Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
File: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft (raw, json)
Hash identifier: o0eC3Bb+Yf1cinGD/CAoCvrnrI/aMaOUjIHTtgWI7hE=
Subject key identifier: 4F:5A:3C:7C:C7:2E:1E:94:FF:DB:0E:9D:DE:C7:BC:DE:06:92:D9:97
Authority key identifier: AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
Certificate issuer: /CN=ae7f187c12782fc4d844762235993329c4563a0d
Certificate serial: 019A53082A7570EC32D3E932BC081737AF8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
Manifest number: 0D2C
Signing time: Wed 05 Nov 2025 08:00:35 +0000
Manifest this update: Wed 05 Nov 2025 08:00:35 +0000
Manifest next update: Thu 06 Nov 2025 08:00:35 +0000
Files and hashes: 1: 9SHpbhL3XuwxiKnoCroL_5tpXVo.roa (hash: xPrIpxk+JNMXsVLk++89joWnIkf6ad6w3ouFrsF8d/w=)
2: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl (hash: GZo1ugCYY6CXawfb7ICS2PXFdfovcRvIAtfPhGfbt2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 08:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:08:2a:75:70:ec:32:d3:e9:32:bc:08:17:37:af:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f187c12782fc4d844762235993329c4563a0d
Validity
Not Before: Nov 5 08:00:35 2025 GMT
Not After : Nov 6 08:00:35 2025 GMT
Subject: CN=4f5a3c7cc72e1e94ffdb0e9ddec7bcde0692d997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:68:25:9f:b3:0e:77:0a:8e:b6:32:9c:ed:48:
1c:f4:68:97:b3:ab:8e:3a:16:22:52:de:50:23:e8:
79:48:f2:61:2a:ea:51:63:9a:17:e4:be:d5:8e:66:
dc:25:9f:96:93:0c:bf:92:5d:06:9e:a3:55:d0:ea:
4d:ff:2f:0b:91:f2:5c:ac:96:15:1d:53:88:d9:91:
5f:af:20:b9:57:00:3f:97:d8:bc:51:c8:1f:33:a4:
3b:f7:c0:c8:95:cc:db:d5:f0:0f:7e:ee:c0:6c:34:
69:78:8f:d8:b4:2c:3b:c7:b7:4d:e6:62:b6:25:8b:
15:21:55:03:c3:89:2a:48:73:5f:e7:9b:72:22:5d:
b7:eb:1f:ba:b4:41:67:c2:f4:7f:0c:41:86:48:a1:
97:d4:3e:a7:66:b9:c2:97:49:3f:2f:9d:32:09:e6:
35:21:3e:a1:3d:23:78:27:ef:1d:6c:ca:5b:83:dd:
ae:01:d6:2c:92:f0:c7:29:14:25:83:06:3c:48:22:
c8:8b:bf:5d:8b:02:42:47:cc:99:67:b2:2d:31:ad:
33:86:41:be:36:b9:25:34:d6:1e:97:0c:8e:33:39:
3d:30:49:ce:63:59:d6:cd:20:3f:87:6f:80:47:01:
13:5e:2c:e3:51:55:b7:1a:a6:77:af:8f:da:9d:9d:
01:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:5A:3C:7C:C7:2E:1E:94:FF:DB:0E:9D:DE:C7:BC:DE:06:92:D9:97
X509v3 Authority Key Identifier:
keyid:AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:f8:bf:63:19:10:83:30:8f:89:09:df:ec:73:e1:d6:86:da:
5e:dc:c3:6b:6b:10:6a:01:d5:b7:e1:cf:05:07:12:af:32:1e:
71:31:54:49:6a:fd:a7:bb:e3:15:ca:df:a3:32:c0:38:51:30:
a5:5a:a0:84:29:4a:87:c5:4c:1b:43:8d:16:40:90:ad:00:b8:
95:9e:4a:c9:3f:7e:1a:44:66:3d:f1:d1:12:37:2d:82:d4:e1:
4c:3e:6f:0b:0c:a1:29:a3:fb:c1:b8:7c:2c:75:e2:39:f9:12:
49:35:d6:29:58:bc:c5:c2:3b:25:98:e8:34:2f:c3:a7:26:eb:
68:70:aa:87:96:a3:77:4e:09:bc:6a:f5:4b:01:34:79:99:5a:
b4:f7:1c:e1:46:18:48:42:7b:01:8b:31:42:76:44:bd:e8:18:
f5:c4:e7:e5:44:d1:96:32:09:2e:65:fb:71:ba:85:9d:68:eb:
0a:e2:83:fb:ff:43:69:5e:b2:bf:1f:7a:42:fc:e4:50:46:48:
de:6b:12:fd:da:bc:88:94:0b:f6:8f:c1:d9:af:98:4c:df:ba:
b3:a3:b5:9d:e2:6f:94:1b:df:7c:8e:a6:08:a7:55:57:82:d3:
91:bf:6d:66:05:25:fd:a5:6b:83:f3:46:6e:4e:34:43:81:95:
28:a7:33:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 15:58:01 2025 by rpki-client