Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
File: RWF9LghjWN2nvbDcRmyhyG7U_so.mft (raw, json)
Hash identifier: CaVvHYvq0otHvV/TbQ+czCQhZB7R4MAydPeODxDbt6U=
Subject key identifier: 90:93:39:73:7D:A4:7F:23:55:F8:A3:0C:C8:79:B6:01:E8:E6:27:13
Authority key identifier: 45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA
Certificate issuer: /CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca
Certificate serial: 019A4D3D59B45DD87A2586935CC799CDC68A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
Manifest number: 169F
Signing time: Tue 04 Nov 2025 05:00:57 +0000
Manifest this update: Tue 04 Nov 2025 05:00:57 +0000
Manifest next update: Wed 05 Nov 2025 05:00:57 +0000
Files and hashes: 1: Kp8YOETyXn_CJNlkKRcjiHTajds.roa (hash: pE4tiu3XHnbIpJeimbwG8Yyb4EwnGUv1VJS0J7muojA=)
2: RWF9LghjWN2nvbDcRmyhyG7U_so.crl (hash: Nh1uE2DwQ0hyq0CuO+LfH2krGsGk9P6M785bimWBzVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3d:59:b4:5d:d8:7a:25:86:93:5c:c7:99:cd:c6:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca
Validity
Not Before: Nov 4 05:00:57 2025 GMT
Not After : Nov 5 05:00:57 2025 GMT
Subject: CN=909339737da47f2355f8a30cc879b601e8e62713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b1:7e:05:ad:88:9b:84:48:a0:bc:0b:c7:f8:
72:1f:f3:e3:85:aa:2d:eb:f5:7f:8f:fd:ce:55:86:
1a:2e:50:cb:e5:f6:bd:3e:e5:37:78:c3:a1:e4:41:
03:42:13:b2:66:b6:37:6f:1d:1a:35:1d:94:65:9b:
d2:32:99:3e:a9:5a:a6:fd:90:b7:93:83:79:61:95:
59:e7:d3:33:7d:1c:4b:74:43:cc:42:c8:a0:37:e7:
f3:43:5e:dd:cf:49:bd:bc:85:2c:2a:aa:6a:07:e7:
19:18:a3:29:a1:d8:16:d5:24:1c:3f:cf:ad:3b:87:
3b:a1:7d:d8:d2:fc:04:f9:16:f1:46:81:ee:ed:f5:
70:98:24:d8:6e:85:52:4c:aa:4f:22:cb:a7:4e:17:
bd:94:1c:b5:a2:78:1f:0a:2a:a7:47:60:11:34:98:
e8:ec:32:fb:2f:33:06:93:a3:e1:09:05:e0:b4:64:
4e:6c:91:98:02:21:f8:83:96:9a:ef:12:c6:ab:a0:
4d:0b:3d:8c:31:cf:41:fc:7b:49:9a:cc:b7:e5:90:
ff:c1:80:61:1a:3d:9d:18:b2:b6:63:e6:36:62:a1:
04:d3:21:8e:f1:9c:bd:9d:a3:8f:e0:29:2e:be:d3:
15:1a:d2:c2:84:93:02:86:eb:6a:0c:19:fe:d4:28:
6f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:93:39:73:7D:A4:7F:23:55:F8:A3:0C:C8:79:B6:01:E8:E6:27:13
X509v3 Authority Key Identifier:
keyid:45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:f0:d7:e7:2e:1b:ca:7f:a8:56:d5:e2:77:2e:28:1f:1e:d9:
43:27:e2:68:e5:37:5f:e7:f8:7e:56:bc:6c:44:31:09:16:b9:
8d:81:a9:a9:13:6e:e4:ea:5d:e3:8b:9a:17:b6:b2:76:4c:df:
eb:a9:45:12:da:d1:6e:72:96:47:77:18:9c:da:fe:2e:63:fe:
29:c4:8b:31:b3:99:6b:53:38:24:0b:b0:d5:b8:7a:7c:46:11:
d3:9c:57:ec:5b:f9:0d:7c:af:63:ea:59:89:9e:d7:55:12:51:
b0:22:f7:e3:65:8e:d2:1d:7e:79:d5:e5:6f:5c:84:63:c9:95:
71:4a:a2:2e:48:72:b6:a5:bc:2c:98:b9:df:16:2e:fd:22:6d:
85:41:8f:39:d2:ba:1c:46:7d:65:af:0d:0c:3c:b9:63:27:21:
26:7b:b6:82:6f:48:d7:3d:ce:de:c8:ab:38:59:30:46:a0:e7:
22:96:db:18:c6:48:ef:77:b0:c8:e6:36:b6:f1:d7:7e:a7:69:
28:52:9b:82:86:85:65:39:fa:8f:bb:f2:eb:f0:e0:f5:29:36:
af:dc:c0:5a:59:80:c5:a3:68:0a:ba:b8:9d:91:39:e3:f7:82:
95:2d:b3:af:7f:56:d0:9d:c6:8c:b9:75:ed:6b:7a:92:01:47:
e7:fb:e9:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:46:05 2025 by rpki-client