Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft
File: 9O9duhAKkrJETz5RLQGlksAZUcI.mft (raw, json)
Hash identifier: 2x8NAsraBywoycxqXdFC+9PS5KVh/4/BjqrUwoHRcq8=
Subject key identifier: A0:D3:A6:93:1B:48:87:73:CD:46:52:7B:6D:F9:D6:A2:84:A5:DD:0F
Authority key identifier: F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2
Certificate issuer: /CN=f4ef5dba100a92b2444f3e512d01a592c01951c2
Certificate serial: 019A4E1918E050E17F8559B33CAD38DEB9F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft
Manifest number: 0979
Signing time: Tue 04 Nov 2025 09:00:58 +0000
Manifest this update: Tue 04 Nov 2025 09:00:58 +0000
Manifest next update: Wed 05 Nov 2025 09:00:58 +0000
Files and hashes: 1: 9O9duhAKkrJETz5RLQGlksAZUcI.crl (hash: L05czX2P4qlP8TANgr1+GneOdqI6p4RQJiNpofBCVPM=)
2: AmSXBHT3ckJxS__llRle1pOg_Gk.roa (hash: NGUzsrMFkYpqygz3V48C568ROl1XZloZCRkdB8fnGRs=)
3: RqMgMpdcD54HUHiiovgo2_7eo94.roa (hash: eRUbOt1afNalKvV81WeaR6eAgifd6J7LvG2r3czI9hc=)
4: gzBqFqX-GOiBCBUlEgTsEnHuXvM.roa (hash: d9Lvaxwm2cOVNLGx1WtIoyEgpf/MLPQzSYnTj875od0=)
5: wdTC4RawEs-5fFZUa4R_HIRxO2U.roa (hash: Rtc4DEopTsErPd8Vo2cqobz/fHQCAfYf819UnyzhAlA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:19:18:e0:50:e1:7f:85:59:b3:3c:ad:38:de:b9:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4ef5dba100a92b2444f3e512d01a592c01951c2
Validity
Not Before: Nov 4 09:00:58 2025 GMT
Not After : Nov 5 09:00:58 2025 GMT
Subject: CN=a0d3a6931b488773cd46527b6df9d6a284a5dd0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6b:c9:f5:8b:2a:74:0e:03:6d:78:42:85:cd:
7e:3e:a0:b7:98:2b:09:e4:1f:14:82:1d:90:78:19:
ca:a9:fe:e0:d3:93:d6:b5:c3:bc:a6:d0:82:83:de:
31:0c:31:ff:2d:08:3e:1b:e4:97:1b:28:1b:47:ca:
e2:00:74:a3:d0:7e:13:f8:dd:26:a2:6e:5c:e2:2a:
a9:39:ea:6d:0e:c3:1a:f3:dd:94:d2:eb:ce:34:d2:
d2:4a:aa:a7:a0:f8:30:c4:81:32:e6:88:92:97:ac:
3e:0c:bf:fb:89:6d:cd:b3:4c:d0:40:a3:09:f0:6e:
51:f7:01:ed:e9:e6:35:4b:f3:61:13:c7:8a:75:a0:
3a:ca:e4:19:34:f3:25:5a:90:3f:60:07:75:2b:06:
01:5a:4a:88:0d:1e:c4:c0:d9:51:87:f5:eb:5e:ee:
ac:1f:a4:e7:f9:b7:96:58:e5:c3:15:dd:5d:26:73:
d6:45:67:37:93:97:73:6d:4b:ba:7e:0c:ed:93:9a:
d4:e0:78:ed:13:42:fd:4b:3a:23:f5:a1:03:dc:6c:
e8:dc:09:ac:4d:75:a1:3a:4c:52:6f:b5:f2:52:06:
da:bb:6a:7b:31:26:d1:a8:f9:d1:de:21:69:f8:64:
dc:0d:2f:8e:31:50:a0:bd:b6:b5:fc:ea:aa:96:f6:
f9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D3:A6:93:1B:48:87:73:CD:46:52:7B:6D:F9:D6:A2:84:A5:DD:0F
X509v3 Authority Key Identifier:
keyid:F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:95:fa:a7:ed:db:ad:20:a5:31:fa:42:0b:a0:c0:03:33:dd:
ae:c5:47:28:d5:79:16:16:15:20:31:1b:7c:2f:fa:0c:d0:b8:
90:83:7a:36:cd:65:ec:6b:a2:d9:9f:9d:a8:ba:d2:85:d9:d7:
93:8c:0e:19:6a:f6:7a:5e:d6:95:0e:1f:af:66:19:e9:ca:a3:
e1:06:db:68:dc:cc:7d:34:3a:58:ec:99:3d:bd:da:e2:ea:4b:
2a:3d:51:db:1b:e1:e9:8f:bb:e9:67:d3:bd:f1:a3:f8:c5:11:
9f:6f:c8:40:b3:9c:6b:e8:7c:48:1a:48:bd:46:7c:94:fd:38:
6e:5b:94:13:c1:6a:3e:aa:0b:d9:9e:86:5a:9e:fe:c9:c3:f2:
17:6c:88:60:3f:49:67:51:15:61:f4:56:d4:34:54:02:77:25:
2b:02:27:16:c3:a1:d8:64:fd:2e:f9:1c:ab:61:cd:6b:c7:57:
88:1e:de:33:0e:92:0c:00:2f:32:9f:61:99:74:7e:90:4c:65:
ab:a3:00:9d:e6:4d:f0:0d:b9:19:5b:3a:ea:5d:1d:f9:d6:0b:
e1:15:6f:51:e3:cd:46:77:ec:ed:b9:5c:80:5e:63:45:89:6e:
ca:bb:cc:43:ab:06:0d:07:26:8b:df:be:d2:bb:82:c0:30:c1:
8b:3d:0d:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:48:54 2025 by rpki-client