Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
File: cIEc4M5zU_A-3py3ylEWJV-_t70.mft (raw, json)
Hash identifier: IIO0cUFb9lt/MxzIziABAAB7CHwzdJofVZgFKBhaD1A=
Subject key identifier: 65:F7:FD:45:43:88:52:58:46:2A:06:61:B2:08:FF:9F:23:2A:92:B6
Authority key identifier: 70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
Certificate issuer: /CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Certificate serial: 019A4EF5E56D607230921A5E479AC06EA532
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
Manifest number: 0BC6
Signing time: Tue 04 Nov 2025 13:02:09 +0000
Manifest this update: Tue 04 Nov 2025 13:02:09 +0000
Manifest next update: Wed 05 Nov 2025 13:02:09 +0000
Files and hashes: 1: 1-VdOr1FUP7HNxfqfhOHB4LyOJ2Y.roa (hash: QB9LyYahw6voR06UwItPSAyVLMKgN6beiVidIvS+Rxs=)
2: cIEc4M5zU_A-3py3ylEWJV-_t70.crl (hash: /0s6uAsiCVCEUTFcsH5XeMO1EHfhlvcZYxv4PmDcygE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:e5:6d:60:72:30:92:1a:5e:47:9a:c0:6e:a5:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70811ce0ce7353f03ede9cb7ca5116255fbfb7bd
Validity
Not Before: Nov 4 13:02:09 2025 GMT
Not After : Nov 5 13:02:09 2025 GMT
Subject: CN=65f7fd4543885258462a0661b208ff9f232a92b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:56:b3:c4:ce:4c:bf:9b:e0:7e:a4:98:3b:7d:
5f:32:ab:08:f0:4c:de:3e:d5:55:7c:a9:43:06:3b:
af:58:54:50:9c:dc:06:24:09:d3:64:6a:d5:06:ba:
a1:e7:c9:39:72:38:5e:39:08:c2:fd:85:08:64:e9:
ce:85:fc:47:0d:d2:42:fc:c2:72:ad:b4:3b:76:00:
58:61:e6:17:e8:6b:db:c1:01:1d:d4:a6:f5:a1:f0:
6a:e5:82:a2:c2:9b:16:a4:6d:c3:49:40:04:fd:07:
da:61:70:d6:71:4d:f7:99:f7:12:a5:7a:66:5b:94:
ad:b8:08:ff:b9:26:ec:87:0c:7c:29:a9:56:6c:64:
5b:df:2d:27:f6:8e:31:14:b1:5c:03:13:41:62:0a:
bb:dd:87:24:eb:b6:3e:b3:a9:8c:3b:4b:71:26:ed:
30:2f:fd:e8:c6:04:b4:15:f2:fc:f5:71:b0:be:32:
c0:2b:65:73:7b:2b:0c:3e:0b:a7:89:b1:04:7e:e6:
a5:95:10:76:48:20:84:97:83:79:e9:27:92:77:6f:
a1:16:72:0f:11:d4:3e:19:d5:e8:0d:08:76:9a:01:
a9:27:40:1b:74:78:63:74:2a:96:78:31:05:79:9f:
da:94:cf:6b:35:0f:17:6e:5c:a1:d7:85:bb:85:df:
7d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:F7:FD:45:43:88:52:58:46:2A:06:61:B2:08:FF:9F:23:2A:92:B6
X509v3 Authority Key Identifier:
keyid:70:81:1C:E0:CE:73:53:F0:3E:DE:9C:B7:CA:51:16:25:5F:BF:B7:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIEc4M5zU_A-3py3ylEWJV-_t70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/45e632-b0fd-4d81-9cf7-8fd22105806b/1/cIEc4M5zU_A-3py3ylEWJV-_t70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:e1:e5:5a:72:eb:0a:5b:20:7a:ef:0e:ee:0a:be:90:bc:c5:
fa:cb:18:79:e2:07:cb:44:dd:24:dd:04:21:36:10:cf:d8:2c:
5a:eb:59:cc:5a:e6:f6:24:37:cf:6f:00:ee:d4:f7:fc:c5:1f:
5c:6b:b2:5b:ed:fb:41:4f:ed:9f:b4:b5:19:a0:9d:99:aa:6a:
45:a9:22:0a:e8:4c:ff:d2:74:16:f4:89:5b:c8:3d:b5:38:5c:
bb:7d:1a:df:38:b1:25:4a:f2:9f:62:63:8a:fe:48:fe:f5:ba:
36:2f:3f:fe:c2:fb:9b:a1:d3:55:68:5a:6e:16:6a:4c:06:5a:
23:d1:74:f7:68:85:38:4f:be:61:1c:66:0d:b5:7e:c0:11:7a:
7a:f8:d1:35:0b:5b:32:96:27:19:e4:02:e8:57:cd:e4:04:fd:
42:8f:41:e1:af:b7:4b:3f:3f:37:11:df:c9:da:0f:dd:06:f6:
48:52:aa:f4:27:8a:d9:d2:a4:b9:ed:8e:2e:25:83:9c:26:85:
39:06:bb:a7:4c:16:68:e8:82:d7:b9:61:fd:ab:91:69:94:0b:
91:48:e3:88:6a:d4:b1:9e:c3:72:28:f6:41:61:a3:ef:a9:c5:
41:a3:7c:3e:23:4a:f3:0b:56:d6:13:12:3a:f7:85:1d:40:b4:
5f:b1:27:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:39:04 2025 by rpki-client