Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
File: E9g7Il3TOGDFHcRKqI218D3BWnQ.mft (raw, json)
Hash identifier: RiLwjxNLqjH1Dk3FYFWuWoYUnHl+x5sZU9gPBu0BRZQ=
Subject key identifier: 2B:69:54:3B:68:D9:59:D7:C3:5F:45:D6:A2:2D:D2:68:49:33:A4:7A
Authority key identifier: 13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74
Certificate issuer: /CN=13d83b225dd33860c51dc44aa88db5f03dc15a74
Certificate serial: 019A56E51109279B9728016D02AFE3D3B511
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
Manifest number: 16A2
Signing time: Thu 06 Nov 2025 02:00:43 +0000
Manifest this update: Thu 06 Nov 2025 02:00:43 +0000
Manifest next update: Fri 07 Nov 2025 02:00:43 +0000
Files and hashes: 1: 9htWy01pg2D2zYDPH366mUte-18.roa (hash: EzJGaZ3hn2rEMiPwCBKqVw/ZKa/ezLWPSIlGniopSlk=)
2: E9g7Il3TOGDFHcRKqI218D3BWnQ.crl (hash: a8q+r7F+ARvxsCHQbqD/HiG8MgEvtiMDIpz8OsZvAMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:e5:11:09:27:9b:97:28:01:6d:02:af:e3:d3:b5:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13d83b225dd33860c51dc44aa88db5f03dc15a74
Validity
Not Before: Nov 6 02:00:43 2025 GMT
Not After : Nov 7 02:00:43 2025 GMT
Subject: CN=2b69543b68d959d7c35f45d6a22dd2684933a47a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:23:25:01:56:d6:79:24:ef:1c:4d:0f:22:13:
ce:8f:46:9b:46:b8:08:c0:be:92:25:5e:e8:5d:f3:
0c:bd:01:42:7a:ed:cd:4b:51:ff:d7:13:01:df:dd:
1a:92:be:f4:f5:b7:61:d9:6a:8c:6d:ff:20:47:40:
5d:f5:8d:ba:73:b1:4d:49:94:55:ef:38:70:7b:22:
dd:84:be:48:68:57:97:b3:91:81:4c:fd:ea:31:f1:
85:34:24:9c:24:d9:dc:59:2d:14:c6:d0:21:08:ce:
43:0a:40:51:06:9e:13:f0:4c:45:80:a7:78:fc:66:
58:09:e9:26:b1:a0:8e:9a:a6:41:b1:d1:15:62:f5:
d6:41:ab:7b:2c:cf:85:da:6e:e0:aa:1d:4c:f8:e4:
15:e5:c0:94:a4:7e:f6:0f:91:32:cc:cb:0f:a0:b7:
68:91:5a:ca:9c:04:d8:f6:c2:1b:38:89:5e:fb:82:
ff:39:7d:5b:51:1b:ea:53:f7:05:e1:fc:25:00:93:
52:19:86:6f:dd:b2:7c:f2:8f:f4:59:d1:af:38:a1:
2b:0d:23:9a:ed:5c:d4:09:80:d2:22:e2:a1:2e:ac:
44:be:ce:be:fc:5a:61:62:ca:e8:4b:83:21:39:74:
c0:58:73:1e:b9:d1:1e:52:c7:b1:97:bb:66:7e:16:
d7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:69:54:3B:68:D9:59:D7:C3:5F:45:D6:A2:2D:D2:68:49:33:A4:7A
X509v3 Authority Key Identifier:
keyid:13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:16:84:d9:b5:c0:83:45:f1:43:86:48:39:26:2a:ea:12:a4:
66:53:8e:f0:5f:44:f8:c7:d3:4e:93:b2:46:9f:23:2f:e4:d6:
65:09:af:af:db:fc:31:f7:eb:62:b1:96:29:5c:67:e4:a6:2d:
c3:5f:c3:22:d7:1a:79:ec:62:10:41:66:98:b7:1c:b9:d8:0c:
2d:68:d1:1d:4c:ef:1f:90:c5:e0:e5:c8:a0:c2:a9:9c:93:16:
9d:4d:c8:69:8a:93:5b:cd:96:cc:db:8b:26:be:1c:bd:e9:8b:
80:bd:04:5c:d2:97:50:55:7e:81:eb:9a:31:2a:7b:70:fe:a3:
f7:38:b5:e1:98:fe:eb:ed:86:ed:af:d1:b8:cb:69:55:af:dc:
f5:97:00:4c:4a:b2:f6:92:7b:b7:30:02:64:0b:d4:2f:a5:19:
6c:09:65:02:ec:62:4a:09:59:83:31:5b:43:ca:9d:c1:91:a2:
25:b8:56:7f:c0:74:4e:85:9a:2a:56:6c:c3:57:1c:43:28:e6:
28:2a:e1:87:85:73:b6:d1:4c:d1:d1:71:ca:fd:f1:d6:b6:9a:
5b:1e:f4:87:18:2c:9e:6e:61:21:7f:4c:10:9b:55:16:e3:12:
f2:0c:5d:c4:e6:fa:25:c3:28:ae:a4:79:29:80:dc:7f:14:5e:
74:22:e1:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 06:11:02 2025 by rpki-client