Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
File: 9OcXTG90-poisK3uJRqNZDEjE_I.mft (raw, json)
Hash identifier: Klv3NL7FdtMXv/yFW6QJN7qLWk8ihfuPvhBMmoEGRJo=
Subject key identifier: 00:D6:FA:3B:1A:2F:3C:0E:85:F5:82:7A:1C:3C:4E:F6:48:E6:97:BC
Authority key identifier: F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
Certificate issuer: /CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Certificate serial: 019A4EF41AD9035493466807E876AB84E5B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
Manifest number: 169E
Signing time: Tue 04 Nov 2025 13:00:11 +0000
Manifest this update: Tue 04 Nov 2025 13:00:11 +0000
Manifest next update: Wed 05 Nov 2025 13:00:11 +0000
Files and hashes: 1: 9OcXTG90-poisK3uJRqNZDEjE_I.crl (hash: WVKF6tVJLP1HslG66oNZcJagUBL0Bd5aYUcEWf5oUo8=)
2: DSwyNAuAz2bJdfrLonxlYBob04I.roa (hash: 3+/CvQ/0iqsF5SqvqkyipksHlcWBh/rqDJFf0zM3tC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:1a:d9:03:54:93:46:68:07:e8:76:ab:84:e5:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e7174c6f74fa9a22b0adee251a8d64312313f2
Validity
Not Before: Nov 4 13:00:11 2025 GMT
Not After : Nov 5 13:00:11 2025 GMT
Subject: CN=00d6fa3b1a2f3c0e85f5827a1c3c4ef648e697bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f3:c4:32:b4:08:b0:c0:7c:6f:2a:20:76:b5:
f6:22:02:fd:04:13:51:c0:09:3e:4b:f4:80:c0:ef:
9a:58:0d:b7:9d:0a:23:bf:d6:3f:03:fa:00:cc:0a:
af:45:4c:56:f8:cc:56:2d:6b:e1:27:bd:49:db:1c:
5c:59:0b:dd:1f:31:c2:0c:6d:41:7a:d2:c3:4b:e8:
86:20:f7:b2:61:7b:60:7d:85:47:b4:da:6d:ef:0f:
76:1f:e0:76:1d:8e:d7:21:90:d8:38:af:96:11:ab:
2c:b0:53:7b:b6:87:d5:f2:7f:f4:ee:45:9a:e9:cb:
40:df:8b:ac:03:a9:b0:e4:66:6d:f8:93:07:25:94:
74:3c:9b:fc:16:a1:02:35:a8:69:ac:28:e9:60:c8:
f7:94:02:f9:dc:9e:c1:04:0b:fe:59:a7:d2:47:21:
b2:43:c7:72:8e:0f:0e:9e:77:e8:88:f0:a4:f2:32:
35:a6:a1:e3:7b:10:20:11:b6:1e:40:55:98:d8:3c:
9d:a2:0e:17:75:a6:0f:5d:b4:02:0d:89:2d:38:22:
5c:0b:50:64:be:a0:6b:2c:03:35:ea:9d:42:15:ee:
d7:63:8b:db:5b:20:5e:39:ff:82:77:74:ae:a8:6f:
a9:05:6a:73:60:13:ff:19:9f:97:03:fb:35:2f:ec:
c4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:D6:FA:3B:1A:2F:3C:0E:85:F5:82:7A:1C:3C:4E:F6:48:E6:97:BC
X509v3 Authority Key Identifier:
keyid:F4:E7:17:4C:6F:74:FA:9A:22:B0:AD:EE:25:1A:8D:64:31:23:13:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OcXTG90-poisK3uJRqNZDEjE_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/86efb3-ef1e-469c-aeb4-28978c3c7ec5/1/9OcXTG90-poisK3uJRqNZDEjE_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:45:42:1e:cd:dc:e0:a5:7d:60:de:6a:f1:04:3f:2e:80:dc:
14:d3:06:8f:e1:40:14:c0:df:03:57:22:82:9c:78:74:e4:07:
52:c7:ce:a4:44:15:5c:03:2e:bd:33:cd:10:ad:e2:b7:4f:66:
40:88:4d:dd:21:9d:b6:79:c0:2c:22:96:b5:7f:73:6a:3b:8b:
40:08:2b:90:9b:4d:61:f2:8a:e3:bd:24:01:6f:f7:bb:e0:37:
2c:5a:14:c3:66:77:0f:db:63:9b:ca:51:34:e6:87:37:cb:08:
06:16:a6:7f:fb:05:b6:39:07:e1:c8:71:c8:88:84:61:15:e9:
ee:02:32:9b:f8:56:cd:a6:4c:40:29:c2:c8:32:2f:54:ab:6b:
ec:97:86:21:ed:e6:0a:d5:d3:24:83:64:e4:59:63:44:24:3c:
93:52:fd:f8:ba:8c:ef:f5:fd:fb:fe:2f:16:5a:d4:8f:f6:88:
66:9e:ab:0e:e9:be:e5:6c:1f:7d:62:0e:69:bb:21:ba:20:fe:
8c:88:08:1e:85:05:0b:30:5a:ab:48:df:63:91:71:b3:ea:43:
4c:29:7c:68:ed:1b:89:5a:29:91:41:1f:92:53:2f:0f:15:42:
f0:80:5a:f1:2a:f7:9c:df:3f:4f:14:ed:13:82:d4:3c:e9:76:
65:bd:dc:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:19:33 2025 by rpki-client