Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
File: rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft (raw, json)
Hash identifier: jF52ZCxPJ+bz4xwZ6dhrtQaaSQRIw6ZU3zYMvHNAT+U=
Subject key identifier: E2:56:58:76:99:9A:FE:E0:F0:82:D2:07:7F:C2:D2:3C:FB:92:79:3C
Authority key identifier: AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
Certificate issuer: /CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Certificate serial: 019A53AC7C091FD33E2FAFC95020DA629EDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
Manifest number: 1728
Signing time: Wed 05 Nov 2025 11:00:03 +0000
Manifest this update: Wed 05 Nov 2025 11:00:03 +0000
Manifest next update: Thu 06 Nov 2025 11:00:03 +0000
Files and hashes: 1: 1xef8JB14kgVdYbFNM-Oq6W7NWA.roa (hash: 2TgMpFsN8snCYIhnDbb3K1R/JLwOpv09B4vLRv33njY=)
2: 30aIeplMe8B5nuWPNxNW6K-OtBY.roa (hash: 3pRxuzSCfGIU8i4yLQxNrHj04RZktWd0aRH2mX3pOUo=)
3: 5R2_zC5O_WNYOAGlu7by2_fhzYo.roa (hash: Eq+hBI8YGdr0edeJFDWardc1U5Cf7U1rPC+h2snaoOY=)
4: mG-NGr5UJw8Bdsm31xr0LARp3LM.roa (hash: Ez+x2KZ41CLnIqO9c7EUA1U/u9pzX46TWaq6peZ65/4=)
5: nqdZW8VS3cJABsENIPnwko2Hihc.roa (hash: IhzETIut1wHzF58gkob1Irj0rHur1kgwouWb5+riuAI=)
6: nrBcJclJWWQmSFgHdkkN2rl4iMo.roa (hash: LHzeWYsmA5iX5RkIBuodpJrYuHeqFeRrX4/36Bp1azQ=)
7: rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl (hash: i9ZHuM1A/S1SSE1DeO7bzZqQxYUPGYdDrzcBhTIOwIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 11:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:ac:7c:09:1f:d3:3e:2f:af:c9:50:20:da:62:9e:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Validity
Not Before: Nov 5 11:00:03 2025 GMT
Not After : Nov 6 11:00:03 2025 GMT
Subject: CN=e2565876999afee0f082d2077fc2d23cfb92793c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7d:f2:0e:63:2d:d0:d8:6c:55:28:85:5f:7d:
28:d4:91:c4:8f:5f:a0:8c:02:a8:db:f9:8f:99:a9:
17:41:5c:6c:36:25:3e:af:f1:e9:3f:82:b5:e3:42:
d2:a6:9c:ac:e0:f1:31:79:1b:7d:8b:a5:37:a5:6a:
3b:71:26:d2:04:98:b4:de:2c:62:ac:76:2f:51:f4:
8d:a2:a9:98:9e:78:ff:e5:df:88:06:91:bf:7c:2b:
90:ec:dd:2d:d3:69:f8:5b:00:8f:e9:ae:7e:d9:36:
2e:f9:1e:ef:d3:1d:b1:b2:8d:f5:3a:56:34:81:13:
eb:9c:11:f5:13:33:e9:99:56:17:39:21:61:9a:c9:
c6:c7:99:27:7e:f2:86:31:af:41:4c:57:95:da:66:
9a:99:ea:54:9d:1d:2c:e0:4b:6b:94:3c:ba:b9:c3:
d4:53:cb:7d:31:31:03:d3:2c:65:1d:bf:88:6a:6f:
35:12:04:c1:f5:cd:80:37:51:0f:64:40:55:32:fa:
32:09:6e:50:f2:a4:03:23:86:6e:28:c7:67:44:b7:
a5:a0:a8:b2:0f:48:99:b4:f1:06:53:41:5f:32:8d:
00:5a:b2:66:ca:6e:7a:97:f1:20:d6:c7:4a:49:22:
9a:09:8f:5c:c3:3f:1c:31:d7:a2:27:dd:42:66:0d:
d9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:56:58:76:99:9A:FE:E0:F0:82:D2:07:7F:C2:D2:3C:FB:92:79:3C
X509v3 Authority Key Identifier:
keyid:AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:d9:92:2c:d1:84:70:14:30:fb:d9:6d:c4:bb:93:3f:10:3c:
0c:1e:dd:cd:3c:49:7f:b0:f1:5e:58:43:c0:31:6c:00:30:56:
16:b0:dc:a3:56:3b:d4:b3:2f:75:9b:5a:43:29:89:3f:82:a2:
2a:c1:fd:61:02:b8:59:e3:fc:20:5f:fd:dd:41:31:fd:e3:4c:
6e:5a:55:92:e8:83:da:fd:0f:90:ce:fa:b4:da:9a:a0:89:d9:
54:e3:a6:6d:e3:23:46:5d:3d:4c:c0:73:27:d5:97:55:b0:c5:
b7:1e:58:62:44:01:1b:79:09:bc:39:43:21:d2:8e:47:14:1b:
58:53:ea:ec:90:6f:36:98:8d:65:22:fb:6e:9d:00:26:35:c6:
cb:3a:1e:b7:67:48:5b:4d:d5:9d:ac:cc:57:12:df:81:03:9c:
f4:e8:73:bc:c0:14:c6:35:75:83:04:49:d0:23:97:13:cb:c4:
4b:ac:bc:e5:fa:d9:dc:27:78:14:ce:be:dd:90:90:32:75:c8:
ba:36:15:28:d5:14:01:01:e4:ba:8c:74:3a:f3:da:47:75:bd:
63:d2:62:67:97:5e:e0:ce:5a:81:56:db:ff:13:b9:de:96:9c:
b8:eb:b3:b8:e1:df:8e:05:19:b3:8a:e1:6e:67:2d:a9:27:0b:
08:7b:ec:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 19:11:00 2025 by rpki-client