Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
File: 2sMmMqqRVCU8bc0jMemtaSC2vcw.mft (raw, json)
Hash identifier: wRtajuV7SdnmDZ4C8C8+kYGOvFX6CH6laE1DsUw/Jzk=
Subject key identifier: 63:D9:8A:6C:E5:A1:9D:CC:93:53:A4:DE:18:19:77:39:A2:38:F0:A7
Authority key identifier: DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
Certificate issuer: /CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Certificate serial: 019A4E18B67CEDA62AC589C9B8DDBB9C0CB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
Manifest number: 0EA1
Signing time: Tue 04 Nov 2025 09:00:33 +0000
Manifest this update: Tue 04 Nov 2025 09:00:33 +0000
Manifest next update: Wed 05 Nov 2025 09:00:33 +0000
Files and hashes: 1: 2sMmMqqRVCU8bc0jMemtaSC2vcw.crl (hash: 3FkvazeChVhmgOYUGCWsi8EuzlvR+dNp+x5aXowzQ1U=)
2: CW5XXGbSHLy5qht82EbGk600atQ.roa (hash: 8xLLW0wHU24TMYAN26pfip52tQpmGJnJ6m5zJ2CIta8=)
3: WB4VFJtMdRQ8LPD-pPSCHzrXGms.roa (hash: cwVGAvm4ISTc3hrZPIqP9LBQXHGGf2V0XCAeWNsC/Qc=)
4: teW-DT8zdzN4G6q3ot7ZU_q2aDU.roa (hash: vMh/kxEkmKzqOFqR68vsoiN3gzaKBX7vYAgPza9p9cw=)
5: xHovsWco0FWia8DWR-GvNsYSrNI.roa (hash: tby+FFpFl1LGlp9XQyXnHjYmVkeUGYGKTrQzTYqHrLE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:b6:7c:ed:a6:2a:c5:89:c9:b8:dd:bb:9c:0c:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac32632aa9154253c6dcd2331e9ad6920b6bdcc
Validity
Not Before: Nov 4 09:00:33 2025 GMT
Not After : Nov 5 09:00:33 2025 GMT
Subject: CN=63d98a6ce5a19dcc9353a4de18197739a238f0a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f8:7e:b0:3b:29:02:3f:ce:01:70:99:49:71:
13:8e:ba:03:87:b1:3a:d8:51:11:d7:5a:d4:9b:8e:
1c:a1:ad:c1:19:b7:8b:f1:db:4a:e9:95:05:28:e4:
d4:90:d6:97:5d:9a:07:76:26:be:a7:ad:6b:ef:03:
4d:9b:06:23:18:34:a5:4f:b2:ed:27:f8:d0:7e:5a:
ba:6b:f7:ed:a4:54:a5:65:b0:64:43:24:77:7d:dd:
19:51:b5:ba:01:02:ed:ef:ab:5b:4d:62:91:71:da:
38:98:58:af:5a:3d:ba:9e:c0:ae:6c:50:01:f2:dc:
6b:fa:90:36:31:11:a3:80:b8:88:b7:48:ea:1c:b0:
7a:c4:3b:23:77:8d:96:9a:05:f6:f2:51:54:8b:87:
cd:99:fa:73:78:72:a8:98:c6:c0:c8:6b:b1:d6:92:
5c:89:ba:dc:e4:e4:2f:7f:be:da:9c:57:15:5e:d0:
4e:ba:3d:41:c0:3a:c0:f9:17:f2:2f:f5:49:f9:89:
f8:25:1f:8f:c0:30:ee:44:f8:32:67:8d:ab:c7:db:
4a:ba:fc:79:9f:6f:4c:66:cf:28:c8:6c:0b:0c:a0:
97:c3:6a:22:fc:27:9a:60:d4:38:e2:a3:26:15:a6:
b3:9f:74:87:01:63:aa:f5:3c:6d:96:f6:76:84:e1:
05:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D9:8A:6C:E5:A1:9D:CC:93:53:A4:DE:18:19:77:39:A2:38:F0:A7
X509v3 Authority Key Identifier:
keyid:DA:C3:26:32:AA:91:54:25:3C:6D:CD:23:31:E9:AD:69:20:B6:BD:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sMmMqqRVCU8bc0jMemtaSC2vcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/49424a-aa5f-4b9f-a627-24654e941c12/1/2sMmMqqRVCU8bc0jMemtaSC2vcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:9f:00:5b:a4:df:a9:0a:6a:a3:1f:8f:ff:84:1d:08:0d:1e:
5e:85:19:9f:ff:f8:bc:7f:59:fa:c4:a5:de:37:a5:9d:32:3e:
bf:02:60:58:f3:43:36:0d:a8:50:ce:9b:26:8c:56:2f:3f:3b:
79:be:54:22:68:8d:3f:e6:1e:12:83:73:8f:be:3e:60:ac:d0:
5d:b6:6e:de:fc:e4:6a:1c:15:f7:a4:b6:6e:e9:df:4e:69:18:
4b:91:8e:c3:a4:3b:18:ae:cc:9d:b3:42:a7:96:89:d1:3d:28:
5b:a2:bf:a4:18:47:85:c4:ab:05:81:fc:39:c6:6d:18:3f:ee:
30:18:7c:94:5b:04:69:be:75:4c:4b:68:57:4a:72:c2:28:fc:
cf:95:a1:a6:06:92:5a:b1:f6:e8:34:1f:c8:8e:42:a9:e8:79:
19:f4:43:2c:12:24:59:77:21:75:c6:51:83:6e:57:6d:f4:78:
54:c7:43:9b:40:a8:64:2c:08:53:30:80:c2:fe:ff:e4:01:3f:
c8:94:40:4b:56:7c:1b:03:1a:a1:4f:ab:e3:f6:b0:8e:b0:ce:
d8:0f:38:a3:8f:b7:36:53:dc:ec:7b:62:b4:f4:ce:44:08:ef:
27:6e:f4:dc:69:68:64:4d:fc:34:b9:0c:a9:38:ac:43:c0:b4:
0b:f2:75:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:52:40 2025 by rpki-client