Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
File: rfDfdxFHQeE6F9chPmlWv5YntVg.mft (raw, json)
Hash identifier: P/khX+o1F+OZpUDrKiySGOaP2l5xESjRw6IsBnJdRfo=
Subject key identifier: 83:36:30:EE:39:74:B2:4F:7E:03:37:94:DC:9C:2F:0D:46:10:BA:01
Authority key identifier: AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
Certificate issuer: /CN=adf0df77114741e13a17d7213e6956bf9627b558
Certificate serial: 019A51BEA5B0C3809220019C207CE054479F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
Manifest number: 15C2
Signing time: Wed 05 Nov 2025 02:00:39 +0000
Manifest this update: Wed 05 Nov 2025 02:00:39 +0000
Manifest next update: Thu 06 Nov 2025 02:00:39 +0000
Files and hashes: 1: 53yfdczv1so3h7m6p_kJKapwYb0.roa (hash: 8fm3UETmOMmwp3oE4jpSkcDNkIYvAEXotF2eKRsyjLw=)
2: rfDfdxFHQeE6F9chPmlWv5YntVg.crl (hash: JZ4bPEs1POu5n0hIio8uCAyhuPljwKMuX92wgRe4Z4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:be:a5:b0:c3:80:92:20:01:9c:20:7c:e0:54:47:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf0df77114741e13a17d7213e6956bf9627b558
Validity
Not Before: Nov 5 02:00:39 2025 GMT
Not After : Nov 6 02:00:39 2025 GMT
Subject: CN=833630ee3974b24f7e033794dc9c2f0d4610ba01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:38:40:e9:7d:cd:43:69:31:e8:4f:2f:7c:2a:
5c:31:77:af:8b:34:30:3c:7b:85:6c:22:82:80:6d:
9a:4c:35:24:a5:a6:ac:6f:59:d4:e0:9c:12:f9:57:
66:6b:1a:c7:9c:04:07:e6:28:9a:86:d3:11:80:c7:
9a:a6:17:7c:a7:9d:9e:cc:b6:bb:94:36:b4:ec:24:
98:8b:4f:b5:f3:a0:b2:d0:e8:5d:5d:10:49:06:0e:
45:3a:54:29:1a:51:98:b5:e2:f6:57:c2:00:aa:8a:
5a:ea:72:ff:ff:31:50:30:b5:b1:74:ea:4f:5a:1d:
07:f4:f9:f1:66:9f:1a:c5:c7:2a:12:bb:d7:81:ca:
4e:ce:f5:dd:61:9b:0d:2a:38:e5:f7:4e:1a:eb:99:
ab:3c:75:89:20:b6:e5:86:1d:c4:f4:17:38:e3:9d:
f8:15:65:4a:37:e4:f8:ee:55:b2:da:38:78:59:80:
fa:41:74:79:97:a5:02:fd:1e:1c:71:b5:59:d7:db:
3f:3b:bc:e4:fa:9b:8b:e4:56:46:9e:3f:e2:09:5e:
af:f4:4a:1d:66:53:1b:ef:93:29:9e:5e:00:c3:cf:
f2:16:a5:4b:9e:6f:6c:89:03:a5:4e:ea:f7:7c:83:
7e:f2:40:8e:a7:bf:30:de:69:8e:08:0b:22:60:93:
48:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:36:30:EE:39:74:B2:4F:7E:03:37:94:DC:9C:2F:0D:46:10:BA:01
X509v3 Authority Key Identifier:
keyid:AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:e6:36:e6:da:85:44:c9:7c:e7:48:b0:f5:f5:e3:5e:be:6a:
6c:d0:78:26:a4:c3:cf:f5:13:b6:b0:6e:8e:51:1a:fb:36:14:
19:e5:07:38:91:4c:b2:c6:96:f0:d1:13:9a:c2:9b:4f:ae:eb:
8f:e2:ae:4b:9b:73:f2:fd:e2:28:ac:fe:49:84:cf:39:b0:2b:
7d:83:3b:22:74:b4:64:bb:c5:9d:94:46:bf:48:97:76:db:a0:
89:99:65:ba:26:14:ba:aa:03:ab:b9:ae:82:f1:2b:8e:fe:46:
5b:e9:86:0a:a8:d1:c5:f7:37:5d:c8:a9:31:2c:76:63:8f:59:
52:06:fb:2d:03:26:80:5b:b9:cc:04:bf:89:5b:95:78:9c:39:
03:ad:76:04:e0:e6:b4:2c:97:4f:4b:80:a2:a9:31:90:db:5a:
a1:48:6d:5c:7e:01:1e:67:05:d5:c1:d9:49:ff:04:df:53:c8:
e5:e6:12:10:02:a8:1d:ed:63:09:95:a2:4d:86:6b:62:89:82:
b0:8c:74:34:69:d8:78:76:ae:0a:6e:b6:41:c0:6e:cf:14:48:
26:86:94:fd:ef:75:ab:bf:d8:84:f6:05:c7:ee:f4:a7:ab:c9:
d3:66:43:2e:66:6c:db:fc:86:9a:b9:a0:34:12:fb:61:f0:11:
c3:19:f3:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:26:01 2025 by rpki-client