Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
File: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft (raw, json)
Hash identifier: Ls99hcAWT4vbHRvvyjMu5emyGbumi01W+BQBPPDPu3A=
Subject key identifier: 22:95:F0:75:8E:D5:DB:62:78:44:DE:3B:CF:B8:3E:B6:45:A4:EA:C3
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 019A4D744362B0DEC82F9354776E49985850
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
Manifest number: 172C
Signing time: Tue 04 Nov 2025 06:00:56 +0000
Manifest this update: Tue 04 Nov 2025 06:00:56 +0000
Manifest next update: Wed 05 Nov 2025 06:00:56 +0000
Files and hashes: 1: 22MFoiE6iwEXKG4ff-0g9Nk9e6k.roa (hash: 8ZAHeiN8JfpnEbf0xNsrPzSUL91MdaXwePhbLZYQBGY=)
2: 63R1CqkRJzCBTqXm_kqr_6UGOC4.roa (hash: QovmpL/thOh4yKhjTn4FNfnRr6OXEgupogya3Oy9KUE=)
3: AqlAoh2mHTGBQZiQ4Qu8bU198w8.roa (hash: QPQqaQ0W7/zxzqNuDuEf1YEVzGuiOziERZ9FXquvCOY=)
4: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl (hash: zFOPCO/4uuH9K2WBFGVfKAT1e5FmmJJRW1D5bxLJF+U=)
5: F7mREJo49yqaKx4zxXBCYESlNos.roa (hash: 56dqndcexLz8vvjaPdedW02jbU8L03kO2wjQRwiBDN0=)
6: JaRJ0VkgZY-pAOHUpfAksmRNPT4.roa (hash: uuAowSkk49o7aPUMDMEAR0rCVXNjJkNtV+Ttn8WfvGo=)
7: kGkGzImsb5Dv_nGgCWEXgWNc7do.roa (hash: x9SmJ5GmGF/t3I5NSMgnwkUR+oRC+nVpi/mDc40npw4=)
8: mpy8rjwhUPGfrwU4aNyK-9x9FBA.roa (hash: LExOCoVzbGwBygx3rcSIfApEZE8wTyOT0YOXpiy9v1U=)
9: qF-2BgBNvB9Rp0K_VFhuwpTNLrY.roa (hash: h4z+iViHaDAdXrYk5TZebHBt4+M5KGpzETHGgdp4Ztc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:43:62:b0:de:c8:2f:93:54:77:6e:49:98:58:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Nov 4 06:00:56 2025 GMT
Not After : Nov 5 06:00:56 2025 GMT
Subject: CN=2295f0758ed5db627844de3bcfb83eb645a4eac3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7c:71:45:42:32:29:72:f2:09:f5:ee:19:89:
5b:5f:fe:21:09:b1:4d:52:c6:07:ac:3a:aa:9e:b3:
2c:ad:4f:ce:ed:e1:2b:a3:c6:78:74:1d:56:c1:9a:
70:c0:5e:18:87:d0:52:6e:47:8d:8f:ab:a1:dd:58:
2f:fe:4b:49:d2:a3:1f:29:c1:c7:db:8c:57:05:fd:
59:e0:dc:f4:0b:c7:71:55:29:79:e7:1f:47:f0:67:
f7:b4:a0:a1:00:02:b7:bc:a0:7f:49:34:56:7f:96:
b5:34:a3:b0:1e:b3:57:b0:7c:ab:04:97:8a:c6:87:
1c:ea:f6:36:09:ad:81:b9:66:04:5a:a7:6b:f5:4b:
6b:03:8e:41:f1:bb:b5:fe:7d:1d:a5:cd:7f:58:21:
82:9d:4e:b6:19:95:2e:a4:dc:6a:f1:4c:45:d9:b3:
4a:8e:b7:f1:4d:ec:3f:64:0e:47:a9:de:7e:3d:ae:
8d:9b:14:f8:7c:83:33:da:6f:13:93:61:bc:3e:7f:
a7:9c:38:09:5f:6d:59:45:ab:ee:38:cd:e4:be:45:
6b:c4:a4:8b:5e:f6:9c:df:30:3f:42:4f:ec:9b:c2:
8f:5a:c3:7d:17:5c:66:1b:6d:3d:d0:11:9b:08:cc:
14:1f:ab:77:70:06:ed:38:ad:b8:ac:59:35:13:96:
0b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:95:F0:75:8E:D5:DB:62:78:44:DE:3B:CF:B8:3E:B6:45:A4:EA:C3
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:c4:5a:ac:d7:c6:cf:8f:2e:ab:14:0c:b5:5b:56:bc:92:eb:
39:05:7f:ab:ce:93:cb:ef:c7:81:68:7b:0f:71:50:5f:a7:3a:
ff:ef:52:98:97:7f:a0:23:da:21:04:fe:cc:fb:15:4c:29:52:
aa:81:cd:f4:66:1f:d6:6e:63:49:84:4d:02:35:02:44:d8:e9:
46:13:d1:56:8a:c7:e2:55:ce:51:fd:20:45:2b:64:0b:8b:56:
6c:ba:d7:b5:6a:f3:5d:86:e7:6e:f1:14:cd:0d:31:0e:56:9e:
4e:7a:c2:1e:c3:da:45:58:d9:71:0b:89:e5:03:76:42:f5:13:
bc:b3:92:a5:e0:f4:1c:ed:d4:46:2b:6c:4d:c9:16:e6:fc:b7:
58:3b:53:65:85:96:a1:a2:bd:dc:3b:68:ab:ab:30:19:7a:0a:
9c:66:b6:36:a8:79:0e:b7:fb:f8:04:62:35:97:80:1c:41:ea:
f1:e9:b3:73:c7:ce:a3:25:23:70:d3:df:4e:85:17:76:90:2f:
74:df:ae:1d:3f:cf:84:56:23:a2:42:37:76:16:09:23:9b:b9:
b7:e0:47:f4:86:16:2c:f3:9e:cd:f8:32:85:42:96:5c:f6:8d:
52:58:eb:94:47:2b:d2:7d:61:ef:2d:2e:18:7f:99:c4:27:1f:
19:97:bb:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:46:29 2025 by rpki-client