Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
File: 670ir7gN-togA9QOVG2v03_4af0.mft (raw, json)
Hash identifier: fuYtOaTfnum40fRvOWPK/x+k6HPzLt91CSbupzMzaQU=
Subject key identifier: CE:4E:58:4C:D0:E7:E2:82:DA:1C:7B:BD:BF:29:04:65:B1:2B:EA:C5
Authority key identifier: EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
Certificate issuer: /CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Certificate serial: 019A55D2433E433FC89B1C00ABD2BDB83E4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
Manifest number: 0605
Signing time: Wed 05 Nov 2025 21:00:34 +0000
Manifest this update: Wed 05 Nov 2025 21:00:34 +0000
Manifest next update: Thu 06 Nov 2025 21:00:34 +0000
Files and hashes: 1: 670ir7gN-togA9QOVG2v03_4af0.crl (hash: QsRNN5gXIpxBvf5Gihtzl5hoD0DUx3SgmOUsNmw3Ej0=)
2: Lg69_8_Hwhk8sLJu5EjPC6QyXmo.roa (hash: KXCYGeobuTRdhwIdNvFIRapr7Co2MUanxSVUEVx8L70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:55:d2:43:3e:43:3f:c8:9b:1c:00:ab:d2:bd:b8:3e:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Validity
Not Before: Nov 5 21:00:34 2025 GMT
Not After : Nov 6 21:00:34 2025 GMT
Subject: CN=ce4e584cd0e7e282da1c7bbdbf290465b12beac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:eb:71:00:93:53:7e:23:56:9d:cd:32:d7:e0:
6f:52:2e:0e:23:a1:03:d2:0b:1f:e4:56:ab:51:80:
2a:5f:8b:e7:38:1e:93:1b:62:b3:c8:b1:e9:03:44:
cd:a0:01:ab:1f:3f:10:62:77:45:3e:72:c0:22:31:
6f:2a:71:89:0b:b1:91:2e:b2:7f:9a:53:6b:a8:2a:
8c:36:be:60:83:1a:07:24:b6:22:50:75:e2:1e:d4:
b1:82:b2:e5:a6:1c:86:cc:12:94:27:23:25:a1:65:
44:93:e2:5c:c7:cd:6c:11:4c:f4:05:3c:2a:fd:20:
b8:e9:6d:75:0e:e6:47:8f:75:43:67:06:af:0a:1d:
27:07:8b:fb:18:a9:ef:a0:45:d6:ae:cb:d0:fb:3c:
a8:69:d2:eb:67:33:37:ee:24:9f:cd:ae:18:11:de:
36:d6:75:84:bf:0a:5f:d1:41:80:67:75:2c:bc:04:
fb:26:65:9b:32:26:33:94:42:d2:52:16:ad:78:3e:
55:26:6d:8e:8b:07:aa:e4:d9:c9:a1:9d:19:60:5e:
26:7d:f4:21:07:24:6c:b8:8d:03:52:46:d4:8a:99:
7c:a3:8e:13:b8:21:19:33:17:56:33:99:a2:5b:ac:
23:d4:02:c0:50:1e:23:e8:23:b2:18:76:7f:17:d8:
ff:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:4E:58:4C:D0:E7:E2:82:DA:1C:7B:BD:BF:29:04:65:B1:2B:EA:C5
X509v3 Authority Key Identifier:
keyid:EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:8c:55:fe:18:df:f8:9c:d3:51:02:c4:ff:dc:78:a5:b9:44:
7d:4a:1d:3a:da:93:61:e2:b6:ee:aa:b9:85:0e:99:82:82:18:
20:1a:bd:4d:47:6b:a9:c9:06:36:d0:c1:41:9d:91:c7:47:a5:
37:9b:23:58:98:29:59:d7:ad:90:57:30:f5:98:0e:f1:5b:50:
f7:3f:38:b2:dc:e5:47:51:7a:84:1f:a5:e5:cf:d8:dc:1d:8c:
63:79:6d:92:e8:84:97:86:5f:1f:b4:06:30:4b:08:ce:ac:8e:
81:26:7b:e5:63:7d:20:4c:30:fb:c5:43:14:01:7a:79:85:6e:
20:f1:96:8e:cc:1f:98:00:56:25:8c:51:54:cd:78:ed:8f:74:
0f:82:1f:81:1c:cf:fe:21:42:bf:75:bf:fd:ae:b1:15:b6:98:
8b:ce:63:e4:63:0e:f5:7f:fc:90:e2:53:a4:ce:20:2e:4b:a1:
fc:58:97:01:f1:bf:8e:31:9f:97:14:1d:a7:0e:d0:24:6e:b1:
12:e5:ec:b2:ce:4a:e8:1d:52:c6:62:f4:59:70:1c:3d:db:51:
38:75:d3:73:cf:af:17:49:96:55:6f:ed:2a:ad:72:35:65:0d:
0f:ee:bd:48:de:0e:62:74:24:fe:91:d9:fd:00:c2:09:78:69:
61:09:03:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 02:40:07 2025 by rpki-client