Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
File: 1gTknpKDBavLjzLe8_78A-u83kQ.mft (raw, json)
Hash identifier: O4YtTnEv09xAJLKllfBWgvAxmECi+GxVpP7bixy6ZUE=
Subject key identifier: 5C:E7:FD:ED:EA:67:0B:D8:6D:07:7E:FF:40:B5:D9:C6:4B:08:03:FD
Authority key identifier: D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
Certificate issuer: /CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Certificate serial: 019A4EF4E93943B91194B82D11A5877D32C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
Manifest number: 16A0
Signing time: Tue 04 Nov 2025 13:01:04 +0000
Manifest this update: Tue 04 Nov 2025 13:01:04 +0000
Manifest next update: Wed 05 Nov 2025 13:01:04 +0000
Files and hashes: 1: 1gTknpKDBavLjzLe8_78A-u83kQ.crl (hash: z7VaU56auBrjym5USWoJqAehdh5bVcaU49Yhv4FmQlM=)
2: pucl_qoNJsFNHYReBDscEGdx2N0.roa (hash: SiJfUuqs3fjKSI6Mo6WtKDUOtA0gOnKfbqvupwDeWPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:e9:39:43:b9:11:94:b8:2d:11:a5:87:7d:32:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Validity
Not Before: Nov 4 13:01:04 2025 GMT
Not After : Nov 5 13:01:04 2025 GMT
Subject: CN=5ce7fdedea670bd86d077eff40b5d9c64b0803fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2c:d0:a3:93:84:31:9d:a3:24:29:87:dd:93:
1e:8b:a3:a8:11:b8:3c:c3:f3:3d:8f:ab:56:9d:66:
2c:6a:5f:fb:d8:eb:75:1c:f6:9c:a0:fc:ee:20:0f:
81:92:65:3c:7c:3c:67:f2:3c:f7:df:a4:cd:94:01:
ed:a5:a9:00:cf:48:1e:f5:b2:2b:1e:0c:19:53:ef:
5c:a0:8c:35:92:0f:97:6c:df:12:5f:7c:03:ad:2e:
9f:d8:0e:a7:cf:a1:2b:f7:2e:a0:cf:6f:ee:52:41:
20:84:81:3c:5f:a4:ee:05:b4:dd:bc:cc:65:b0:09:
58:98:c0:42:24:c8:fc:9c:3b:22:67:7f:73:d2:f5:
0f:07:1e:71:ac:98:33:62:ee:aa:96:10:4e:a5:bf:
d2:bb:e1:f0:e8:98:86:5e:88:44:ee:d2:60:a2:b9:
9b:5c:f2:2d:34:2f:07:5c:de:09:f9:85:0a:d2:5f:
0d:d6:45:d4:a0:10:a9:9f:ac:09:34:9c:41:b1:03:
2f:b2:80:79:dc:c1:37:11:e7:e2:b8:40:ca:ac:24:
fd:83:fa:ae:47:bc:6c:51:61:45:c7:7f:c8:6a:77:
46:f6:2e:d6:b4:6a:90:9e:6e:7c:dd:77:5a:12:c3:
05:59:02:be:15:8c:2b:f5:e7:b1:50:5a:1d:9c:90:
0c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:E7:FD:ED:EA:67:0B:D8:6D:07:7E:FF:40:B5:D9:C6:4B:08:03:FD
X509v3 Authority Key Identifier:
keyid:D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:1b:7d:79:aa:dc:a4:f6:8e:02:ad:79:a7:e1:96:d0:cc:8e:
e8:da:23:8c:7a:97:c5:bd:1c:3e:42:ef:4e:af:5d:2f:cc:75:
9f:a0:76:8f:70:0a:50:0d:62:f7:88:3a:64:4c:5b:40:d2:c0:
6e:b0:48:5a:b8:ee:71:90:32:b1:13:92:71:b5:b3:af:49:3f:
02:81:61:54:0f:87:9d:74:41:b1:68:ba:0a:29:05:7c:e8:5a:
04:35:ba:55:ae:c4:07:f8:4c:fb:8b:1a:78:c1:92:4f:fd:6b:
e3:03:0a:03:5b:0b:86:53:a7:a3:f0:fc:84:9d:08:af:5c:04:
cc:23:47:01:e9:f2:8e:5c:64:d0:a3:69:5e:0b:32:fb:3c:ec:
24:a0:e0:e5:84:ec:ab:1a:1c:60:ff:57:db:f0:51:97:9a:40:
42:a3:7f:ce:df:c1:70:36:2d:5f:94:e1:1c:4e:9d:12:5d:00:
cd:4d:7b:b9:0a:2e:c6:36:f1:95:74:c7:cb:59:7b:64:c4:a1:
f9:12:fe:e4:d7:49:57:27:62:18:50:d2:b1:72:35:ce:08:ce:
fd:42:d2:ab:50:4e:48:d6:1f:ac:3a:78:89:96:e3:84:66:4d:
3b:3b:99:06:8d:5c:3c:59:60:51:15:25:ec:99:8a:05:4f:51:
69:0a:73:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:51:11 2025 by rpki-client