Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
File: MFxE6MlhoUUNCqshLw3scX0d77Y.mft (raw, json)
Hash identifier: 1dQBsYicULiO0e72zCk+5wwxbM+sf2AQfTBN7vVQoWw=
Subject key identifier: 10:F9:E7:2E:4E:B5:EB:49:75:86:44:62:B8:A9:C8:93:5D:79:24:BD
Authority key identifier: 30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
Certificate issuer: /CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Certificate serial: 019A4EF48A178F4EBFB01ED3CBE8B01EE50D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 13:00:40 +0000
Manifest this update: Tue 04 Nov 2025 13:00:40 +0000
Manifest next update: Wed 05 Nov 2025 13:00:40 +0000
Files and hashes: 1: MFxE6MlhoUUNCqshLw3scX0d77Y.crl (hash: 5eD5XogkxBPFh2wjnVDScWgBl+jm1H7jYg6p1OChros=)
2: mJgdj-dzJHYIwfc18P0iKUu6K8Q.roa (hash: BwFiGax6tDOHoiiFhGtxEO6XUIlUJlP+Zm+e5NhOWpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:8a:17:8f:4e:bf:b0:1e:d3:cb:e8:b0:1e:e5:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Validity
Not Before: Nov 4 13:00:40 2025 GMT
Not After : Nov 5 13:00:40 2025 GMT
Subject: CN=10f9e72e4eb5eb4975864462b8a9c8935d7924bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:38:7b:ee:82:f1:90:ea:00:65:dc:5a:86:f9:
38:df:2e:bc:fa:b1:84:08:e9:51:f7:9c:d3:b6:e7:
9a:e1:f8:83:b4:b6:68:3b:5b:10:64:43:80:77:5f:
e9:ad:77:c0:f7:e6:82:8e:c9:63:0b:b9:f8:cf:85:
1b:ec:f3:c2:34:e9:44:0d:e2:80:68:b4:df:f7:3b:
e3:61:3c:35:5e:13:2e:94:88:a7:08:cb:f2:0e:19:
11:32:29:77:70:76:c3:df:ce:eb:16:80:a2:ad:9e:
0f:74:75:08:5a:f6:ba:e0:5a:51:8f:58:f5:d1:3a:
b1:b8:e8:00:cc:f3:a7:68:b9:7f:78:4e:fe:96:49:
77:02:02:e3:b9:57:00:60:93:4b:95:38:69:5f:62:
56:ed:33:6d:bf:e6:ea:77:86:e0:5a:ae:2a:3f:25:
5f:d1:4c:13:21:96:97:8c:35:2b:d8:2e:80:1a:e9:
6f:08:a4:ec:cd:b3:9c:7c:47:df:c6:0f:c8:4c:c8:
ff:9f:82:e8:b2:3d:bb:b7:94:d4:fe:10:c6:82:85:
dd:72:8f:3e:69:c7:90:29:64:4b:0c:ec:3e:bc:e8:
31:64:7d:35:5c:05:4c:94:b7:82:ae:70:0d:1b:bd:
8a:d1:47:7d:6b:71:83:cf:61:32:31:e2:13:d3:a6:
94:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F9:E7:2E:4E:B5:EB:49:75:86:44:62:B8:A9:C8:93:5D:79:24:BD
X509v3 Authority Key Identifier:
keyid:30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:6b:55:ec:89:ce:60:d9:bd:fc:ef:98:8e:a2:93:78:f9:c5:
47:63:02:4a:0d:df:90:f3:94:b4:fe:91:af:78:2c:66:26:85:
3a:48:91:27:f3:9f:00:e0:26:a4:f3:61:26:99:74:c1:6f:26:
83:bd:81:f7:63:b2:3b:e9:d7:5b:4b:1f:be:80:6a:67:ab:49:
75:ab:a2:6b:76:3e:d2:4d:1b:d4:79:91:a5:48:0a:a4:25:1f:
be:3b:46:01:01:07:8b:94:f2:d0:01:62:4a:eb:2e:4e:ff:36:
b2:f8:fd:02:aa:2d:2d:f7:29:dd:85:b1:87:b2:f4:6d:e6:f0:
85:08:40:6f:5f:ff:0d:9c:fb:e3:4a:49:8c:42:71:ea:a5:c6:
bb:bc:fd:5a:46:47:73:f8:81:8a:f0:81:07:92:92:c3:40:4c:
c8:65:10:d0:bd:1a:3f:0d:ae:48:5e:fc:38:0f:d9:b8:f8:2e:
e0:4f:d1:21:3a:24:09:42:e3:4b:86:07:ef:86:ba:91:a5:14:
5e:fe:ec:9f:08:17:bc:27:ed:70:fc:8d:89:47:4e:ee:66:ba:
47:09:fe:90:46:00:e0:c5:0a:14:db:e4:59:93:71:94:70:36:
43:a8:b2:c0:8c:bb:7b:03:c0:ca:94:75:43:83:aa:d1:4a:e9:
4b:87:02:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:41:18 2025 by rpki-client