Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
File: CWmio5Y1t5dHbx8WM66PJ78ztTM.mft (raw, json)
Hash identifier: SU13huImpDu90qcmoBjVrJ1AAhEPUYQ8uY3QfKxhvk4=
Subject key identifier: AD:B7:D8:DB:74:63:D5:CE:54:C6:07:82:DF:C9:13:AB:18:AD:13:0B
Authority key identifier: 09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
Certificate issuer: /CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Certificate serial: 019A52D16D7E33F33DD4D5549911EA5E0B51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
Manifest number: 0872
Signing time: Wed 05 Nov 2025 07:00:48 +0000
Manifest this update: Wed 05 Nov 2025 07:00:48 +0000
Manifest next update: Thu 06 Nov 2025 07:00:48 +0000
Files and hashes: 1: CWmio5Y1t5dHbx8WM66PJ78ztTM.crl (hash: ET2dgotK2RpJ48gyHblNMJxMS3cTI7SogIO9GolBaZA=)
2: NsSedmTQW8OnTTsqv3X8CBZy-xU.roa (hash: WFkKh3bAC4MDDNtqyFfpo7GUVyreugPfu/r7LcM/fN4=)
3: TeB088r0q83Xt0BxDsUFRJ09n_w.roa (hash: G48KXbKrX68pg0VWA7DNE58/xU413WQGSqX5xHVo4rY=)
4: eZ1oRKw2ZmvD0_NWa-kdmh2g-eo.roa (hash: 2jAE9EFeYAI0mBmHLdLHHE90HLI9cIG+7iKSbXwklN4=)
5: gzCdu4B60ulbYHwK_RiuV0cdwGw.roa (hash: 24bRCzIay5o/WHjWaKny9z4CXLaZwrpVpSj9NC5y3Ks=)
6: l5LQQJ1hscP11M9PGOZJoYipJjA.roa (hash: 1Qefj38Zjj0ROOLLrKtBW86/Osz3b9lr4tBY77Lptdo=)
7: nEOWg7Kmd6qTqNCYh_hqhP0HHz4.roa (hash: NGhjwZyIl+7tDpzWRbOKaVY9nx0e4i5L5ak98QKmrxE=)
8: xpGPm8doChOtU-RLJwfI6J2_2pE.roa (hash: Q+zp0nrHHDLtwJs9nHZ2VnA34/82Rp5NA50n42Hv6uk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:6d:7e:33:f3:3d:d4:d5:54:99:11:ea:5e:0b:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Validity
Not Before: Nov 5 07:00:48 2025 GMT
Not After : Nov 6 07:00:48 2025 GMT
Subject: CN=adb7d8db7463d5ce54c60782dfc913ab18ad130b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:15:75:d7:6c:0d:dc:9e:32:b7:77:3a:f0:68:
2c:77:b8:7e:ce:32:f6:26:9f:20:a3:51:62:9a:90:
71:cf:eb:55:9e:7e:94:d0:17:d4:6d:a2:fd:1d:0c:
85:79:73:11:0e:72:24:60:07:54:66:e9:0a:ed:38:
d4:c4:ab:48:45:de:dd:57:67:7f:9f:ad:9b:a6:0d:
23:3c:1a:36:25:56:75:23:b7:1d:46:8c:15:b7:b5:
26:d6:c8:2f:2a:e8:d7:bf:2d:ed:2c:7f:0c:5a:fc:
73:15:78:9f:67:b4:30:6e:de:06:98:1d:ee:3b:64:
8e:ce:82:da:48:91:c4:1b:c6:9e:33:1f:e4:b4:e4:
00:3d:8e:b7:df:b7:27:01:8a:11:d1:2b:fd:3a:c2:
fc:03:71:85:68:50:a3:3d:42:ac:3d:db:b8:7a:d5:
8a:65:3b:6f:0b:d4:30:e7:7b:55:d5:88:d4:ac:5b:
5d:1d:47:f3:08:f4:e3:71:f5:84:f0:8c:a2:4a:05:
f5:53:fc:ec:f3:da:7e:8e:75:94:17:34:cf:25:d5:
c2:43:95:4b:72:f1:42:0f:26:a0:a2:b4:74:b0:36:
51:02:aa:3b:8e:12:d1:a8:88:2a:7a:fa:13:07:2c:
8b:7b:4c:27:17:f9:99:e2:69:c4:83:04:00:b7:15:
fc:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B7:D8:DB:74:63:D5:CE:54:C6:07:82:DF:C9:13:AB:18:AD:13:0B
X509v3 Authority Key Identifier:
keyid:09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:0d:aa:cb:be:4b:d7:a4:34:d6:6f:80:bd:a3:fb:2d:80:61:
98:51:89:f4:79:72:0e:20:4a:38:30:46:d5:e3:c5:54:9b:b5:
9b:fa:cc:1f:98:d2:fc:09:94:73:3e:51:1e:f0:45:42:5b:09:
bb:42:1f:5d:0d:b1:6a:25:05:69:6c:dd:de:d4:05:db:03:17:
2f:0b:c8:b3:fe:9a:03:f4:ee:32:73:31:fc:3e:98:7f:1f:61:
fa:cc:84:ba:bd:82:53:51:f1:32:32:a5:44:2c:65:2b:1a:6b:
cd:25:ca:5e:03:89:b3:0b:1d:6a:a7:07:f8:8b:88:de:41:d7:
ff:bd:74:c3:be:c8:fa:35:ab:51:17:b3:42:2e:8d:3b:5c:0f:
b4:b1:26:16:99:ed:24:70:66:34:5a:76:e7:5a:bc:7c:79:92:
04:20:14:38:f8:e3:51:95:98:73:54:8c:f6:d6:3b:1d:54:27:
0d:c2:d8:70:fc:e6:c6:2e:2e:2b:f2:4b:0d:31:2a:8b:64:08:
df:01:cc:2c:e5:06:a5:2e:dc:fe:5b:29:7c:fb:35:a9:91:3e:
2a:fa:9b:35:e1:14:c8:42:c4:08:f1:0d:f4:1d:a5:d9:2f:b9:
9a:aa:e7:64:66:8b:cf:6d:5b:28:52:b7:a9:b0:c6:08:89:ac:
7a:44:58:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:25:50 2025 by rpki-client