Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft
File: 6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft (raw, json)
Hash identifier: /jwx6EKIuln+AFh9fmgbd/T98ot/suzZvG7c6jX1QtY=
Subject key identifier: EF:43:09:B8:9C:C2:1C:42:EB:FD:50:7A:29:B5:67:16:99:CA:75:2A
Authority key identifier: E8:D8:78:AA:53:08:18:93:BA:52:85:24:EF:14:3E:A9:27:13:92:B8
Certificate issuer: /CN=e8d878aa53081893ba528524ef143ea9271392b8
Certificate serial: 019A4DE1B4404692EB22911567F9ED93CDE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft
Manifest number: 170B
Signing time: Tue 04 Nov 2025 08:00:28 +0000
Manifest this update: Tue 04 Nov 2025 08:00:28 +0000
Manifest next update: Wed 05 Nov 2025 08:00:28 +0000
Files and hashes: 1: 5sx0qR-B9y6mGDgRbtSLnw5KGsw.roa (hash: Nyr6wmMl755m5pBB7dzD6+3NgxbHjvOEn2wkeXz+Yqw=)
2: 6Nh4qlMIGJO6UoUk7xQ-qScTkrg.crl (hash: UlVDAy4FE3r7obpn3QJtDMabA/ylZDYzpaNl5/V5AHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft
rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:b4:40:46:92:eb:22:91:15:67:f9:ed:93:cd:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8d878aa53081893ba528524ef143ea9271392b8
Validity
Not Before: Nov 4 08:00:28 2025 GMT
Not After : Nov 5 08:00:28 2025 GMT
Subject: CN=ef4309b89cc21c42ebfd507a29b5671699ca752a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:38:3b:96:59:af:cb:b9:d8:e7:55:fe:94:83:
51:db:49:0e:a7:a2:52:de:dc:8c:71:5a:81:53:27:
96:2a:67:f4:1a:96:19:d2:5e:17:87:0f:e5:75:50:
0d:73:14:f4:fa:6a:8c:ba:36:2b:20:3f:30:77:2b:
c9:e3:53:46:d6:11:2c:9d:e1:15:9b:fd:f6:d8:ac:
5d:33:3c:8b:be:91:7e:86:26:33:e3:03:cf:16:2b:
6c:64:92:a7:64:c7:76:51:68:62:bb:b6:1b:7e:00:
3a:28:d9:61:1b:2b:32:06:14:4a:ba:5a:02:39:94:
39:71:95:c4:b6:4b:48:bb:20:e0:bc:56:4f:e9:55:
39:6f:3b:36:6b:37:e6:64:bf:5e:f9:5c:7d:45:09:
e7:0f:93:4d:6f:5c:65:c8:ae:bb:6d:e2:8f:19:b4:
c1:aa:1d:0c:36:49:56:20:e2:73:d8:6a:65:01:a7:
eb:a0:5b:ff:46:66:7a:fa:02:a4:ba:65:49:4e:ee:
ae:a0:bd:89:ac:6c:e3:58:31:da:fd:77:c2:b7:5f:
dc:b6:27:77:57:20:58:b3:72:e7:3a:b1:ac:f8:73:
67:7f:63:3b:18:22:6a:73:22:98:1f:c9:1c:b2:a1:
16:9a:b1:ae:86:b7:01:c8:53:92:0e:88:b8:10:b0:
a0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:43:09:B8:9C:C2:1C:42:EB:FD:50:7A:29:B5:67:16:99:CA:75:2A
X509v3 Authority Key Identifier:
keyid:E8:D8:78:AA:53:08:18:93:BA:52:85:24:EF:14:3E:A9:27:13:92:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:f6:13:f5:80:20:b6:56:0e:10:25:4a:d8:95:48:2b:2f:44:
a4:13:9d:61:e4:dd:0c:f6:c9:94:d0:ab:45:06:31:d5:13:77:
b8:1d:81:4c:2c:30:77:db:73:d0:47:e4:f0:54:54:cf:8b:20:
1b:cf:74:7e:3e:35:77:aa:0f:ab:cf:71:0f:55:a8:61:a9:b2:
6c:c3:9d:0d:e1:cd:45:94:81:4e:2e:b5:cd:87:24:c1:5d:32:
2d:93:43:2f:19:4f:cb:20:e3:76:5a:ee:fb:3e:6a:34:04:ed:
58:d7:ef:cd:39:71:df:74:13:da:a3:17:33:9d:94:95:52:b5:
88:d7:07:f8:46:56:a0:3c:51:16:bb:9d:6e:54:e0:54:74:16:
ea:0c:e9:41:e5:6b:cd:4c:56:b0:0e:82:c0:47:3f:32:cf:7f:
b9:34:83:2c:05:d4:12:01:ec:4c:18:36:3d:df:5b:69:0b:6a:
fd:2e:92:ce:05:43:9c:21:f6:57:73:93:ee:4c:b7:41:d0:f9:
b9:06:13:48:de:ab:ad:b3:fb:25:75:48:9a:53:f3:0d:f0:1a:
31:db:0c:96:69:1a:e0:43:bf:bd:ba:a4:0b:49:3a:5b:b0:fe:
61:93:60:e5:f3:2f:6a:09:ba:17:df:a7:1a:93:17:01:2f:2a:
6c:a0:fc:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:41:31 2025 by rpki-client