Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
File: 1KA5ru5iEDsojGyLlpLPWAh0PiE.mft (raw, json)
Hash identifier: 9CGYqNVHjOsUNL3EcU0eKb2ExRD5RdUXjMgnVEMwe2I=
Subject key identifier: 87:32:7A:F4:0C:C2:A3:40:39:AE:11:A5:B3:2D:4F:DC:4F:06:1A:D7
Authority key identifier: D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
Certificate issuer: /CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Certificate serial: 019A4EF4E0D3AE7E8126776AF0C7FD93C81B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
Manifest number: 16A0
Signing time: Tue 04 Nov 2025 13:01:02 +0000
Manifest this update: Tue 04 Nov 2025 13:01:02 +0000
Manifest next update: Wed 05 Nov 2025 13:01:02 +0000
Files and hashes: 1: 1KA5ru5iEDsojGyLlpLPWAh0PiE.crl (hash: rVA4WU3zbKIECwwPWBrQQP3jwNQyIY3D8kJigj8ynx4=)
2: s1SLHtKOtkgq5r5rHF__j6OHoGY.roa (hash: KY4xp5ySp/G6GnIfRT4waP6fnoRJIDEZEgF7zNS/QEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:e0:d3:ae:7e:81:26:77:6a:f0:c7:fd:93:c8:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Validity
Not Before: Nov 4 13:01:02 2025 GMT
Not After : Nov 5 13:01:02 2025 GMT
Subject: CN=87327af40cc2a34039ae11a5b32d4fdc4f061ad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d7:df:e2:f6:17:4a:64:ec:dc:40:51:a5:12:
c7:58:c0:39:27:c4:fb:0c:f1:c5:d0:7f:2e:f3:ae:
46:dc:c6:6f:4b:3c:8d:8d:5f:d1:91:5e:68:00:9c:
91:2d:2c:0b:8e:d7:3d:a1:16:dd:50:c2:49:11:dc:
35:c6:96:4b:8e:6a:4b:f8:30:96:02:04:bb:c9:65:
7a:be:34:96:5d:c4:0e:0b:b7:a9:6d:ba:4d:3c:91:
ea:38:4e:3f:f6:76:bd:6a:a8:62:b6:74:07:05:52:
5c:96:1e:bd:15:d8:e9:70:ca:94:1d:83:8f:30:80:
b4:5e:07:a0:3c:e0:41:47:64:3f:15:a5:4e:1f:4e:
a8:b6:e0:e2:8e:e7:64:8e:f9:6e:eb:31:d1:5a:a4:
3e:4b:b6:b2:39:26:56:c7:92:57:24:f0:4c:e1:d3:
c3:26:f4:bb:76:12:75:5d:c8:fd:26:eb:e6:e7:8e:
05:9c:a2:2e:da:42:a3:f3:fe:ac:4b:d8:32:bb:12:
71:5f:6f:fd:ce:8a:bb:9c:e7:67:c7:71:47:be:45:
0b:01:ba:1b:f4:70:fc:bd:ba:f7:d4:30:bf:4e:48:
7e:f2:d7:39:63:f8:7d:4f:45:5e:09:be:a5:ca:84:
2e:c5:36:5e:40:32:9f:39:ba:e6:4c:67:fb:76:f2:
67:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:32:7A:F4:0C:C2:A3:40:39:AE:11:A5:B3:2D:4F:DC:4F:06:1A:D7
X509v3 Authority Key Identifier:
keyid:D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:c0:e7:8b:17:3f:c6:03:96:81:dd:d1:bd:3d:53:41:08:41:
1b:80:d8:f0:e4:1e:b0:c8:f0:b1:a7:a5:27:0e:c3:70:bc:0a:
83:98:17:37:68:91:a5:74:d1:e1:b4:32:5e:60:fd:c9:30:39:
0a:d0:8d:fd:2c:c6:82:8b:7e:82:91:f5:4f:62:30:d9:8a:8b:
27:66:e2:35:9a:ba:eb:e3:62:4e:1c:25:30:76:a8:fa:a1:ea:
4b:e9:a9:2c:ff:40:4e:ba:82:38:ac:d9:31:5c:01:b3:6e:05:
82:da:24:99:00:e7:d4:99:1c:81:ee:3e:1b:58:ef:7e:24:77:
33:4f:3d:7e:02:5e:24:d3:72:fa:41:c7:d8:8f:3f:0e:88:df:
17:7a:a1:c4:19:46:d7:d2:aa:3c:84:fd:ff:ee:81:e0:17:0c:
69:48:09:dc:cd:e9:48:0d:11:34:8d:c1:a1:38:0e:45:5f:08:
c5:2b:ef:ae:07:a6:3a:63:98:3f:ca:b6:81:5c:01:af:c7:1d:
12:2e:f5:ed:70:1d:25:5d:9f:16:3d:ac:1b:cd:d9:91:e2:cd:
bc:f8:f4:82:8d:c3:cd:0d:d2:2b:e2:64:21:9a:b3:9e:17:9c:
2e:f5:9f:79:60:b1:9c:57:6e:45:c9:ce:e6:35:f8:b4:74:e5:
2c:e6:1f:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 17:56:45 2025 by rpki-client