Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json)
Hash identifier: oK5KQiGmQF5dTjMBCh+irF+nYf9AOBcb842DLuQW4IQ=
Subject key identifier: AD:B1:0C:9A:FB:15:58:05:79:C0:70:C7:4E:E5:10:A9:03:69:47:11
Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Certificate serial: 019A5119DBBB88F527CE9193D46634057FAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
Manifest number: 10F9
Signing time: Tue 04 Nov 2025 23:00:40 +0000
Manifest this update: Tue 04 Nov 2025 23:00:40 +0000
Manifest next update: Wed 05 Nov 2025 23:00:40 +0000
Files and hashes: 1: MBnjR0q6eR7PujQYuvXc6EY3kbo.roa (hash: HNqzyjDd+TtlMN5tniTDAwjj1tssNX0++6C4Wyg438o=)
2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: mZAjPUzmZ41z3PGYqGbWXlOpYYzlE58CHXnDqA1Y6O8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:19:db:bb:88:f5:27:ce:91:93:d4:66:34:05:7f:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Validity
Not Before: Nov 4 23:00:40 2025 GMT
Not After : Nov 5 23:00:40 2025 GMT
Subject: CN=adb10c9afb15580579c070c74ee510a903694711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0e:4a:83:38:ec:30:21:a1:08:63:96:48:0c:
20:cc:93:b6:63:52:1b:89:49:7e:8c:17:fa:6b:f9:
f3:95:fa:83:fd:af:32:73:18:53:52:78:c8:63:49:
8d:82:06:ce:84:1d:0a:da:66:d8:7f:22:fe:38:9d:
fd:ca:7e:89:3a:ab:d7:df:ad:21:bc:f4:7b:5b:b6:
5b:d1:bb:b1:43:25:ad:93:70:ed:3f:04:e9:de:ff:
a9:5f:b5:18:c8:62:38:3a:3b:a3:07:ad:50:3d:9d:
13:4d:49:9f:c0:3c:46:c2:ff:65:58:dc:08:d0:bf:
c5:fc:55:73:e8:44:f8:ff:08:51:55:53:ae:ce:db:
cd:06:35:0f:13:57:3f:ac:8d:c3:0d:70:70:f1:9c:
3a:08:c6:5a:e5:f9:b0:4b:61:ea:66:39:89:a1:f3:
f2:36:93:ac:99:3f:8d:6c:9c:90:3e:84:07:3d:ec:
94:d5:44:cf:a9:cd:1f:2b:33:1e:3d:d3:44:02:78:
1d:1a:5c:e1:25:c9:ed:a5:58:46:90:80:58:72:17:
7b:38:2c:c2:4d:f9:4d:57:7c:c9:e3:4e:17:19:b6:
0f:ce:7d:d1:fe:6c:5a:1d:c9:0f:e2:e3:98:9a:ab:
9b:32:14:dc:e9:6a:77:2a:df:9b:4b:4f:e3:f4:d6:
8f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B1:0C:9A:FB:15:58:05:79:C0:70:C7:4E:E5:10:A9:03:69:47:11
X509v3 Authority Key Identifier:
keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:ef:56:58:58:c4:63:a6:d7:b2:5d:72:de:32:89:91:6f:5e:
89:ea:1c:a3:30:9f:dd:c9:d9:55:7b:1a:2f:40:4a:cb:6f:26:
4b:14:66:a4:db:1d:3b:a5:fd:45:9a:9c:66:a8:88:ab:5c:4b:
a0:9d:57:ba:a5:47:38:a9:b3:35:b3:f8:da:6c:a7:24:f9:05:
2d:c2:e7:41:21:a0:6c:8b:e2:5d:c6:1b:1e:11:71:2c:7f:1d:
0a:1a:d8:1a:54:0d:15:6a:8c:c5:4d:29:4b:f3:0e:96:13:69:
ab:61:d4:55:52:65:66:8c:b2:75:f3:ce:e7:7a:5d:1a:e4:1d:
18:e4:16:0c:d4:b4:ae:f6:16:39:12:1f:89:ad:cd:0f:18:86:
f4:03:02:23:6e:2e:e3:e1:4b:ca:4d:f1:00:40:c0:bf:36:2c:
b6:c0:a2:97:59:f3:61:78:d9:7b:98:07:52:f6:f1:45:c7:11:
fb:b6:59:9a:59:68:74:e5:82:a3:58:5d:e1:fa:e1:34:ec:7e:
1b:4d:92:4b:99:b4:1f:10:19:38:f4:c0:a0:3c:b9:2b:46:9e:
e5:d7:7e:91:46:d0:47:49:c9:ac:e6:e3:a8:55:9b:19:41:3e:
32:4e:5d:3d:af:69:0c:9a:d4:fc:0e:7b:87:1d:7a:01:16:1c:
1d:3b:83:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:52:42 2025 by rpki-client