Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
File: rwMNO0xYnpSj72Hd1UAajz_3m20.mft (raw, json)
Hash identifier: Eb1y92RR+W4oJI6LlnG9bTOpF5wZ1K+zeicwMO7/OMU=
Subject key identifier: BE:9F:12:08:07:14:7E:F9:BA:9C:C9:4F:0F:A6:28:26:1F:4A:B4:1D
Authority key identifier: AF:03:0D:3B:4C:58:9E:94:A3:EF:61:DD:D5:40:1A:8F:3F:F7:9B:6D
Certificate issuer: /CN=af030d3b4c589e94a3ef61ddd5401a8f3ff79b6d
Certificate serial: 019A5150CD0828258A32B82CFF65805A485A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
Manifest number: 0544
Signing time: Wed 05 Nov 2025 00:00:41 +0000
Manifest this update: Wed 05 Nov 2025 00:00:41 +0000
Manifest next update: Thu 06 Nov 2025 00:00:41 +0000
Files and hashes: 1: lhPT8Z32dm5HBnSDBqDW1qERmiA.roa (hash: 0NqD/8/FwQf4n6Nk71zoiew6bzyeCyV72ogP7Shiesg=)
2: rwMNO0xYnpSj72Hd1UAajz_3m20.crl (hash: aeUQ1bgQK/v+3HPIFwmXLO8VUqwp/vs3bUpf0zu0954=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:50:cd:08:28:25:8a:32:b8:2c:ff:65:80:5a:48:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af030d3b4c589e94a3ef61ddd5401a8f3ff79b6d
Validity
Not Before: Nov 5 00:00:41 2025 GMT
Not After : Nov 6 00:00:41 2025 GMT
Subject: CN=be9f120807147ef9ba9cc94f0fa628261f4ab41d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:af:83:66:32:0a:1c:97:8a:55:f5:f8:8f:47:
14:f1:46:75:80:73:29:a0:00:1c:53:e5:f1:b6:a8:
07:5b:37:34:34:11:05:a4:bb:b6:bd:53:f7:4a:2f:
24:8c:50:22:3f:6b:9f:6c:6a:ac:01:23:0b:73:56:
d2:34:7f:ef:4e:91:49:f9:15:3f:52:28:fd:c0:b6:
9e:19:13:ba:a9:e4:a8:20:58:1c:03:3d:59:67:b2:
ac:8a:bd:c0:23:1b:26:f2:de:0d:5c:31:ea:97:b9:
14:fa:92:10:31:99:d6:38:58:2c:89:67:2e:f7:6a:
1d:b7:a5:30:d4:68:cb:d7:7a:fd:3b:46:a6:f9:39:
86:c9:32:d3:f2:92:19:fc:97:58:4e:c9:35:4b:fa:
26:1f:a3:85:4f:9d:bb:9e:aa:f9:c8:af:c9:b2:ae:
58:69:32:31:09:6d:a6:e3:b0:2c:5a:76:d5:c1:d9:
4c:4e:d3:2a:20:64:02:2d:07:22:5b:40:57:f5:35:
e6:45:9e:73:64:9b:8c:cf:d4:3e:ff:14:64:3a:2c:
0d:53:54:12:55:d3:81:7d:69:14:f9:b4:82:26:00:
fa:eb:7d:b8:78:61:9b:52:d6:30:3d:fe:92:7e:da:
3f:1f:94:fe:72:32:d5:d3:55:44:b2:61:ef:a1:1c:
d2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:9F:12:08:07:14:7E:F9:BA:9C:C9:4F:0F:A6:28:26:1F:4A:B4:1D
X509v3 Authority Key Identifier:
keyid:AF:03:0D:3B:4C:58:9E:94:A3:EF:61:DD:D5:40:1A:8F:3F:F7:9B:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:73:93:00:62:bc:9a:fd:65:7e:62:5d:bb:97:e9:2b:82:ea:
06:d3:b5:83:9d:48:91:c7:ca:a9:b9:8c:87:45:80:eb:8a:75:
e2:e3:76:4e:64:9a:38:a3:9e:4a:33:4f:21:87:bf:ed:67:14:
96:f4:f7:15:73:47:a4:13:e4:0c:90:0a:33:db:bf:77:88:c7:
0b:72:6b:a1:15:19:19:8e:d5:0e:e3:f4:4c:32:69:d2:2c:a3:
45:cd:1d:fe:e9:db:6e:f1:7e:0a:ac:ff:97:0a:1b:9b:77:df:
3b:69:06:42:e8:cf:fe:d6:38:d9:41:55:b8:d4:5a:3c:ce:1f:
63:d4:6e:68:6d:74:a2:3f:15:b4:ac:9b:af:83:83:0c:7f:50:
30:94:c2:42:f7:fd:df:5a:65:3f:27:77:16:69:82:28:be:57:
46:7d:3d:19:ba:27:20:d7:61:59:a6:e7:8e:52:96:2c:62:cd:
08:e2:f8:64:ee:e9:45:59:0d:c6:c4:5d:4f:2f:1e:f3:ab:a3:
23:24:83:14:e8:9d:a9:46:60:25:3b:49:a7:f1:1e:b6:09:fa:
51:18:b2:92:50:c4:fd:ac:ca:b9:b6:c8:dc:4b:37:cc:27:32:
ad:b8:9a:bd:24:ea:5b:59:d7:62:5a:af:15:4b:96:91:2c:b7:
3e:36:3b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:54:16 2025 by rpki-client