Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.mft (raw, json)
Hash identifier: S9yWYwSksGLdCScD70R59TCdQkiWEvW4ujdd25meEx4=
Subject key identifier: 44:8A:DA:B6:01:35:64:0F:ED:6C:C9:75:61:F3:22:3C:99:C0:EA:EF
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 019A4EF5901FE2F4C6D9794FB0C839C892A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
Manifest number: 141A
Signing time: Tue 04 Nov 2025 13:01:47 +0000
Manifest this update: Tue 04 Nov 2025 13:01:47 +0000
Manifest next update: Wed 05 Nov 2025 13:01:47 +0000
Files and hashes: 1: 2HGZiqFAq3wf8kDqsMkjWRPJboo.crl (hash: QZ+0FK/4abEI+le3PJKntckyEGlJoVrExpMBAzMgIaE=)
2: ogQz1j5jLQsKEpzhS2JSyEZnZ6I.roa (hash: B7xqxcI+bkCsaT71C5rhEWIjLfcjAKzC1lxv7kehuvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:90:1f:e2:f4:c6:d9:79:4f:b0:c8:39:c8:92:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: Nov 4 13:01:47 2025 GMT
Not After : Nov 5 13:01:47 2025 GMT
Subject: CN=448adab60135640fed6cc97561f3223c99c0eaef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bc:18:d2:f9:16:4f:70:d5:b7:da:ff:af:03:
d6:47:80:8f:fa:70:8d:fb:3b:3a:3b:38:66:21:d6:
c7:41:40:8e:a2:d3:72:a4:d7:e8:3c:49:42:7a:12:
57:d1:5f:7b:a2:65:3e:c7:45:41:ba:ff:fc:db:7f:
69:67:4b:4a:ef:dd:b1:d9:1a:d0:34:c6:77:5a:c7:
e0:47:fd:10:0a:2f:22:ff:fd:f8:4d:25:39:db:04:
fc:4d:97:0a:67:b5:14:7e:21:44:92:0f:04:36:aa:
48:cc:c6:83:06:c7:c6:e6:35:38:d2:6a:1d:f2:70:
36:a1:16:c4:20:43:af:5e:95:25:53:57:b2:37:3a:
07:f5:3c:30:02:f6:90:e7:94:18:64:0b:96:8a:48:
d1:92:51:6b:ed:a7:34:53:15:12:f4:bb:8f:67:68:
a4:2c:c8:8b:7a:48:01:4c:35:59:5d:54:2b:ec:8b:
77:4c:61:f6:10:69:60:c0:84:b4:96:41:02:fe:6c:
a5:ce:da:ce:d0:d3:9a:3e:c9:30:87:f3:43:8e:f0:
95:86:00:1f:dd:07:bb:a1:d1:80:29:8e:74:a7:81:
d3:f6:30:7b:cb:da:37:ca:83:f6:1f:d2:90:76:b8:
bf:69:bb:ef:0b:49:5c:fb:c6:03:a2:eb:b8:53:5e:
02:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:8A:DA:B6:01:35:64:0F:ED:6C:C9:75:61:F3:22:3C:99:C0:EA:EF
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:e3:50:e8:65:0c:4b:8d:eb:c3:60:34:03:ef:03:17:0f:71:
79:c0:87:ba:ce:b5:43:18:5f:2a:a3:87:1b:ab:d8:40:58:52:
1e:ca:5b:24:ce:4c:c0:36:2e:0c:c0:e0:92:42:ac:bf:cc:19:
d7:92:5a:2e:71:eb:4a:4c:71:f2:a8:bc:b7:e5:ec:0f:bd:e0:
0d:4d:e8:eb:6b:62:b0:e5:9a:f4:85:bb:5b:4a:79:e7:5a:48:
45:9a:8d:31:db:c6:bc:90:fa:6d:fb:41:03:68:a6:7a:85:b7:
73:b6:f9:69:63:3b:26:b5:1d:59:e4:a2:e3:74:ae:aa:eb:fa:
4a:7d:2c:d8:00:3d:64:77:a2:9a:99:be:b0:10:2c:25:97:03:
67:f3:31:d3:e4:0b:5a:ff:a6:3d:99:a6:28:68:72:cf:8c:ab:
1f:08:e5:c3:41:c9:60:36:ff:38:17:ff:7a:42:37:2c:4e:27:
c9:d5:3f:3c:a8:30:0f:50:9e:a7:6e:a9:bc:25:e6:23:f8:e4:
0e:a4:64:6d:9c:3f:87:4b:37:73:9b:6d:ad:a9:ee:f5:4d:00:
6c:01:30:c6:13:48:58:dc:62:d6:77:2c:40:a6:6e:e0:00:b0:
ba:bf:a7:c9:91:82:40:cb:b2:0c:ea:3c:97:d5:e7:0b:eb:37:
fe:63:d5:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:57:49 2025 by rpki-client