Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
File: RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft (raw, json)
Hash identifier: 8BX4lP8kEryV97NrvZLL0gctYtfiEGXld5cFVg/0e7I=
Subject key identifier: 0E:2B:69:F9:9E:A5:58:AF:A4:08:93:9E:E3:0B:03:70:F3:2B:3B:63
Authority key identifier: 46:73:50:D5:97:5A:27:2A:88:BF:B8:81:0A:F4:59:81:CD:55:93:5A
Certificate issuer: /CN=467350d5975a272a88bfb8810af45981cd55935a
Certificate serial: 019A51874F22B4233D48366F8CC0328200FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
Manifest number: 1009
Signing time: Wed 05 Nov 2025 01:00:13 +0000
Manifest this update: Wed 05 Nov 2025 01:00:13 +0000
Manifest next update: Thu 06 Nov 2025 01:00:13 +0000
Files and hashes: 1: RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl (hash: LxdZLANHaEcwlYTwt4y2U57PDNN10DeUmWLDMK0UXL0=)
2: cM594o8l7Xh7Dw0EOXhcxgvWLYI.roa (hash: 1Ym4804A2QtxpGJhVDPpEbLS0giUeOdd5FG8xMIV330=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 01:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:4f:22:b4:23:3d:48:36:6f:8c:c0:32:82:00:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=467350d5975a272a88bfb8810af45981cd55935a
Validity
Not Before: Nov 5 01:00:13 2025 GMT
Not After : Nov 6 01:00:13 2025 GMT
Subject: CN=0e2b69f99ea558afa408939ee30b0370f32b3b63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c8:6a:8a:87:70:37:ce:a0:60:b7:4f:a7:f7:
12:ef:7a:2a:28:19:25:9d:82:ee:88:a7:0d:d5:8a:
b5:d7:1c:0d:0d:b7:42:94:8f:cf:53:cf:8b:19:61:
bb:02:e9:55:98:f8:77:c5:a2:46:99:c7:be:8e:c5:
52:08:4f:e0:e0:1a:2d:ee:18:20:ad:d5:9b:4e:4d:
e9:31:02:1e:de:4a:0f:1d:4e:e0:54:9d:ed:24:31:
cf:76:52:f3:df:9e:dc:33:7a:11:29:b1:86:dd:29:
e1:53:29:2d:2e:2c:17:5b:f1:9a:97:78:38:6b:77:
6c:c4:0a:4c:ff:1b:cb:1e:23:89:2f:61:0d:87:8d:
52:c8:8c:16:ae:c4:1f:cd:d4:b8:cc:13:b9:58:64:
9e:52:0b:bb:8e:8c:fe:bd:9e:bc:0e:36:7e:61:de:
46:c2:d5:77:6a:34:f6:0d:f6:36:6a:57:d3:a6:eb:
f9:68:19:ee:59:5d:89:8e:83:c8:e5:50:38:ae:b1:
6f:b1:f1:9e:cf:ab:44:e0:17:21:35:3a:05:79:55:
1a:f1:41:e9:fe:94:4e:96:f7:20:c7:2c:f9:32:45:
14:ee:6e:e8:6d:3a:27:ed:1f:89:91:d3:2c:01:77:
4a:f3:35:0e:07:04:fb:55:cf:19:51:b4:3b:eb:1c:
d1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:2B:69:F9:9E:A5:58:AF:A4:08:93:9E:E3:0B:03:70:F3:2B:3B:63
X509v3 Authority Key Identifier:
keyid:46:73:50:D5:97:5A:27:2A:88:BF:B8:81:0A:F4:59:81:CD:55:93:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:51:16:1a:9a:40:75:9a:2c:af:be:f7:cd:f2:a6:17:06:40:
63:e7:cc:e0:06:df:06:c8:ce:aa:e8:93:8f:9f:cd:cf:bb:c5:
00:e1:3a:6d:b8:49:6f:f2:0d:5b:db:df:59:0d:1b:d8:d7:10:
57:f5:52:e0:08:5f:31:94:ad:8d:cd:b3:02:44:a5:e0:20:2c:
85:3f:98:02:df:5a:a2:e5:f6:d8:13:d9:b6:82:6b:36:da:46:
6c:a0:b7:6b:55:46:2e:34:b5:42:c5:29:3c:09:fc:9b:c4:49:
4f:d3:58:00:46:b2:b3:5c:de:54:0f:83:8f:57:f2:bf:dc:42:
2c:3b:af:c4:db:04:85:0e:b8:3e:43:f0:e2:e8:ad:58:2b:53:
ef:d6:da:ab:9a:60:0e:98:6d:52:6f:6c:d3:fb:e2:69:d9:da:
4c:b3:08:87:16:28:b6:73:84:ab:75:d1:58:8c:14:94:30:1d:
bc:b8:ff:70:29:0b:87:89:84:54:a2:64:69:e9:56:a5:f6:84:
d9:27:6b:e3:42:c5:eb:fd:8f:bd:31:85:78:4c:30:4f:b5:b4:
f7:19:41:94:b1:94:b1:ff:b2:d5:39:72:de:65:6a:4a:56:b7:
0c:25:4b:69:d9:b1:bf:69:b3:53:cd:d1:6e:0e:3a:e9:e2:c1:
9e:19:80:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:05:31 2025 by rpki-client