Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
File: i7dzgYUSSQpQCthD6irnF-8hsUw.mft (raw, json)
Hash identifier: eTTBexcjsi68laKn5hYSrB2adXUVb8rUYJc3ZA/LazE=
Subject key identifier: 6A:F1:33:19:CE:D5:F2:DC:28:8D:8F:A1:34:27:D2:6D:31:0E:16:E5
Authority key identifier: 8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
Certificate issuer: /CN=8bb773818512490a500ad843ea2ae717ef21b14c
Certificate serial: 019A4EF41B76CF69595C39618348AE3AAE55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
Manifest number: 170C
Signing time: Tue 04 Nov 2025 13:00:11 +0000
Manifest this update: Tue 04 Nov 2025 13:00:11 +0000
Manifest next update: Wed 05 Nov 2025 13:00:11 +0000
Files and hashes: 1: L6BmwALeicC8VgFsadJhZLZOhdw.roa (hash: jlbIuI51ox4C1wny8/EXm0XGuTxyG7RmZ5JEvI5tNCo=)
2: i7dzgYUSSQpQCthD6irnF-8hsUw.crl (hash: /IqLitP//V8K/31vreImMMAlCIUnIBhcrlzomsmMUCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:1b:76:cf:69:59:5c:39:61:83:48:ae:3a:ae:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bb773818512490a500ad843ea2ae717ef21b14c
Validity
Not Before: Nov 4 13:00:11 2025 GMT
Not After : Nov 5 13:00:11 2025 GMT
Subject: CN=6af13319ced5f2dc288d8fa13427d26d310e16e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0d:e3:b4:6c:bc:a6:d5:ac:a1:ce:83:65:af:
0b:44:e9:52:e0:4a:cf:c1:29:03:6c:1a:28:d3:81:
d6:3f:b7:c9:f2:eb:e0:ac:aa:40:91:e8:91:41:7b:
1d:42:01:70:04:ef:b7:ce:71:4f:e6:1a:11:ee:fe:
f5:ff:ac:3f:ef:f2:fc:c0:11:96:32:fb:09:86:9d:
b3:7c:c5:8d:e5:82:a0:aa:0d:7d:66:9e:40:bb:ef:
c1:06:67:bc:9b:3e:f4:14:21:8b:2e:3c:e0:2d:e3:
e0:81:c0:0f:eb:13:82:eb:55:08:64:1f:64:f7:10:
dc:8a:d1:e7:db:65:f2:e8:31:1f:97:36:9d:cf:9d:
23:c7:cb:c9:09:cf:a4:c7:1d:e0:e1:ae:09:bc:fa:
61:57:4d:ed:c3:16:e4:bf:2d:9d:f9:b0:35:d9:0c:
c7:db:b1:63:f6:66:d3:de:83:d6:ab:7e:d7:67:46:
a4:ab:df:a5:55:46:18:c5:c9:91:ea:f2:68:7f:35:
c0:c1:47:89:f1:b6:2b:c2:00:ec:48:74:56:e5:29:
2e:5d:33:5f:9b:d4:a2:3c:31:aa:d8:e0:11:5d:ee:
9b:1e:bc:ad:34:cd:60:82:ae:22:1d:2a:1b:8e:11:
50:e6:06:7d:ed:cb:34:bf:94:e1:5c:c4:1e:b8:35:
9a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:F1:33:19:CE:D5:F2:DC:28:8D:8F:A1:34:27:D2:6D:31:0E:16:E5
X509v3 Authority Key Identifier:
keyid:8B:B7:73:81:85:12:49:0A:50:0A:D8:43:EA:2A:E7:17:EF:21:B1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i7dzgYUSSQpQCthD6irnF-8hsUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5ded6c-b469-420c-b15e-52b3f68dc0c2/1/i7dzgYUSSQpQCthD6irnF-8hsUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:b6:f3:72:19:58:c8:50:88:9d:8d:e1:0a:88:48:fd:5b:ad:
9a:1e:d3:cf:6b:3c:88:7b:f8:a3:3f:d8:02:62:0c:d2:a5:43:
85:04:fc:fb:39:21:7c:9c:a0:20:f2:cc:1a:e8:1c:04:f0:de:
96:a9:b3:b5:aa:90:88:1c:99:da:92:88:10:bd:43:56:0e:c2:
f7:6c:92:46:06:56:1d:bb:58:e8:02:f8:c5:bd:38:f2:e1:cc:
64:3f:5b:4d:2e:fb:34:18:83:c9:1a:0f:86:a4:da:e3:67:8a:
61:2f:bc:d4:04:5d:98:bd:d6:ec:b0:c6:96:35:bc:bf:f7:25:
95:b5:5d:21:6c:7b:db:9b:f4:05:57:4b:8a:c4:be:7e:5a:d0:
8d:0b:f3:b6:76:08:04:38:39:c7:9c:b0:ec:69:08:c5:6f:12:
6f:9e:81:68:f0:90:37:31:9f:7a:4a:99:1e:d3:fa:1b:b3:4b:
9b:d5:56:d8:89:7a:07:28:e7:d3:e7:68:f5:bf:c8:1f:63:d3:
6c:a7:8c:00:2b:2a:dd:d3:1d:09:2b:42:da:77:b1:da:14:73:
d7:7f:af:71:7b:9a:91:09:b0:03:8d:45:e5:cb:54:0b:11:9d:
aa:2b:e9:45:02:41:6e:8b:7e:60:1d:15:93:fa:5d:10:be:8d:
b2:ee:d2:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:58:38 2025 by rpki-client