Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
File: F80TGMkZxu8W0kynhGKgt94UugU.mft (raw, json)
Hash identifier: 5dnyIVGtWfSDzefh3IAiIGJE4TCecyqYlD5Lybc9ccw=
Subject key identifier: FF:83:11:D1:8A:14:B6:7F:AF:9C:D5:E8:38:F1:F1:4B:43:D5:82:C5
Authority key identifier: 17:CD:13:18:C9:19:C6:EF:16:D2:4C:A7:84:62:A0:B7:DE:14:BA:05
Certificate issuer: /CN=17cd1318c919c6ef16d24ca78462a0b7de14ba05
Certificate serial: 019A552D13A97518E2CB3AD4B3E78C614A3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
Manifest number: 9A
Signing time: Wed 05 Nov 2025 18:00:08 +0000
Manifest this update: Wed 05 Nov 2025 18:00:08 +0000
Manifest next update: Thu 06 Nov 2025 18:00:08 +0000
Files and hashes: 1: F80TGMkZxu8W0kynhGKgt94UugU.crl (hash: cyb315YsJlD5NgPJXLCAe4OuEcm75F9O5CgC/IK8eJU=)
2: fV1WZCcdLfEsqw2EdlQm5P-L0is.roa (hash: 0XqccHFLFqDbT7tC/mcDP32ySvfNB41cuIO9KikZ3oY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 18:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:55:2d:13:a9:75:18:e2:cb:3a:d4:b3:e7:8c:61:4a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17cd1318c919c6ef16d24ca78462a0b7de14ba05
Validity
Not Before: Nov 5 18:00:08 2025 GMT
Not After : Nov 6 18:00:08 2025 GMT
Subject: CN=ff8311d18a14b67faf9cd5e838f1f14b43d582c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b9:c9:8f:13:2d:c0:9c:2b:07:b1:42:6c:b1:
df:7b:fd:d4:7d:18:75:c4:2e:80:19:0f:50:fb:d9:
62:09:e7:23:57:38:a2:f1:4c:40:cb:06:64:50:40:
e6:fc:d8:21:63:80:ad:51:0a:c4:e6:f0:d7:1b:c3:
73:5e:9e:41:fb:90:31:dc:3a:b8:d7:2f:ad:09:b8:
c9:6c:39:c8:02:71:12:4e:b6:ae:8a:78:bd:1a:9b:
d8:94:92:ff:65:e4:73:1f:5d:c4:f7:d3:88:17:d9:
9f:41:9c:24:42:9f:75:10:ac:2f:d9:ac:ca:5a:b7:
9b:d3:dc:62:6b:2f:d7:57:ce:33:e0:18:ba:0c:35:
99:a8:87:13:93:6d:6d:06:03:54:16:65:d3:8a:e3:
fc:78:11:07:1f:aa:d4:64:3c:81:99:7c:45:ac:27:
20:95:07:bd:96:0c:d5:8b:6c:b5:2c:a6:3c:0c:93:
86:61:8d:f1:fa:ec:c5:5e:df:41:38:38:13:71:f4:
cd:b5:23:d7:27:c2:97:0d:e6:bf:e4:ff:4f:29:b8:
77:8b:e9:b9:73:4a:6b:42:75:20:8f:6f:b4:c7:2c:
9a:63:b0:b4:58:a7:d2:74:b1:0c:0a:f6:e6:d8:f2:
94:23:63:33:aa:da:72:46:39:e2:31:e1:99:74:42:
52:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:83:11:D1:8A:14:B6:7F:AF:9C:D5:E8:38:F1:F1:4B:43:D5:82:C5
X509v3 Authority Key Identifier:
keyid:17:CD:13:18:C9:19:C6:EF:16:D2:4C:A7:84:62:A0:B7:DE:14:BA:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:5a:bc:d7:20:56:55:6a:5e:37:b7:3c:4b:b6:5e:37:74:2b:
74:79:48:a8:0e:0a:ae:99:1c:cf:b5:f5:da:44:75:32:b9:ef:
4e:4a:a1:90:f7:0b:a2:3c:bc:dc:fd:38:e6:15:0a:19:46:4f:
62:b4:cf:ed:f4:38:69:59:d2:65:55:8f:7d:7c:79:73:1c:e7:
86:ee:05:60:23:2e:51:f4:ff:59:1b:f3:85:eb:2d:e7:e0:0c:
19:cf:81:63:c2:f7:8f:4e:29:11:9a:fe:97:fe:b8:cf:0f:e3:
fc:c0:10:5e:70:45:15:e3:a1:bf:2c:0f:45:8f:a1:ec:64:90:
5a:13:ed:8e:03:ac:a3:6e:ed:63:bc:9f:d3:7d:1d:6d:2d:b2:
08:22:08:af:a2:2e:91:8d:dd:ff:82:b5:59:6b:69:c6:75:f0:
88:99:22:35:a5:45:1a:bb:9e:74:0d:8a:03:47:da:44:a5:91:
e3:e0:ac:bf:22:d0:d2:17:af:55:5b:98:92:32:21:6b:19:46:
22:6b:4f:dc:7f:cb:1a:4a:9b:10:d0:81:a6:bb:1e:47:00:4d:
d0:38:23:d9:0d:43:e4:22:9b:61:c4:87:bf:27:63:c3:c4:d1:
0e:4c:a1:1b:75:42:92:82:d8:1d:b1:71:95:06:4f:8f:c4:3f:
c6:ea:22:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 23:01:21 2025 by rpki-client