Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
File: _pLvNTIb-Pcic0v_nfpj-9DwaQo.mft (raw, json)
Hash identifier: PT/xPNpkXeuHE7HymYWrU/iB6nAYNyS2avGVw+8JpZ0=
Subject key identifier: 25:D5:F6:FC:80:20:01:B9:52:05:DE:63:0B:F4:87:FA:48:20:DF:0D
Authority key identifier: FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
Certificate issuer: /CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a
Certificate serial: 019A4EF58E2FFE1FBEFF7E91B7330622FCC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
Manifest number: 1078
Signing time: Tue 04 Nov 2025 13:01:46 +0000
Manifest this update: Tue 04 Nov 2025 13:01:46 +0000
Manifest next update: Wed 05 Nov 2025 13:01:46 +0000
Files and hashes: 1: FsJZX9GGj2A1me0tekd7HmtKIf4.roa (hash: wa9LmtrA5IFHkOGKHcF70x4E1HktC1RNDhObryrXOsE=)
2: _pLvNTIb-Pcic0v_nfpj-9DwaQo.crl (hash: j5Z4Qhcj6LruWMYeXVXvta8l0CMWiO4y5uvWl8Pn4fQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:8e:2f:fe:1f:be:ff:7e:91:b7:33:06:22:fc:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe92ef35321bf8f722734bff9dfa63fbd0f0690a
Validity
Not Before: Nov 4 13:01:46 2025 GMT
Not After : Nov 5 13:01:46 2025 GMT
Subject: CN=25d5f6fc802001b95205de630bf487fa4820df0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:bc:c7:0d:c7:b5:cd:cf:82:76:0a:0b:d2:a7:
08:52:9e:0c:43:75:8a:34:41:dd:a1:fd:51:e7:da:
25:56:5f:e3:ba:2e:cb:27:52:ba:bb:7b:77:95:bc:
28:5e:65:54:d7:ab:79:ef:63:77:77:cf:10:10:94:
2e:35:de:4a:2d:d4:b3:99:ed:e3:f0:be:1e:63:0c:
29:db:bf:66:ae:f6:8c:12:42:04:bb:9a:2a:24:f6:
51:78:72:1d:96:72:ff:0b:a3:39:22:11:84:8b:40:
b3:fe:d2:27:ef:77:32:b8:5d:44:13:5b:57:3d:21:
e0:80:ca:1e:7a:d7:ce:c7:42:b4:55:2c:b4:15:9a:
33:dd:81:1e:6b:fd:41:ad:36:4c:06:4c:9e:90:ee:
2d:5e:4b:d7:73:6d:0b:f9:d3:30:09:e7:08:e6:1b:
fe:10:92:7a:59:16:62:fe:30:17:49:4e:14:e9:fa:
e4:b0:de:d0:cd:a3:46:56:a5:9c:cf:88:e1:3f:be:
77:ac:6e:09:82:43:ba:85:0f:9d:fb:67:51:c0:48:
2c:12:e5:52:59:bb:9d:e6:ce:88:55:71:41:df:59:
b5:e2:45:87:5e:9e:9f:14:69:74:43:54:71:37:c8:
12:9a:0b:9b:44:6a:1c:a5:38:94:6c:9b:95:9c:a4:
ba:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:D5:F6:FC:80:20:01:B9:52:05:DE:63:0B:F4:87:FA:48:20:DF:0D
X509v3 Authority Key Identifier:
keyid:FE:92:EF:35:32:1B:F8:F7:22:73:4B:FF:9D:FA:63:FB:D0:F0:69:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_pLvNTIb-Pcic0v_nfpj-9DwaQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d2725d-8001-41f1-80e5-a9eef294ac34/1/_pLvNTIb-Pcic0v_nfpj-9DwaQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:65:89:67:42:32:01:4b:4c:f6:76:59:78:79:5e:a0:5c:e1:
32:95:7f:39:2a:44:fe:d8:43:99:bf:f2:2f:22:65:7f:5c:f9:
3e:21:4b:b8:1a:86:bb:8a:2d:ba:9c:b7:f5:ab:12:f3:dc:34:
f9:ce:48:89:a8:62:d2:e0:fc:92:25:68:11:d2:bc:6a:c5:5d:
2d:8e:46:39:7e:9d:db:77:07:38:24:00:d9:af:3f:48:59:2c:
c9:ca:83:0f:6f:13:7f:5f:b0:97:fa:7c:b4:49:a7:d1:21:c2:
55:26:7c:b9:5d:a8:40:b4:f6:44:74:41:c2:0f:ab:c0:ec:9a:
bc:01:16:d8:84:78:62:82:07:6b:e8:2d:6d:1e:92:63:89:bb:
33:ae:66:bb:b1:1a:12:e8:f7:20:97:cf:68:3d:27:10:2d:23:
bb:0c:5d:06:d8:a2:d3:46:7a:69:86:de:8b:e5:ed:f8:61:04:
d7:4c:42:34:bd:bb:b8:a2:79:79:9f:59:1c:75:2a:f9:ca:44:
54:01:e2:fb:80:f8:3c:ec:bc:9d:3e:23:9f:59:3e:fa:35:bc:
d5:13:d5:48:b5:d6:72:46:28:26:ab:c2:a6:ef:da:b5:b8:a8:
64:24:91:7f:0f:13:9c:c7:42:aa:30:17:c2:5e:45:31:f9:6d:
7f:3a:1c:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:30:06 2025 by rpki-client