Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
File: rN3HO1mh_N7iLiWCTUCswnKGqlI.mft (raw, json)
Hash identifier: Z4glW1/pZqw6Smtk9AAFbbnzUtR0uPrKcRGf/E9cdB4=
Subject key identifier: 99:E2:AC:3F:6F:D5:D1:F9:DA:BA:6C:1B:00:1A:34:85:91:A1:FC:50
Authority key identifier: AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52
Certificate issuer: /CN=acddc73b59a1fcdee22e25824d40acc27286aa52
Certificate serial: 019A56090604F9D5BECF544364E570DA7789
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
Manifest number: 036A
Signing time: Wed 05 Nov 2025 22:00:23 +0000
Manifest this update: Wed 05 Nov 2025 22:00:23 +0000
Manifest next update: Thu 06 Nov 2025 22:00:23 +0000
Files and hashes: 1: mah4AWfXC0pa7vVaoRQiMo894vo.roa (hash: FRBDBjNrcarz6+cgNnWqdZSbwkqTq4d1ETUAtkcAHtM=)
2: rN3HO1mh_N7iLiWCTUCswnKGqlI.crl (hash: /xUpXdoBO/h9hbb+CWUHzM9Y0LAvlY1tFOUu0L5Tt1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 22:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:09:06:04:f9:d5:be:cf:54:43:64:e5:70:da:77:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acddc73b59a1fcdee22e25824d40acc27286aa52
Validity
Not Before: Nov 5 22:00:23 2025 GMT
Not After : Nov 6 22:00:23 2025 GMT
Subject: CN=99e2ac3f6fd5d1f9daba6c1b001a348591a1fc50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6c:d2:9c:b4:e8:5d:28:53:8e:fd:63:03:48:
aa:44:e5:46:c4:3a:bb:03:ba:cf:bf:96:17:f6:79:
7d:89:47:66:3a:79:47:17:68:ea:ba:9a:ec:ba:9d:
3b:bf:7f:6a:87:4e:97:6b:13:a9:11:85:f4:ca:11:
f4:13:d5:27:ee:c8:91:ee:50:b7:97:1a:d6:f5:ab:
e2:7a:fc:39:42:27:86:84:12:19:ee:81:2d:7c:fe:
6e:bf:95:06:2c:1b:7b:d4:cc:7e:20:38:db:ab:93:
17:05:95:3b:a3:02:6d:39:6d:e6:8e:04:e2:f2:65:
02:9f:27:66:bf:d4:12:27:92:48:97:39:d3:89:15:
49:e6:55:b9:c3:1a:7e:38:2e:55:a2:51:ad:19:74:
b9:f7:3e:f7:9c:8c:95:eb:77:30:6f:3b:ee:ad:c4:
fa:84:d7:69:30:73:cc:e0:c0:4d:eb:05:ad:35:c9:
2e:5a:1c:6f:5d:9e:fb:21:bd:34:ea:82:14:d1:54:
54:c1:91:fb:bf:8e:22:62:83:78:69:9f:db:e1:7d:
ee:6b:2e:88:5d:6a:f4:6f:64:09:f2:84:83:5b:fb:
c7:63:49:35:98:18:2c:bf:04:02:e6:6b:f3:5b:18:
da:da:68:fa:50:36:49:71:1d:7b:b9:bd:8c:b9:30:
74:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E2:AC:3F:6F:D5:D1:F9:DA:BA:6C:1B:00:1A:34:85:91:A1:FC:50
X509v3 Authority Key Identifier:
keyid:AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:ec:cd:d7:83:4f:81:ff:92:03:74:13:98:c9:0e:8e:be:6e:
2b:9b:c6:d5:a2:54:52:a8:6c:53:7f:b7:b8:ea:c8:28:ce:88:
a5:36:31:71:2e:fc:d7:3a:95:b4:0f:83:1e:6c:12:a4:7c:f2:
cc:26:ff:d0:d1:64:bf:0c:db:8d:12:5b:dc:56:71:b5:24:30:
a5:f8:e2:86:68:25:f4:11:af:dc:70:7c:95:c3:64:18:6d:0d:
5b:e3:72:d7:66:fe:ef:03:c1:45:16:0b:24:27:c2:53:12:c4:
3d:8d:52:3f:a8:ca:e5:7d:05:40:48:44:18:d6:55:26:e9:9f:
33:cc:f7:ea:52:eb:48:0a:f6:55:06:b9:8f:62:3c:c4:b8:62:
00:3a:05:69:35:cf:f1:c4:ab:64:8d:79:52:f1:6e:c0:da:66:
b7:3c:94:ad:24:f8:0a:41:9f:1b:14:53:3f:68:75:7b:bd:e3:
ce:1b:b2:7f:f2:8e:1c:f1:c0:92:85:7b:0d:70:90:c6:c6:5e:
28:6c:62:28:0d:7d:52:e2:79:88:16:0a:42:07:46:5e:79:6a:
56:0e:3d:f4:2f:9d:ed:79:d7:4d:cf:af:08:1d:c1:30:57:13:
f0:f7:72:5e:00:c4:af:6a:2b:6e:ac:58:d6:bb:2c:e7:ad:d4:
04:94:ac:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 07:29:05 2025 by rpki-client