Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
File: RdGncWAlFxEzoyAslGKg6r1mBoI.mft (raw, json)
Hash identifier: zB1DE77IheUp8w1h2U7t5f5eiSbGT1gWWjOBjoqUAcA=
Subject key identifier: E4:11:71:45:8C:BA:1F:99:15:D9:E0:51:02:7D:0E:47:20:CB:59:54
Authority key identifier: 45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
Certificate issuer: /CN=45d1a7716025171133a3202c9462a0eabd660682
Certificate serial: 019A4DE18A56D3D11C137E1CDCF72BE7EC3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
Manifest number: 06A1
Signing time: Tue 04 Nov 2025 08:00:17 +0000
Manifest this update: Tue 04 Nov 2025 08:00:17 +0000
Manifest next update: Wed 05 Nov 2025 08:00:17 +0000
Files and hashes: 1: RdGncWAlFxEzoyAslGKg6r1mBoI.crl (hash: 3fyOWHB1OWR+8JyyvdxMQPJzBaiCDZScXIj7PyFhFj4=)
2: p6pII2yeX9CFzHUBZ-7ECA5XoLc.roa (hash: a0i/QIPJclzVoZAHggGCZw2DH9on4V8xPPUo2d8z17I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:8a:56:d3:d1:1c:13:7e:1c:dc:f7:2b:e7:ec:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45d1a7716025171133a3202c9462a0eabd660682
Validity
Not Before: Nov 4 08:00:17 2025 GMT
Not After : Nov 5 08:00:17 2025 GMT
Subject: CN=e41171458cba1f9915d9e051027d0e4720cb5954
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6d:57:8c:8c:96:be:94:ac:03:a3:41:9d:10:
53:73:1f:26:0b:10:7f:0e:72:93:da:d3:df:4b:84:
d3:75:c1:43:0c:34:ce:3d:ef:04:38:e4:03:b1:e7:
a6:89:f0:53:16:9f:c5:c0:38:c1:9b:12:97:ff:f6:
23:9a:3d:93:d9:b3:2d:31:2d:c2:30:2e:26:0c:5e:
d4:1e:2f:d2:90:d6:34:42:27:02:fb:b4:45:b5:76:
10:64:5c:8a:7d:5f:a9:b9:ea:32:03:1c:6c:1c:b9:
49:89:11:81:cd:4f:1b:d7:db:53:34:a8:a7:aa:80:
e3:0e:54:20:5e:f7:a3:21:3d:34:5e:b1:24:2a:d4:
65:ea:fc:54:1c:62:13:59:11:87:8b:b4:2a:cb:7d:
46:b2:d8:d7:de:09:4c:74:e7:4c:a6:e4:67:2c:6c:
d2:13:83:ca:ea:3d:95:05:6c:7e:95:1d:5e:35:2f:
7a:0a:d8:fc:a2:5d:3d:e1:05:7f:c2:56:bb:a8:49:
76:cd:85:5f:58:ea:06:89:95:07:2c:86:c3:b8:8e:
4d:64:21:a3:e5:fd:e4:1d:52:37:1e:8b:58:6a:f2:
f4:74:b8:d3:03:db:52:67:c5:ef:ce:86:b3:ab:af:
a3:ac:a0:06:c0:ac:39:ff:fa:d4:e4:2d:4c:0d:e6:
7c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:11:71:45:8C:BA:1F:99:15:D9:E0:51:02:7D:0E:47:20:CB:59:54
X509v3 Authority Key Identifier:
keyid:45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:c1:39:14:f8:e3:2e:f0:ae:b6:40:28:fb:69:40:74:d6:0a:
08:cb:fd:54:ed:f9:94:67:af:24:d6:6f:a2:a9:ea:80:b3:d8:
0e:7a:e9:3a:88:cf:5b:85:5b:bf:47:9c:ff:62:bf:e3:b3:44:
70:99:b4:8a:65:0d:4f:76:92:d2:62:5d:d4:d8:8b:ee:d6:d6:
27:d2:70:a7:ae:7f:d5:f4:73:29:83:e6:1d:1a:ac:d1:3b:e7:
a9:dd:2d:63:d9:13:bc:43:07:13:2c:8a:f6:64:44:90:39:dc:
0b:af:68:d0:85:9b:e9:07:82:55:8a:4c:21:55:6a:29:17:86:
dc:e3:3f:92:53:43:71:ad:ad:ff:58:52:30:6f:9a:d1:70:09:
d0:4a:1f:79:c4:0a:4c:46:62:83:08:fb:55:6b:29:12:54:1f:
01:09:7a:95:35:77:aa:32:2c:69:a3:53:1c:ae:5d:7f:fd:15:
d9:ad:d6:ab:37:bd:b3:92:16:8c:6c:f2:4d:f9:8e:89:dd:54:
c0:41:c7:ba:66:3c:db:7f:57:aa:3d:cd:fb:86:a1:8a:81:40:
05:6d:b3:ce:14:ce:ab:e3:c8:49:72:9e:d1:2f:7d:55:bf:86:
7e:12:f1:8c:f0:ec:63:02:ed:e2:e9:c3:a6:2a:a7:08:58:fa:
95:fa:5d:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:52:35 2025 by rpki-client