Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft
File: dIisPOfpHiQMr_IZy-OPzwI78rY.mft (raw, json)
Hash identifier: B4mW7bmPA3HdEfR2qFnFv6krYuCViWm6UyuEfr59rxA=
Subject key identifier: 09:C2:75:39:CA:87:59:F4:15:CC:9B:C7:C1:2B:68:98:3B:C7:AF:81
Authority key identifier: 74:88:AC:3C:E7:E9:1E:24:0C:AF:F2:19:CB:E3:8F:CF:02:3B:F2:B6
Certificate issuer: /CN=7488ac3ce7e91e240caff219cbe38fcf023bf2b6
Certificate serial: 019A4E18A0BD9668ADA9CAD2FEB396608E38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft
Manifest number: 0C29
Signing time: Tue 04 Nov 2025 09:00:28 +0000
Manifest this update: Tue 04 Nov 2025 09:00:28 +0000
Manifest next update: Wed 05 Nov 2025 09:00:28 +0000
Files and hashes: 1: WUxc8OaDvlLuIRaGhHw99-2pQV8.roa (hash: pHL2ka3zZ/EpxZTpD28h5nmQm9ygfk2G3CW5wJONDzE=)
2: dIisPOfpHiQMr_IZy-OPzwI78rY.crl (hash: hyT0P9dOgZxw22L+2EsKUmC2MPdS4O33Z0ZPDWB/P6o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:a0:bd:96:68:ad:a9:ca:d2:fe:b3:96:60:8e:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7488ac3ce7e91e240caff219cbe38fcf023bf2b6
Validity
Not Before: Nov 4 09:00:28 2025 GMT
Not After : Nov 5 09:00:28 2025 GMT
Subject: CN=09c27539ca8759f415cc9bc7c12b68983bc7af81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a6:7d:fc:d8:b1:29:08:8c:ed:4b:a8:7a:e3:
e2:f8:b1:32:77:df:f9:4a:b2:98:30:e2:a5:65:2e:
bd:00:38:6a:88:b6:bd:9c:47:8a:9a:39:de:f9:6e:
1a:04:29:d5:eb:b3:c3:61:8f:9f:0a:c4:2e:5a:81:
24:7b:21:2c:e4:85:6b:b5:b0:6f:81:a1:6f:ea:41:
51:71:7c:01:67:a1:3a:ab:99:76:49:9f:47:2f:98:
54:d0:b6:b7:bf:8c:ea:dd:21:f3:6f:19:45:d0:df:
e4:86:7a:ce:2e:7c:fa:53:8b:6c:1f:40:30:2b:eb:
8e:9c:39:61:e3:64:0a:48:e8:09:fd:b9:f0:ee:a1:
02:6e:8a:db:cc:63:05:52:3a:0b:6d:5b:60:89:50:
e4:45:fb:1c:28:19:11:ea:09:f5:11:48:c8:e4:c4:
6b:7e:51:cb:60:dc:3c:c5:6b:07:2b:ab:cb:70:8d:
6a:65:71:3f:78:aa:a1:ad:48:ef:cd:76:f3:d2:8b:
e9:c8:09:ae:03:54:bc:1d:9d:e8:6b:0e:6a:51:9a:
f2:ce:05:71:ca:f6:39:5f:1f:f4:09:17:fc:8b:84:
db:7d:7a:c3:47:9b:0d:e1:6d:09:5b:90:50:21:4f:
77:79:d8:1f:90:e9:dd:b4:6a:a8:4a:03:4f:ed:34:
8f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C2:75:39:CA:87:59:F4:15:CC:9B:C7:C1:2B:68:98:3B:C7:AF:81
X509v3 Authority Key Identifier:
keyid:74:88:AC:3C:E7:E9:1E:24:0C:AF:F2:19:CB:E3:8F:CF:02:3B:F2:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:19:54:1b:c2:e6:7d:e9:57:9c:7c:a0:6a:1c:bd:85:1d:28:
01:84:88:aa:6a:52:ca:3a:24:b9:71:cc:19:f2:3d:08:d5:c5:
d0:e5:30:28:89:15:e8:70:f7:fe:ab:f0:fb:a0:3e:e9:fb:b0:
dc:8e:b7:04:8f:ae:af:fc:3a:df:f0:a4:8e:b3:d8:0b:be:64:
ef:0f:06:07:7a:05:c9:f8:4f:5c:03:97:63:64:5c:c9:62:4b:
53:28:69:04:e4:3d:c9:d6:c3:e1:b9:ab:28:c9:60:c5:c7:dd:
37:eb:5b:55:cf:8b:87:d8:c4:8c:8c:f7:84:4d:d7:31:30:00:
ad:dc:53:b6:91:d9:8d:42:a1:85:45:39:73:b9:b9:69:bb:71:
9b:54:28:b5:b3:0d:ab:13:2b:01:0e:08:90:0d:44:a9:4c:34:
fb:17:c6:b2:1b:6f:5d:84:74:c5:ee:f5:93:06:d4:70:f7:8e:
48:78:69:33:fd:f3:44:fb:61:90:3a:60:5b:c8:73:d3:41:3a:
1c:e9:74:7d:f6:b9:3f:dc:96:21:63:62:e9:80:92:b5:99:d1:
d0:de:b7:91:7c:1b:e2:0f:60:2a:ba:b3:24:23:c2:e5:86:e2:
8f:0a:bb:45:23:43:0e:7a:c7:d5:81:fa:e0:90:23:38:24:3e:
cc:2a:ea:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:01:06 2025 by rpki-client