Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
File: E9g7Il3TOGDFHcRKqI218D3BWnQ.mft (raw, json)
Hash identifier: 5TOWMjZWmBIHPgTPlc1rumMXkBr/t/86F8+6WnDW62M=
Subject key identifier: D9:9C:8F:A7:8F:11:C5:0A:65:49:B9:A4:8C:AA:72:B6:0B:AD:E0:80
Authority key identifier: 13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74
Certificate issuer: /CN=13d83b225dd33860c51dc44aa88db5f03dc15a74
Certificate serial: 019A53086862CBCF54EB73471F1939B7FB35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
Manifest number: 16A0
Signing time: Wed 05 Nov 2025 08:00:50 +0000
Manifest this update: Wed 05 Nov 2025 08:00:50 +0000
Manifest next update: Thu 06 Nov 2025 08:00:50 +0000
Files and hashes: 1: 9htWy01pg2D2zYDPH366mUte-18.roa (hash: EzJGaZ3hn2rEMiPwCBKqVw/ZKa/ezLWPSIlGniopSlk=)
2: E9g7Il3TOGDFHcRKqI218D3BWnQ.crl (hash: Dccf7Rfr+XeWGxPWGgGGPaWiQi/pkUT5+8tS30IgpUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:08:68:62:cb:cf:54:eb:73:47:1f:19:39:b7:fb:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13d83b225dd33860c51dc44aa88db5f03dc15a74
Validity
Not Before: Nov 5 08:00:50 2025 GMT
Not After : Nov 6 08:00:50 2025 GMT
Subject: CN=d99c8fa78f11c50a6549b9a48caa72b60bade080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e1:a5:3a:44:67:5c:46:33:4d:f4:51:07:7f:
11:53:ae:7c:ca:4e:f4:ed:42:4c:b0:ec:2a:92:53:
4f:c8:42:82:04:62:ea:da:98:46:f0:e0:06:5e:80:
6c:f8:bf:d1:19:a9:18:c4:93:fc:17:9b:5a:7a:49:
fc:51:da:c8:53:5e:7c:b4:5d:b9:8f:19:33:4c:b7:
75:3c:4b:ad:7d:c6:7a:f2:15:df:ac:1b:a9:dd:87:
6a:8d:af:3c:c8:1c:79:f8:7c:5b:97:ae:83:57:8f:
02:0f:c1:be:ba:1c:8f:1b:47:d4:0f:13:9b:48:68:
5f:bc:b4:91:c2:12:ba:c2:a0:27:2a:54:74:07:73:
8e:3f:d1:e1:52:ec:eb:5c:70:76:e8:d5:e4:3d:1f:
36:a7:01:41:13:6d:94:73:db:8b:1c:c4:9d:4b:ea:
66:d3:3f:c8:71:c8:9e:b1:51:77:fe:2d:de:0e:4a:
13:68:86:4e:e8:c0:6f:64:18:3f:a5:50:88:7b:2b:
c2:9f:cb:20:49:86:4e:55:96:56:63:7d:b1:01:8e:
ee:77:76:3b:94:45:3e:ff:c4:4f:7d:38:2a:64:2f:
92:09:03:13:d5:f7:5e:07:4c:f0:fb:6b:a6:77:54:
ef:25:49:78:17:7e:db:67:0f:fd:6d:82:d6:2f:e2:
8c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:9C:8F:A7:8F:11:C5:0A:65:49:B9:A4:8C:AA:72:B6:0B:AD:E0:80
X509v3 Authority Key Identifier:
keyid:13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:cd:29:c1:b6:d7:32:e8:8a:e5:52:62:ca:b6:e7:99:23:d4:
7d:85:3e:db:10:aa:78:41:28:33:dc:1d:41:06:70:45:8b:4b:
09:64:76:08:ee:88:2f:d9:20:81:71:fc:68:5b:cf:fc:bd:58:
b2:24:0d:5c:03:9a:b2:6f:bf:7d:9a:c4:5c:39:0d:bf:fb:1d:
92:b0:d7:7c:2f:31:77:21:1d:36:4f:f4:3b:b7:ed:2a:4b:3d:
98:e4:ad:c7:73:89:ef:79:a9:35:1b:28:fb:7d:a7:38:64:85:
a9:14:8a:e1:42:bf:5b:bf:93:54:17:c3:b3:c9:74:52:16:71:
f5:3e:d3:7b:3a:30:d9:cc:a9:c4:cb:a5:88:4b:29:bf:56:00:
74:c3:b4:1c:3f:6d:80:5d:cc:16:ff:9e:ae:ac:3d:f6:fd:9a:
44:48:63:4b:d9:03:2a:40:34:ef:a3:af:47:64:1d:55:03:1b:
6e:74:11:5a:23:c8:97:36:95:dd:5c:8f:cd:92:ac:73:6a:b9:
99:1b:91:05:31:de:25:c7:81:af:91:00:49:ff:6d:32:e5:f6:
fa:98:f2:62:a0:38:0d:11:df:04:6e:a9:1f:fb:cb:98:b4:94:
a8:9f:8d:df:ca:84:29:d7:82:4d:30:2a:da:ea:48:03:17:07:
a3:57:02:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:12:54 2025 by rpki-client