Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
File: kMuqazbmzWh0x47UWk-N1xcwMdk.mft (raw, json)
Hash identifier: 1J5u/CiuxoIkd0s/E7XmawxPDoTRe1XOpzPiPyHVTww=
Subject key identifier: 30:BD:77:BA:0F:51:7A:E6:1B:48:B5:73:C1:9C:64:B0:51:79:06:A0
Authority key identifier: 90:CB:AA:6B:36:E6:CD:68:74:C7:8E:D4:5A:4F:8D:D7:17:30:31:D9
Certificate issuer: /CN=90cbaa6b36e6cd6874c78ed45a4f8dd7173031d9
Certificate serial: 019A4F628AB72E4F6AE5E1C1DCD9E7546CF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
Manifest number: 0C7E
Signing time: Tue 04 Nov 2025 15:00:49 +0000
Manifest this update: Tue 04 Nov 2025 15:00:49 +0000
Manifest next update: Wed 05 Nov 2025 15:00:49 +0000
Files and hashes: 1: c4U2evb93678CsrZ2ZQQemAPoFw.roa (hash: 5ZLOIZ+BzX8i3ipSMR9csvqZ6+nojKYy3y5RkNukgEE=)
2: kMuqazbmzWh0x47UWk-N1xcwMdk.crl (hash: 1CB6Qfqi3L14Z8HTxR7mJbynVU7hfhI4gECKdkNcWaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:8a:b7:2e:4f:6a:e5:e1:c1:dc:d9:e7:54:6c:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90cbaa6b36e6cd6874c78ed45a4f8dd7173031d9
Validity
Not Before: Nov 4 15:00:49 2025 GMT
Not After : Nov 5 15:00:49 2025 GMT
Subject: CN=30bd77ba0f517ae61b48b573c19c64b0517906a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:be:e1:47:0f:99:45:e9:e9:32:ba:38:92:e7:
dc:f0:3c:96:7b:2e:10:05:1a:79:3d:b9:6b:23:9e:
c8:05:32:92:51:c4:bc:6a:d1:f2:35:07:65:f0:db:
1c:bd:8d:6f:e4:b9:e9:86:cc:e9:f5:ac:b3:36:41:
7c:dd:15:1a:a6:3d:2e:98:40:15:c4:85:8d:1d:38:
0a:74:c1:d5:a8:e9:07:2a:fc:62:5d:2a:ad:a1:75:
83:a0:fe:0f:1f:a2:9d:56:dc:7a:c2:6b:55:96:98:
b7:97:2f:87:3d:fd:a1:c1:bf:f5:0d:a5:aa:a0:da:
b5:c2:22:1a:e9:c4:db:75:f3:38:d5:2b:b2:37:47:
e3:c2:7d:d6:9c:95:ef:24:80:54:f7:e0:fe:42:9a:
69:ac:a2:0c:60:ca:ab:2a:50:ee:be:71:76:98:2b:
df:a1:66:b2:c7:07:83:0c:7a:62:be:59:5d:e1:50:
b1:fa:e5:bf:a5:e1:ac:6f:f0:d8:71:d9:25:37:f6:
76:8a:da:26:5c:12:be:c3:09:78:de:15:51:22:08:
98:2a:bf:98:4e:3d:cd:43:64:09:ed:34:bb:d9:a4:
05:4c:8b:8a:d0:83:7f:30:b2:e1:4e:fa:82:36:86:
0f:f0:0d:1e:a6:c2:79:39:e8:fa:e4:63:59:b7:64:
97:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:BD:77:BA:0F:51:7A:E6:1B:48:B5:73:C1:9C:64:B0:51:79:06:A0
X509v3 Authority Key Identifier:
keyid:90:CB:AA:6B:36:E6:CD:68:74:C7:8E:D4:5A:4F:8D:D7:17:30:31:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:32:e6:3c:62:29:b4:74:b1:77:c2:45:33:40:fa:86:05:94:
db:56:b1:8a:60:28:d6:7c:45:6f:82:5d:5d:b0:d5:88:be:57:
fe:8c:ae:12:86:7b:15:e2:50:cb:52:8a:1a:a4:71:9a:96:5f:
93:8d:5a:62:2a:69:4f:00:5c:e1:7c:a1:77:0f:ec:a1:51:8b:
7d:90:51:06:c1:ed:f5:ed:b5:98:f8:b6:06:20:a9:32:ea:51:
3a:46:23:68:5b:86:79:6e:a5:f7:6c:ae:b4:68:93:78:b2:7c:
36:c6:ef:63:fe:e5:99:91:ff:bc:dd:bb:5a:f8:c9:4e:45:95:
0b:87:16:3e:b2:9b:1b:05:b7:8f:8a:56:91:64:5f:6f:97:59:
c1:17:ca:aa:9a:ea:8e:7d:27:1c:b6:42:b9:81:ec:65:bf:49:
32:b3:53:c4:2e:2b:6e:b2:f4:76:31:23:7b:34:e1:f8:47:f0:
13:5b:f4:8f:ff:b0:bc:40:8d:ab:1e:1d:6c:21:2c:be:4f:14:
1a:9d:da:bd:8f:f9:72:e7:5e:e2:47:1b:21:f4:dc:cc:d7:9f:
db:1a:0c:61:8d:0d:76:8e:d1:d2:00:69:5a:2f:d3:97:5c:3a:
6e:e9:d4:24:99:da:61:c4:ff:dc:64:6e:47:83:8f:bf:36:e6:
cd:10:28:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:49:00 2025 by rpki-client