Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
File: cW9tEfDOYyMBgac_haZmFw9zib0.mft (raw, json)
Hash identifier: GxX4dWwIRBVGZSFX/kJkU3A910oHRXCeCeQ3naJMu84=
Subject key identifier: 44:47:E4:59:A7:48:8C:10:72:62:6A:86:F1:85:E1:F3:92:73:3D:DF
Authority key identifier: 71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
Certificate issuer: /CN=716f6d11f0ce63230181a73f85a666170f7389bd
Certificate serial: 019A4D74575CB70DBAB32F014D66D23D9BF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
Manifest number: 0C2E
Signing time: Tue 04 Nov 2025 06:01:01 +0000
Manifest this update: Tue 04 Nov 2025 06:01:01 +0000
Manifest next update: Wed 05 Nov 2025 06:01:01 +0000
Files and hashes: 1: cW9tEfDOYyMBgac_haZmFw9zib0.crl (hash: z/60KNy3wmjckC6PQHuzSxuX8K1bwrQT+/peM0ArI2g=)
2: fS7Vtpenx3ISocQLcsKDmT4cdAc.roa (hash: lsacutCDcdT1KWfBtvedBOBvauWcszwNt+V8+YsxMyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:57:5c:b7:0d:ba:b3:2f:01:4d:66:d2:3d:9b:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=716f6d11f0ce63230181a73f85a666170f7389bd
Validity
Not Before: Nov 4 06:01:01 2025 GMT
Not After : Nov 5 06:01:01 2025 GMT
Subject: CN=4447e459a7488c1072626a86f185e1f392733ddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e4:58:a4:5b:8a:68:af:4c:ab:ca:59:4b:e7:
7f:9d:bb:1e:70:6c:84:28:a5:62:43:f9:4c:11:5a:
b8:55:66:dc:fa:d7:de:4f:57:c6:ff:5f:7a:39:23:
7d:d7:84:c6:ff:14:42:57:7f:be:e0:c0:f0:34:2d:
fd:d3:bb:44:3f:df:58:bc:ff:78:31:a9:23:ee:6c:
e9:d3:b1:c6:f3:27:50:21:4f:45:3e:d5:b9:9e:38:
57:87:b6:4f:90:13:b0:96:bb:fd:43:94:19:96:5b:
70:31:06:5c:c6:83:c0:d6:6f:b7:2f:39:9f:4f:eb:
4d:8a:b1:1c:1e:76:73:dc:1d:c6:d7:a3:ce:9f:b6:
c6:b6:44:db:44:66:ee:f6:ea:93:5a:0b:20:a0:bf:
b1:0b:2e:63:84:fd:66:66:b0:d7:6f:c1:7a:c2:1a:
82:21:ab:dd:9b:c6:10:42:b8:36:52:85:c5:2b:23:
88:60:9f:fd:d7:48:42:8b:75:5f:4d:c0:3f:a5:08:
cb:a8:30:e8:e6:ed:41:9b:cd:fd:e1:95:97:86:06:
45:67:78:75:12:a9:6a:ae:c2:c9:1d:c1:84:25:18:
04:76:0e:fe:07:2d:5c:1b:b1:5b:ea:c6:9a:a8:6b:
6d:0b:1e:74:69:16:90:1e:96:cc:52:76:38:f2:f2:
80:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:47:E4:59:A7:48:8C:10:72:62:6A:86:F1:85:E1:F3:92:73:3D:DF
X509v3 Authority Key Identifier:
keyid:71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:e4:0e:82:71:26:1d:d1:57:69:a2:2f:55:27:2f:a0:a9:87:
23:48:7b:91:39:c6:9a:ea:22:c7:eb:b4:eb:fc:87:c2:9d:97:
2d:77:42:2f:ca:02:b8:c4:21:88:4d:ef:be:e4:fc:90:cd:f6:
72:a7:2d:aa:99:fd:8c:d1:f7:0f:a5:9f:8f:e4:fd:2b:37:ae:
30:15:39:0e:8c:c3:41:99:6a:c4:64:78:43:43:55:d5:b1:92:
88:64:9a:7f:49:ea:6f:86:b1:c6:fd:7c:26:4e:14:e2:db:3a:
f3:b1:d2:7a:39:f5:b3:2e:de:39:28:ed:f3:3e:51:00:6e:ed:
62:bb:6f:dc:00:03:dc:5c:a2:4c:21:3a:ba:07:89:3f:55:e0:
65:e0:66:64:75:32:d0:b9:0d:3c:af:f5:21:ca:3a:9a:3a:97:
02:9d:28:14:3e:5f:25:d9:01:ac:2e:1a:3c:d3:88:4a:26:f8:
04:57:83:55:67:9a:13:f4:fe:6e:02:b3:92:b7:83:33:77:9b:
5c:0f:1d:bb:14:78:f2:9f:80:77:17:d5:32:7b:46:60:27:38:
61:3d:3f:82:4b:81:b1:77:cf:8a:37:5d:f1:fb:ba:9b:0f:aa:
37:b6:b0:22:5b:e3:ce:8f:8c:9f:10:62:fb:03:9e:bc:65:43:
c9:16:d6:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:45:14 2025 by rpki-client