Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
File: up78qG3qcNPukBgWeMjrMOaRbR0.mft (raw, json)
Hash identifier: F8ilBIeOJ+S5aJJz03wbDEcmbsm0jqYFxUFn0IDIUe4=
Subject key identifier: 17:75:8B:31:82:08:3B:E5:ED:65:F6:58:36:48:9E:0B:BC:46:DA:EF
Authority key identifier: BA:9E:FC:A8:6D:EA:70:D3:EE:90:18:16:78:C8:EB:30:E6:91:6D:1D
Certificate issuer: /CN=ba9efca86dea70d3ee90181678c8eb30e6916d1d
Certificate serial: 019A4F997C6C890B2090539DE47E5FE01E7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up78qG3qcNPukBgWeMjrMOaRbR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
Manifest number: 1683
Signing time: Tue 04 Nov 2025 16:00:50 +0000
Manifest this update: Tue 04 Nov 2025 16:00:50 +0000
Manifest next update: Wed 05 Nov 2025 16:00:50 +0000
Files and hashes: 1: TcxQ_LIgSlnQjiSbvcx7DOq2_Zc.roa (hash: v9utTlGogD+SmAb7nxAo7ersLZspEGf0TY5tMFbjRB8=)
2: up78qG3qcNPukBgWeMjrMOaRbR0.crl (hash: rkpULppq7tIBw7XeOzaWFelu4oMKgWXg0/xxwPu+HCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/up78qG3qcNPukBgWeMjrMOaRbR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:7c:6c:89:0b:20:90:53:9d:e4:7e:5f:e0:1e:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9efca86dea70d3ee90181678c8eb30e6916d1d
Validity
Not Before: Nov 4 16:00:50 2025 GMT
Not After : Nov 5 16:00:50 2025 GMT
Subject: CN=17758b3182083be5ed65f65836489e0bbc46daef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f3:e3:fb:95:ce:58:97:b2:bb:68:4b:b3:b1:
fd:6f:8e:a5:b4:f6:f6:a1:9d:0e:0e:77:59:c6:bc:
a8:9c:63:8a:a0:d4:0d:05:49:6e:05:f1:d0:a4:d0:
85:80:09:d2:31:02:41:f2:be:d0:c5:fb:87:5b:f2:
26:86:f4:33:9e:61:db:99:f8:72:82:9b:3b:29:3d:
b5:fe:fc:f8:31:fc:89:0e:aa:de:ed:bc:be:15:90:
9c:d4:bd:14:7d:d1:2c:a7:20:1b:b7:d7:80:96:4f:
26:86:d7:4f:d7:e9:eb:4d:41:9a:56:ee:5f:55:7a:
30:0f:1f:bb:7a:05:d9:03:42:b6:dc:43:fb:75:f5:
dd:73:ad:5a:21:07:45:bc:22:c4:e8:2b:e6:6c:6c:
97:d7:56:f5:fb:0d:f3:8b:25:64:27:32:c1:c1:94:
43:7b:a1:d0:3a:df:09:53:0c:4e:91:1d:43:f3:2f:
d4:ac:76:09:9d:7a:96:47:e6:0a:32:77:f3:f6:d0:
9a:01:24:88:2a:fa:16:77:de:61:b9:76:0a:d3:db:
6e:8c:c8:d7:3c:0b:59:58:16:7b:34:6a:f2:d2:2b:
1a:9b:ec:16:f9:22:3f:d2:4e:33:cd:07:f3:01:2c:
88:9d:49:dc:54:ce:5d:d6:f3:cf:e9:5a:da:64:4c:
8d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:75:8B:31:82:08:3B:E5:ED:65:F6:58:36:48:9E:0B:BC:46:DA:EF
X509v3 Authority Key Identifier:
keyid:BA:9E:FC:A8:6D:EA:70:D3:EE:90:18:16:78:C8:EB:30:E6:91:6D:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up78qG3qcNPukBgWeMjrMOaRbR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:dc:02:e4:62:65:f3:61:e6:85:72:37:71:15:19:d2:43:e7:
69:12:b2:b0:d0:59:90:5b:5d:d3:35:46:16:8d:33:20:58:d1:
d0:92:f5:a2:35:51:1b:69:b5:ea:49:f5:7f:59:1c:dc:ab:7d:
5b:2b:97:e9:15:a7:97:b3:7c:32:b4:b9:55:5c:bb:31:aa:51:
e5:24:a4:2d:f9:68:de:79:fc:f9:f0:01:24:51:1c:49:f9:d8:
01:1d:f0:86:3d:e2:87:2d:d7:28:6d:81:18:bb:9f:03:50:26:
32:41:ce:e3:51:90:3e:98:ba:0a:1f:06:f4:ae:08:68:0d:16:
fc:11:7d:5c:66:50:a8:2f:c0:7f:ae:3c:09:8e:cb:a9:94:d9:
53:fd:90:e8:33:80:f0:07:ad:a9:8c:90:8f:26:fb:01:f2:e2:
18:f6:63:57:09:28:0d:ca:f1:5b:e0:11:9a:35:2c:10:35:c6:
c9:b1:06:75:e8:02:c0:08:a9:30:d9:c5:da:c6:e2:ba:1b:e0:
3b:41:da:b6:43:a3:e5:8e:9c:bb:d6:17:a4:e9:99:e3:1c:7c:
27:b8:37:70:79:c8:d1:17:d7:63:af:db:2d:06:85:27:8d:34:
85:3f:bb:63:eb:77:a1:e1:62:95:7c:28:1b:96:60:b9:bf:72:
58:fc:cc:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:18:36 2025 by rpki-client