Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
File: rWUjcvDl0WnCAPfR0IDoVw_-23E.mft (raw, json)
Hash identifier: 4o6i+kymZw1ah+dCergRdzYrGR0P/t6gtFGe1UA2VMQ=
Subject key identifier: 6E:73:5A:FF:78:6C:4D:42:20:CC:DA:F7:57:4D:CE:33:B2:DE:94:2B
Authority key identifier: AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
Certificate issuer: /CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Certificate serial: 019A4EF5E6FFD7CDBCAA21091BD67B540C26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
Manifest number: 0478
Signing time: Tue 04 Nov 2025 13:02:09 +0000
Manifest this update: Tue 04 Nov 2025 13:02:09 +0000
Manifest next update: Wed 05 Nov 2025 13:02:09 +0000
Files and hashes: 1: nQ9AG6h0t4BBBHaY1oIQ2Z7HXiE.roa (hash: bmhEBNk6LesEwcu8xwGODwFl5oPTmJlYZFKxsnvzgRU=)
2: rWUjcvDl0WnCAPfR0IDoVw_-23E.crl (hash: gqkRrRwwdq4cj/o+0kb4WCmF4X9kxWKy3vVx6ETnU18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:e6:ff:d7:cd:bc:aa:21:09:1b:d6:7b:54:0c:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Validity
Not Before: Nov 4 13:02:09 2025 GMT
Not After : Nov 5 13:02:09 2025 GMT
Subject: CN=6e735aff786c4d4220ccdaf7574dce33b2de942b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:25:e6:d7:e1:ae:56:9c:1f:26:4d:85:f7:91:
26:43:33:34:8e:69:74:fc:6c:4c:cb:04:80:87:46:
1e:b0:79:93:3d:7a:ad:c9:05:4d:a9:e1:85:7f:4c:
62:69:d1:11:e4:2c:fb:5e:ce:d1:68:cd:a0:2e:bf:
8b:19:49:f8:d3:f3:02:1f:7b:54:13:18:2d:c5:4f:
9f:7c:76:14:0c:98:16:ba:91:fd:b8:d2:3b:0a:db:
96:96:6a:80:9a:21:23:a1:b7:2e:53:14:e1:4d:f6:
d1:25:d7:68:2b:f9:6f:36:13:a2:e0:96:cc:57:54:
53:7e:3e:83:f1:34:4e:dc:b5:2b:3d:d0:5c:68:cb:
d6:8e:61:ce:a8:73:48:f4:f7:6b:30:d7:13:80:fa:
02:bc:5a:2c:f3:fa:95:15:1c:7c:58:5e:d7:ac:09:
2e:68:ce:ce:08:e6:39:b3:1a:bb:73:2d:85:94:79:
9e:6e:f7:27:5d:18:d6:cd:f8:57:fc:d9:66:19:45:
d8:9e:56:e2:c8:ff:5f:a4:cf:07:e0:35:89:ff:9b:
e0:9c:24:5d:d9:6c:cb:f6:f7:4e:be:30:66:ae:25:
56:37:d6:61:6b:c5:09:3a:a1:96:9e:4e:4a:a8:77:
d4:fc:1d:34:71:10:25:ce:03:b7:18:bc:0f:8e:4b:
5d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:73:5A:FF:78:6C:4D:42:20:CC:DA:F7:57:4D:CE:33:B2:DE:94:2B
X509v3 Authority Key Identifier:
keyid:AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:aa:4e:a3:a7:a4:11:61:b0:da:8d:ff:10:b7:03:4f:15:e7:
53:9a:c6:18:d9:c6:47:22:8c:a8:34:41:77:e2:9b:d1:74:ad:
4a:b7:75:3d:d4:8c:75:45:dd:36:03:44:b9:47:9f:4e:5d:33:
a5:82:1b:81:77:f1:d1:26:dd:e2:2a:6c:9d:26:18:25:ff:ba:
13:db:1d:1a:7b:0d:cb:42:7e:5c:88:2a:2a:04:37:0f:b3:43:
b5:af:05:13:f8:c1:62:2f:39:f8:3e:ca:ac:d4:ec:45:5f:16:
88:aa:1a:89:ee:2a:31:37:71:43:41:6b:5d:96:aa:06:ec:fc:
a6:3f:e3:af:9f:aa:1b:df:86:74:e3:ff:9b:2f:54:5f:45:dc:
5e:84:e6:7e:35:73:1a:f8:44:42:ef:f6:0e:cf:54:bf:f7:bc:
0c:69:97:80:27:21:76:50:94:8e:1a:8a:ea:d9:db:7f:9f:5d:
c8:4e:b5:cd:91:4c:d6:b3:dc:ea:a7:d9:47:45:69:d8:ee:07:
09:dd:18:1f:1a:b5:50:d3:b8:b6:c1:f1:33:55:ec:16:9a:40:
2e:b1:79:17:1a:7f:64:42:4e:06:3b:6b:9e:fb:ea:26:f0:29:
df:54:8e:15:c2:7d:26:a1:ce:57:02:fc:21:54:3e:bd:72:47:
9e:a3:22:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:08:03 2025 by rpki-client