Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.mft
File: 9naIfyLs2o0HSBWgvPkfr4GUKr0.mft (raw, json)
Hash identifier: r/KOj7+JnaK5iKmAZrJNxShPUmURZN4PneP2v4f43e0=
Subject key identifier: 8F:DE:00:EC:8E:3F:66:7E:E5:C6:14:75:86:62:31:5F:D6:9F:6D:F2
Authority key identifier: F6:76:88:7F:22:EC:DA:8D:07:48:15:A0:BC:F9:1F:AF:81:94:2A:BD
Certificate issuer: /CN=f676887f22ecda8d074815a0bcf91faf81942abd
Certificate serial: 019A4E187FF6D30A2F0281834F7BF52D10D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9naIfyLs2o0HSBWgvPkfr4GUKr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.mft
Manifest number: 09D7
Signing time: Tue 04 Nov 2025 09:00:19 +0000
Manifest this update: Tue 04 Nov 2025 09:00:19 +0000
Manifest next update: Wed 05 Nov 2025 09:00:19 +0000
Files and hashes: 1: 1--aJOHbG2HarYQRIFHME9kGdrI8.roa (hash: e0PFqEIF1I8KQrFh+AG+JLWzJuU3cKKiEgrK5TdCBkw=)
2: 9naIfyLs2o0HSBWgvPkfr4GUKr0.crl (hash: aX0p/AidwyC6uVA8hMoi3lsj6dy7vu65OnZd/I3+R9g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.mft
rsync://rpki.ripe.net/repository/DEFAULT/9naIfyLs2o0HSBWgvPkfr4GUKr0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:7f:f6:d3:0a:2f:02:81:83:4f:7b:f5:2d:10:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f676887f22ecda8d074815a0bcf91faf81942abd
Validity
Not Before: Nov 4 09:00:19 2025 GMT
Not After : Nov 5 09:00:19 2025 GMT
Subject: CN=8fde00ec8e3f667ee5c614758662315fd69f6df2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:df:ff:c2:0a:70:94:b8:f5:e4:d2:09:51:d8:
98:66:b6:65:22:4c:5d:4e:7a:9e:93:0d:a1:1f:01:
e1:40:74:21:12:60:3f:9f:fe:0f:86:04:2a:15:4c:
15:52:ca:82:60:b4:8c:f9:76:1e:35:e3:aa:2f:00:
9e:94:92:a6:e5:17:08:a3:28:34:22:7f:86:0c:83:
71:61:04:d6:35:a8:90:2f:4b:49:cd:0d:60:fe:f9:
96:3c:29:2b:0d:d0:36:c4:50:b9:4b:2a:60:26:14:
52:1c:a7:20:48:41:cf:b6:de:c6:eb:75:55:e3:02:
e3:d8:2b:39:69:52:dd:08:0c:07:af:3d:f5:8f:5f:
c4:62:91:eb:0b:fa:d4:8b:8d:db:78:94:87:92:20:
65:cc:6b:29:52:04:87:98:99:cb:68:8b:6a:9a:5a:
5d:1a:49:55:a6:63:ce:8a:34:06:1c:69:c0:66:4d:
c8:48:ea:09:f2:dd:cc:0f:34:46:87:48:b7:e6:24:
d8:1a:1a:97:6c:c1:96:30:51:27:88:1e:c2:04:c5:
18:d3:55:c4:ba:d6:25:f8:8b:cb:21:16:8c:d3:99:
dd:5f:30:c5:20:4c:12:cb:a6:28:d1:7d:79:27:92:
d2:41:29:e9:a6:a8:36:d9:55:25:e0:5c:fb:af:11:
1c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:DE:00:EC:8E:3F:66:7E:E5:C6:14:75:86:62:31:5F:D6:9F:6D:F2
X509v3 Authority Key Identifier:
keyid:F6:76:88:7F:22:EC:DA:8D:07:48:15:A0:BC:F9:1F:AF:81:94:2A:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9naIfyLs2o0HSBWgvPkfr4GUKr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/cbc4bb-999c-4988-a1e1-cd2dcb355655/1/9naIfyLs2o0HSBWgvPkfr4GUKr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d7:7c:04:c5:8e:61:4a:4a:4d:80:cc:63:39:f9:aa:e5:72:95:
2c:a7:e4:a8:b4:5c:b5:de:c0:fa:0e:9a:43:d2:27:2a:26:ec:
ee:ec:04:98:c5:a9:58:9b:02:62:08:85:03:4e:a8:33:41:99:
52:ba:dc:77:b7:59:3e:eb:75:94:d5:9d:4e:ac:46:92:cb:68:
33:51:76:17:b5:46:8d:40:94:60:f1:f4:4a:f5:d4:e7:94:13:
b2:bf:06:1d:54:49:04:bb:f0:bd:15:cb:0b:fb:a3:be:20:73:
15:c9:d1:0c:3b:98:c2:88:31:fe:8a:a3:9f:a1:cd:06:ee:d2:
b4:15:68:11:65:1a:42:e2:4c:9b:bb:b6:0e:6c:a3:7b:18:fc:
12:3d:fb:cc:e1:dc:2c:f5:a1:43:3e:e4:dd:a7:16:1e:40:5c:
5e:a7:0f:5a:02:d1:04:52:be:9c:51:26:c7:ca:25:b1:e3:5a:
72:fe:3a:bc:35:c1:56:77:7a:12:54:e1:11:48:dc:33:ab:23:
da:6d:e4:ce:fa:ba:fa:4c:e3:05:2e:ee:e8:3c:4b:e9:a2:62:
bc:8b:c7:7b:3c:8e:0d:3e:f2:ba:ce:15:18:ce:76:b4:bb:ea:
be:99:44:fd:83:e5:c7:35:9a:26:ae:60:ae:16:7c:da:1a:f0:
0e:a9:9e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:20:03 2025 by rpki-client