Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
File: pX1M_mD4owpND_lLlOut_IjJrBE.mft (raw, json)
Hash identifier: j3FMNfbD9u1533Dp3pIgaEf59CyU6Pc1pCJWRHf7+Ls=
Subject key identifier: 76:69:FF:87:15:45:CF:5A:65:AC:B9:5A:6C:F8:16:66:71:96:FD:43
Authority key identifier: A5:7D:4C:FE:60:F8:A3:0A:4D:0F:F9:4B:94:EB:AD:FC:88:C9:AC:11
Certificate issuer: /CN=a57d4cfe60f8a30a4d0ff94b94ebadfc88c9ac11
Certificate serial: 019A4E86B8589A8D646DC29818AAFD8290E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
Manifest number: 0DDD
Signing time: Tue 04 Nov 2025 11:00:43 +0000
Manifest this update: Tue 04 Nov 2025 11:00:43 +0000
Manifest next update: Wed 05 Nov 2025 11:00:43 +0000
Files and hashes: 1: c2KmzgC2E8wnyMl3ET7bbXtsl28.roa (hash: iCu/CgeKq6j6xvBOhyPWL0bUM1p4HmortGMzXWFLmpc=)
2: pX1M_mD4owpND_lLlOut_IjJrBE.crl (hash: kLBtA/MQ52YktyDYHQlJKXiQ4PJ/PoJQTdUruIcl4qE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 11:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:b8:58:9a:8d:64:6d:c2:98:18:aa:fd:82:90:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a57d4cfe60f8a30a4d0ff94b94ebadfc88c9ac11
Validity
Not Before: Nov 4 11:00:43 2025 GMT
Not After : Nov 5 11:00:43 2025 GMT
Subject: CN=7669ff871545cf5a65acb95a6cf816667196fd43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d7:fb:fc:61:63:ef:6c:e8:22:50:4f:d1:f9:
52:cd:cf:39:3d:a2:88:6b:8d:86:15:ba:6b:36:d5:
c4:29:10:a3:f5:80:1b:25:79:1e:84:15:fb:c2:21:
b7:b9:12:2d:8d:c7:25:e7:9d:c4:f6:a7:a5:e8:8d:
9c:23:6b:b3:d1:fb:ae:40:68:07:6b:9f:81:81:e4:
50:47:c8:24:74:d3:3d:bc:e0:a3:22:03:ac:15:2a:
52:25:ad:d6:6c:8a:41:40:14:82:5c:04:0b:3a:f3:
77:0d:56:dc:77:c4:c2:d6:93:08:b6:c6:49:b5:81:
45:60:5a:85:15:75:18:7c:d9:f6:89:a4:28:07:b3:
09:94:e9:10:61:6e:35:3f:56:29:cd:31:c1:8a:c6:
d5:ad:41:86:d0:1f:15:f2:e3:f4:33:3d:74:a5:c4:
57:11:03:e3:c8:e3:2b:23:e3:4a:dc:13:ef:11:6b:
93:a4:a9:fa:5f:4d:98:39:3d:69:a3:0e:5a:d0:39:
19:f5:a8:78:e7:50:9f:ba:73:b5:33:97:b6:90:28:
6e:3d:a0:70:9c:26:87:01:0c:e2:56:76:76:fb:b6:
6c:6d:40:75:7e:2e:ce:0f:90:59:96:92:6e:68:91:
0f:96:b4:86:3f:1d:f0:10:2b:db:d5:dc:63:fd:9d:
b0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:69:FF:87:15:45:CF:5A:65:AC:B9:5A:6C:F8:16:66:71:96:FD:43
X509v3 Authority Key Identifier:
keyid:A5:7D:4C:FE:60:F8:A3:0A:4D:0F:F9:4B:94:EB:AD:FC:88:C9:AC:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pX1M_mD4owpND_lLlOut_IjJrBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/48c072-22de-44d7-bed8-e80f32073f3d/1/pX1M_mD4owpND_lLlOut_IjJrBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:c4:58:2e:f8:53:c5:92:1c:2c:70:87:97:d1:83:67:37:27:
8e:5b:6b:cb:75:a0:22:38:44:f4:81:0c:c8:47:58:d6:9a:3c:
9b:78:c5:ad:ec:85:bf:3e:6e:01:00:b8:2b:12:7d:dc:28:cf:
22:77:a7:70:b1:60:a5:3f:61:79:2c:31:cd:58:20:ca:71:9c:
b4:b8:20:e5:b9:2e:8d:fb:06:63:1e:56:51:25:79:f7:e2:16:
83:21:7f:ea:93:58:87:8f:34:78:81:de:b3:e0:3f:3f:57:57:
3d:e5:fc:ad:bc:ef:8e:cb:fa:2a:05:7a:63:fd:08:08:96:83:
c4:ec:90:4b:5a:b5:b3:87:2c:88:09:69:d3:ed:ed:a7:55:d2:
e6:14:d0:2f:cc:fb:69:54:db:95:33:71:24:0a:0d:2e:61:2e:
94:d4:2b:64:79:7e:d5:27:32:52:bc:96:6f:11:86:52:44:a4:
27:50:ed:43:32:41:2f:55:ae:ad:80:2c:22:fe:ca:1d:bc:60:
4a:a6:9c:cc:28:f5:68:c5:95:73:4a:da:92:e2:f2:88:a3:a1:
a9:1c:46:60:7e:86:14:8c:06:d3:ba:06:9f:98:55:46:20:8a:
46:b9:39:dd:49:7d:3d:44:b3:9f:54:0c:c4:57:3d:34:02:2b:
58:44:de:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:39:02 2025 by rpki-client