Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
File: iW81xeAyGs0CFn3viAfwu29xwo0.mft (raw, json)
Hash identifier: almxe8DIkHxyvx77ZFxgt8Z4XQhQOaMHve3J7BVq6So=
Subject key identifier: D0:F5:D1:A2:AF:E7:52:1D:3A:53:7B:A5:6E:0F:EC:C1:20:A9:76:F4
Authority key identifier: 89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
Certificate issuer: /CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Certificate serial: 019A4EF5B4E10BF1E2F2CC0CA2839EFAF3E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
Manifest number: 12CF
Signing time: Tue 04 Nov 2025 13:01:56 +0000
Manifest this update: Tue 04 Nov 2025 13:01:56 +0000
Manifest next update: Wed 05 Nov 2025 13:01:56 +0000
Files and hashes: 1: KzxZqybvsz4qWRvLNMoGl_b-dg0.roa (hash: waO3ZFTQ9Kiow9t+yCx6WlAToF1IQKM9UgVqX7Ju9ms=)
2: iW81xeAyGs0CFn3viAfwu29xwo0.crl (hash: FRbcTwVM1b37+88kNHBpVLDhqjQcNeFfE0kkHlUrUYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:b4:e1:0b:f1:e2:f2:cc:0c:a2:83:9e:fa:f3:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Validity
Not Before: Nov 4 13:01:56 2025 GMT
Not After : Nov 5 13:01:56 2025 GMT
Subject: CN=d0f5d1a2afe7521d3a537ba56e0fecc120a976f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:26:b4:9f:9c:20:cf:85:71:e5:83:32:6b:5f:
45:96:42:9d:46:d5:10:91:ab:c4:d9:ed:9a:48:a0:
83:40:c9:f1:19:b8:f5:34:16:25:ec:20:f0:3f:56:
e6:d7:f2:fb:a9:ce:9f:1c:b8:b5:af:be:61:3e:17:
66:78:4e:f0:86:f4:71:e3:ae:90:28:06:db:57:00:
ec:b6:d4:15:7d:fa:30:4a:3d:6e:c8:86:9d:af:be:
c1:72:9d:d2:e5:91:21:4a:1c:43:6d:17:c8:25:13:
cd:20:a1:8a:2e:19:5a:4a:6b:38:f8:bb:1e:90:6a:
3a:28:14:83:eb:c7:df:14:63:0a:25:6a:48:4f:50:
3e:89:ba:88:39:fa:1b:92:7b:c7:15:b2:de:fb:0d:
0b:65:25:a2:d5:45:4b:e3:31:4f:25:ec:52:21:28:
15:dd:dc:64:48:b4:ea:2a:45:1f:73:86:6e:16:ab:
a6:c7:7c:a5:45:72:62:a8:52:a6:5a:24:0b:c5:c2:
48:53:6e:14:ff:68:96:9f:34:8d:5d:03:1b:b4:53:
be:bc:f7:96:2e:d8:2a:db:45:4f:c9:e4:c2:1f:dd:
2a:1e:af:4a:eb:72:89:cc:1f:de:85:87:81:02:ce:
de:c5:5c:f8:20:5c:b2:4f:1e:64:13:ee:d8:a3:c1:
18:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:F5:D1:A2:AF:E7:52:1D:3A:53:7B:A5:6E:0F:EC:C1:20:A9:76:F4
X509v3 Authority Key Identifier:
keyid:89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:2c:77:e4:7d:81:cb:ad:39:3b:da:36:9b:b5:08:03:6d:6b:
44:5e:11:74:dd:dc:a5:f3:2a:82:e7:aa:be:70:ed:be:95:17:
56:cc:1f:f8:05:d4:35:e1:55:e0:1f:c3:a6:0d:c3:81:6f:1c:
f9:2c:1b:4a:9c:42:bd:86:a9:cf:f0:85:13:7f:8c:d0:53:a0:
f6:97:64:94:96:0d:5e:4e:88:5b:81:61:96:f7:18:68:ae:ba:
79:17:e5:3c:fc:18:d3:af:e5:9b:5c:b6:a4:a6:fe:d1:de:af:
08:f7:39:cb:56:94:36:9c:f6:87:03:ae:8e:d8:a3:13:33:0d:
c3:b1:5f:fb:9a:f3:47:fe:b9:b5:65:6d:cb:46:33:50:92:84:
ec:4e:81:9d:31:48:f0:0c:9e:03:07:03:ed:25:b0:fb:0e:90:
0f:d5:bb:0e:3f:d6:58:f1:b6:04:d1:82:86:d5:ce:2a:6b:2f:
a9:66:95:cf:1c:55:02:cf:20:87:ec:b5:33:4b:4e:6a:96:09:
a2:01:d8:d1:ac:44:7a:fa:ed:37:27:99:37:fb:66:27:73:ec:
fc:4a:56:b5:04:99:1d:a8:59:a4:90:0e:6c:f9:7d:9e:54:2e:
d6:23:54:e8:1c:55:73:67:42:e2:11:16:c5:6f:87:43:bc:65:
93:02:71:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:00:57 2025 by rpki-client