Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
File: rx7uIsUBU2MRinHSapRj3JN0uig.mft (raw, json)
Hash identifier: cw30ky/9Njdy3PddyWCoAgZTrnYFoShFu5UwUxuUPMA=
Subject key identifier: 04:30:BC:8B:DF:F0:B9:B7:24:0F:85:97:94:4A:BB:7A:FC:9B:0A:45
Authority key identifier: AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
Certificate issuer: /CN=af1eee22c5015363118a71d26a9463dc9374ba28
Certificate serial: 019A53762EEA5ADC7D977068EF22A8A0D420
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
Manifest number: 0AD0
Signing time: Wed 05 Nov 2025 10:00:45 +0000
Manifest this update: Wed 05 Nov 2025 10:00:45 +0000
Manifest next update: Thu 06 Nov 2025 10:00:45 +0000
Files and hashes: 1: LUZuaBg79dIsS49OjD0lOYRx6WI.roa (hash: v0D4l90748oOxXUPlzJQ4Ifkz4PFxH9/jO6hptgWgns=)
2: rx7uIsUBU2MRinHSapRj3JN0uig.crl (hash: 2M+4WggDXEqcVFCxZInDIZxWyeGFViK5ZsRfyioKWNY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:76:2e:ea:5a:dc:7d:97:70:68:ef:22:a8:a0:d4:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af1eee22c5015363118a71d26a9463dc9374ba28
Validity
Not Before: Nov 5 10:00:45 2025 GMT
Not After : Nov 6 10:00:45 2025 GMT
Subject: CN=0430bc8bdff0b9b7240f8597944abb7afc9b0a45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e1:87:d6:e8:de:bb:81:8b:a0:f1:d3:e8:25:
d9:2a:c6:c8:1b:92:f5:dd:ae:51:e9:ee:fc:7d:97:
89:83:2a:a5:9f:1d:e8:04:c3:12:0f:ab:bf:c5:f6:
57:a5:18:8c:57:ba:1f:63:d2:35:75:a4:c7:39:45:
90:35:56:a1:14:62:bd:dc:5f:5e:73:a8:2d:66:9c:
28:cd:f8:d2:60:f8:30:4d:9d:cc:50:ff:de:6f:8c:
69:f6:1c:d1:14:6e:87:55:51:15:fd:75:00:80:c6:
f1:f4:3c:0a:a6:99:2f:78:36:e4:20:92:f4:86:b5:
46:50:28:6f:c3:e2:70:39:71:99:a6:61:06:e1:93:
0a:0f:31:4a:f7:64:9c:a4:6a:92:98:d4:63:a0:8f:
b2:e7:ee:9f:cc:d1:10:f1:46:03:43:45:b8:a0:44:
46:ef:48:be:31:ff:ff:39:7e:84:1b:4a:fb:6d:84:
d5:cd:9d:d5:2b:ee:65:19:86:cb:89:11:44:91:a2:
10:ef:78:ad:45:34:82:5c:dc:fd:d7:51:5f:6c:27:
6d:ba:94:69:5b:9e:e6:ab:5d:2b:d7:52:e5:22:c9:
10:b1:9f:41:cb:2e:f8:7c:97:13:12:6e:a4:9b:e5:
05:de:7f:57:da:48:07:48:83:e6:bf:bc:40:69:25:
79:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:30:BC:8B:DF:F0:B9:B7:24:0F:85:97:94:4A:BB:7A:FC:9B:0A:45
X509v3 Authority Key Identifier:
keyid:AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:b9:ab:18:2a:41:32:4b:d0:44:e2:ea:a6:6d:25:b8:f9:3b:
41:d5:26:ee:55:52:6b:72:91:95:bc:ab:a6:0c:01:4b:06:63:
1d:5b:01:ec:39:f4:fe:07:8f:62:90:36:54:e4:a5:eb:d7:7c:
ad:e5:3d:ac:9b:44:a0:f0:5c:5d:b5:cf:c9:0d:e4:30:31:29:
5c:fb:59:bb:15:97:77:76:f2:e4:41:2e:6c:23:ec:07:73:3a:
dd:00:89:fe:c4:5b:cb:03:9d:f8:14:ed:81:e4:0e:5c:12:9c:
2f:ca:c5:0b:da:b1:b2:27:6a:92:68:b1:8b:a4:78:56:7e:e8:
8c:86:dd:da:58:41:63:71:cb:fa:87:f0:f7:bd:f6:a2:0b:2b:
96:32:e8:0d:3d:46:0e:71:9a:d1:ce:69:11:9c:63:e7:a3:16:
a9:84:8e:5e:68:1c:f7:c6:54:33:90:59:21:98:86:8e:c4:14:
4f:66:39:c2:77:7f:0b:ee:42:fc:1b:6b:8e:04:53:b9:1c:5f:
5c:60:70:48:e1:f7:4b:99:d5:14:67:8e:09:42:ae:96:30:3c:
53:d6:b9:d3:e2:75:65:7d:d1:74:0a:5b:59:4d:af:8f:04:5d:
53:15:7e:fb:f1:b5:d3:82:54:fd:7b:3f:5b:72:1b:49:63:b1:
1b:b9:8f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 12:37:17 2025 by rpki-client