92:c3:85:fe:cc:65:62:aa:df:9d:da:
ba:84:3e:73:63:cb:36:04:80:b7:89:ad:fc:79:1e:00:49:a9:
b5:c6:ee:53:c2:70:a8:4e:14:6b:a6:86:a9:a5:77:8b:a1:27:
60:32:25:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:54:53 2025 by rpki-client