Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
File: 40Y8J4uE4t8ApHvC2AyNgP-puok.mft (raw, json)
Hash identifier: wEudzXgwgkpVN7SbszxiIoDionxa6ykpc4R/oTWU7I0=
Subject key identifier: A1:72:EB:B3:57:F1:D7:B0:A1:19:5E:E9:71:A0:39:14:71:F9:EB:0C
Authority key identifier: E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89
Certificate issuer: /CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89
Certificate serial: 019A4F62DD26BA2BEDB72168BE139D81FC6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
Manifest number: 170C
Signing time: Tue 04 Nov 2025 15:01:10 +0000
Manifest this update: Tue 04 Nov 2025 15:01:10 +0000
Manifest next update: Wed 05 Nov 2025 15:01:10 +0000
Files and hashes: 1: 40Y8J4uE4t8ApHvC2AyNgP-puok.crl (hash: 6OVogazfPUAyyseSJHzxtBfSZDYC+40AAGIy3YL5UZg=)
2: 4mphuMGYKre7KcVIZklqvnEwe9w.roa (hash: BDdrPj5npMilCe1H11h3z51bgzRRHnfwNgW8/PXQiwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:dd:26:ba:2b:ed:b7:21:68:be:13:9d:81:fc:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89
Validity
Not Before: Nov 4 15:01:10 2025 GMT
Not After : Nov 5 15:01:10 2025 GMT
Subject: CN=a172ebb357f1d7b0a1195ee971a0391471f9eb0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:df:e3:0b:03:81:c0:fa:46:79:cb:bf:ff:11:
69:5b:21:61:17:67:2d:6e:1e:05:da:30:a6:d5:6b:
61:9c:1a:96:48:ce:29:d3:05:0b:61:98:7f:c3:6e:
ae:33:72:ce:e4:1c:a9:54:71:bb:f3:9d:18:bf:7a:
c0:66:cb:6d:4e:67:d0:67:3b:43:d8:42:6e:27:01:
30:86:4c:1e:a5:1b:93:6b:cf:35:8d:e4:de:43:bb:
a6:82:4d:68:ed:17:18:1b:19:5f:d4:6d:2e:1f:f5:
0b:7a:ab:80:67:fa:20:9b:82:78:d4:93:40:15:2e:
33:14:c2:7c:b4:48:79:a7:30:23:56:d4:1c:79:85:
f5:bd:c6:74:ef:72:60:a0:40:40:29:83:17:61:39:
31:6b:ea:52:22:ed:ea:26:91:c0:6a:fe:56:f7:78:
62:ae:be:7d:44:a0:89:dc:5d:dc:15:8c:23:6e:f7:
36:51:01:ed:ec:b7:a9:b5:d9:63:c0:77:5b:a5:62:
d2:fb:75:e1:9d:1d:73:b1:b2:a2:14:e9:97:84:8d:
ee:06:e7:af:dd:e0:12:b5:57:cc:80:82:c4:d1:8b:
71:a6:ad:c5:4f:2a:71:b8:64:ce:99:c6:9c:5a:76:
a9:b9:aa:cf:fa:d3:fc:76:36:eb:d5:24:75:ac:c2:
58:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:72:EB:B3:57:F1:D7:B0:A1:19:5E:E9:71:A0:39:14:71:F9:EB:0C
X509v3 Authority Key Identifier:
keyid:E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:bc:d2:f4:df:90:47:44:9c:44:18:d1:4e:bd:4c:f9:7f:20:
f7:a3:e1:fd:75:33:85:15:90:d1:83:c2:7d:0d:9d:01:d2:28:
cc:84:3a:09:ff:6b:12:5c:ef:ab:7f:2d:81:67:22:f2:b2:85:
99:64:33:6a:3b:78:c3:16:90:8f:1a:ad:30:74:05:69:6c:47:
98:a4:c2:cc:c6:f7:16:37:6b:56:62:d8:32:a0:0c:19:08:c3:
61:a9:ea:aa:0f:45:c0:54:c5:3b:ee:82:b8:8f:c5:42:c8:d0:
ea:37:63:98:bb:12:df:45:60:10:cd:1f:30:e7:16:b1:26:88:
6d:b3:5a:2e:4f:9a:4a:73:d5:bb:11:b9:e4:52:c1:a0:a0:9a:
93:8f:a6:d9:bb:7f:9a:d7:f2:b6:f2:05:60:66:43:8f:cf:b1:
46:42:24:68:b8:2e:6d:c4:1d:b6:01:55:af:fb:06:a8:37:ff:
27:f6:58:f6:d6:bd:07:05:90:f3:52:51:2f:33:68:cb:a2:05:
d3:f6:83:70:b8:9d:b5:4c:3f:1c:bd:dc:1a:e0:70:72:c6:bc:
73:9b:aa:ae:99:4e:f9:75:65:55:ce:97:cf:75:1a:21:23:8b:
8d:c5:9d:c1:28:7b:4d:95:36:62:d5:3a:12:41:d9:5e:c2:03:
a5:60:2e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:18:01 2025 by rpki-client