Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
File: r8GT7hHlRxYWn5TI-THq4fyFSSE.mft (raw, json)
Hash identifier: FEP0bJ/lM5KDutqmaaIKAZDe2dknA0rEutW6Fw0TxH0=
Subject key identifier: 35:FC:4F:EA:16:89:3D:4D:69:D1:62:78:D3:F9:94:97:5C:50:1D:16
Authority key identifier: AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
Certificate issuer: /CN=afc193ee11e54716169f94c8f931eae1fc854921
Certificate serial: 019A4EF57F2AFD333D3E3A4B93EEF7A81655
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
Manifest number: 0C60
Signing time: Tue 04 Nov 2025 13:01:42 +0000
Manifest this update: Tue 04 Nov 2025 13:01:42 +0000
Manifest next update: Wed 05 Nov 2025 13:01:42 +0000
Files and hashes: 1: AaiQ-SNQmt6l5xOeIk4PwVHWfh4.roa (hash: 6CQTrWnDAV45WpOAHO1NfVL9iDI/ELlZY8vizp+bA9s=)
2: r8GT7hHlRxYWn5TI-THq4fyFSSE.crl (hash: i0ZZARLgIP7UhUVfQXZpI6oKrZjS/cREuWqel9BKtJM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:7f:2a:fd:33:3d:3e:3a:4b:93:ee:f7:a8:16:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afc193ee11e54716169f94c8f931eae1fc854921
Validity
Not Before: Nov 4 13:01:42 2025 GMT
Not After : Nov 5 13:01:42 2025 GMT
Subject: CN=35fc4fea16893d4d69d16278d3f994975c501d16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:75:8e:7d:2a:29:91:21:56:7a:fd:8d:bc:62:
af:40:bb:60:17:e2:2d:0a:94:2b:18:34:5d:90:f5:
21:bb:03:c4:88:c7:db:26:65:f1:10:a7:26:d5:28:
38:8a:d5:05:da:22:4c:e4:14:bd:a4:7a:da:bc:8c:
b3:e3:cb:9b:b8:a2:02:a1:a4:c1:12:00:9a:99:24:
b9:19:d5:14:56:9d:38:4f:10:41:fc:e0:46:04:a0:
b0:1c:ae:be:f9:90:ff:46:cb:fc:cc:c5:61:94:70:
56:99:8d:f9:d0:b7:6c:86:0a:20:17:60:fa:b7:19:
e0:f9:e0:0d:bc:3b:2f:40:44:c5:4b:2b:58:a4:6c:
96:32:05:02:90:c2:37:67:61:ec:5d:38:1f:23:fa:
90:29:ff:95:d4:21:cf:bc:3a:51:7f:47:0f:0b:96:
fc:c2:97:92:14:bb:ba:c6:43:39:4b:85:2e:ce:75:
06:92:cd:13:3a:49:c5:25:84:78:c2:03:6b:27:ac:
2b:8d:8e:a1:9f:7f:f2:b3:ef:ad:c2:41:66:e1:d1:
cc:34:de:48:55:8a:4b:07:f5:7e:d9:eb:b6:68:30:
1d:de:b1:fe:ca:9c:1c:9e:61:dd:2c:f9:69:14:67:
1e:44:04:d2:03:d8:c9:74:02:a8:dc:eb:e8:87:33:
04:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:FC:4F:EA:16:89:3D:4D:69:D1:62:78:D3:F9:94:97:5C:50:1D:16
X509v3 Authority Key Identifier:
keyid:AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:03:b0:f1:57:b7:f0:82:be:e3:4d:b1:f2:57:43:20:5c:07:
cf:e3:01:ba:cc:fd:1c:6b:d9:81:29:02:7d:62:1b:96:15:a1:
1a:0c:93:93:af:14:e9:25:bd:49:68:2a:ea:56:f1:94:80:63:
d4:80:15:24:e0:26:a7:ff:64:ac:0b:dd:4a:76:d9:f9:9e:9a:
50:6a:f8:c0:98:ed:0f:21:a1:27:14:f1:d0:b7:aa:1c:5d:a8:
39:2a:f2:50:c9:91:a4:33:85:2b:d4:66:e7:90:3d:94:eb:e0:
ae:95:d1:21:b4:da:e6:2c:3c:20:b3:3f:ec:be:61:ae:c5:dd:
55:68:b7:bd:8d:7d:84:2e:92:d0:19:3a:2b:66:3e:87:56:c8:
92:74:6d:2f:59:50:e6:16:c0:63:5b:3b:55:74:68:13:a9:29:
6c:92:2a:06:7d:3b:ef:47:45:8e:1d:17:f6:c1:33:d2:9d:be:
f2:79:e6:a0:34:7a:8a:ef:55:78:8d:ea:6a:15:8c:d9:47:3d:
9e:fb:cb:f5:71:e8:7f:e9:66:ae:6a:c5:bb:da:67:2a:c9:f7:
7f:82:3b:1e:e6:5f:ff:e3:af:10:3d:94:90:09:b6:be:b9:04:
53:f2:de:08:fb:97:2f:8e:08:dd:47:f4:39:96:39:2a:be:6d:
5a:14:da:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:01:15 2025 by rpki-client