Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
File: pVB1uOQuRRTvSdP-ovGHJk50-y4.mft (raw, json)
Hash identifier: Za7pk9e0u4DX45ooLrMBBle8ucUcJk33jkG4uNT4NLY=
Subject key identifier: 69:44:52:9F:FE:37:70:F1:76:85:33:A8:C2:82:33:BD:D3:36:9E:84
Authority key identifier: A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
Certificate issuer: /CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Certificate serial: 019A5187889F0852564BF3F1622C3F2E8CC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
Manifest number: 03A9
Signing time: Wed 05 Nov 2025 01:00:27 +0000
Manifest this update: Wed 05 Nov 2025 01:00:27 +0000
Manifest next update: Thu 06 Nov 2025 01:00:27 +0000
Files and hashes: 1: AHyerdr5uxL6xuyGfsHFNBv_XjU.roa (hash: /uUPID3475V6+DCQHcFaqhePNwogod/B8RgCIUOzHrI=)
2: pVB1uOQuRRTvSdP-ovGHJk50-y4.crl (hash: rBJw8pPOkFCcyJ9ZdmrzGKSh5/I0HMZpqXt8KdtN298=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:88:9f:08:52:56:4b:f3:f1:62:2c:3f:2e:8c:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Validity
Not Before: Nov 5 01:00:27 2025 GMT
Not After : Nov 6 01:00:27 2025 GMT
Subject: CN=6944529ffe3770f1768533a8c28233bdd3369e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:58:60:0b:cc:1d:50:ad:cf:a7:3f:cf:a4:7d:
27:0f:25:cb:82:04:4e:77:ca:d1:38:b3:60:61:a0:
e7:c3:49:23:50:26:75:a8:37:ab:37:85:f1:95:8e:
29:99:cb:35:04:83:f4:9e:23:94:a7:d6:c6:3f:db:
13:0a:e8:04:36:a9:28:5d:01:9c:06:43:b1:a6:08:
65:72:a0:23:05:13:38:9d:96:10:14:04:3b:c5:d3:
80:ad:54:fc:90:b1:50:4d:50:0c:89:03:3f:64:91:
1a:f0:e1:2a:e9:52:3f:b4:5e:ea:6a:b4:36:c1:e8:
4c:fb:6a:68:2e:62:de:78:34:dc:8f:5f:98:78:fc:
a3:fb:ea:ec:f6:2c:88:35:5a:63:e2:cc:1b:0c:c6:
3d:88:44:67:01:9d:8a:08:2e:59:1c:6f:c9:52:76:
54:15:dd:ac:c9:b0:bf:72:d3:12:34:e8:85:82:f2:
a3:59:cd:5a:34:69:6f:48:03:c2:ae:86:9d:ad:2f:
87:db:a5:fa:fe:93:af:74:12:83:3a:02:a9:51:e6:
df:51:87:56:04:70:f6:7d:38:86:cb:81:2d:2f:15:
71:58:f9:15:25:6e:df:d6:c9:f6:2d:17:64:88:82:
26:02:a8:07:57:ac:3e:64:db:80:c1:35:51:c2:32:
4f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:44:52:9F:FE:37:70:F1:76:85:33:A8:C2:82:33:BD:D3:36:9E:84
X509v3 Authority Key Identifier:
keyid:A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:f8:56:d4:a4:e8:3a:0d:3a:f3:1c:6e:db:29:2d:78:5d:7d:
94:da:b2:50:16:47:6d:84:ae:ef:d5:5a:5c:a2:80:a9:95:9d:
e5:b5:5d:61:c6:9b:c4:e9:21:2e:fd:e9:57:38:b6:9e:41:7e:
a5:6b:7d:cd:93:8a:21:58:9f:22:37:d9:7d:c1:12:dd:e0:1d:
15:83:5d:fe:10:3b:e4:ec:4b:73:a5:6f:2a:40:e2:50:49:63:
aa:7a:96:bf:6a:20:d1:b4:a7:47:47:87:15:c7:54:54:77:66:
d9:67:38:f6:48:f4:98:18:b1:79:67:9f:2e:c6:ab:b7:0f:da:
d7:0c:77:5d:4d:d5:22:84:89:35:2c:dd:59:70:34:f3:ec:cd:
50:f8:d7:b9:a1:60:e1:b7:ea:95:18:72:cb:1c:02:24:bb:11:
26:ff:42:d8:55:59:ae:0a:a2:93:ae:f3:0e:fa:8c:6e:2b:c8:
cb:a2:d3:f2:24:2f:32:52:17:a3:9a:d4:e9:26:73:0c:e8:0e:
cb:a9:01:3a:3c:8f:65:2b:c9:20:dd:0b:c8:e1:cf:82:6e:19:
d2:4c:c5:a3:62:4d:ed:0c:e1:9f:8f:7a:01:65:df:9f:3b:c9:
eb:c9:68:bb:7f:49:e9:56:d4:2d:e7:b2:96:ab:4f:83:04:1a:
5f:ee:1c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:52:42 2025 by rpki-client