Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
File: pI2lIJvWz5DG321-bWOmOVW61LU.mft (raw, json)
Hash identifier: UWu527j98IQMOQSJOylwAYskiTEFS3P9Vkfrt/z5DTw=
Subject key identifier: FD:72:AE:90:B7:F6:B3:0F:65:E3:1A:0A:F6:0D:CF:5F:2D:39:C1:FF
Authority key identifier: A4:8D:A5:20:9B:D6:CF:90:C6:DF:6D:7E:6D:63:A6:39:55:BA:D4:B5
Certificate issuer: /CN=a48da5209bd6cf90c6df6d7e6d63a63955bad4b5
Certificate serial: 019A4F2B176A502096EA0DF9396FCF6FD8BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pI2lIJvWz5DG321-bWOmOVW61LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
Manifest number: 0796
Signing time: Tue 04 Nov 2025 14:00:15 +0000
Manifest this update: Tue 04 Nov 2025 14:00:15 +0000
Manifest next update: Wed 05 Nov 2025 14:00:15 +0000
Files and hashes: 1: gZ0yVDfN4vy-eK7OCEPSZaBaBxs.roa (hash: LNpaqhIXeGRj9rxSqG8l9W+yrY/Iu+GRMv3w/Y4Inpo=)
2: pI2lIJvWz5DG321-bWOmOVW61LU.crl (hash: iD7y+o/+VFfYRz1fxXG/iry3Bu0omHOJL3mYo3iB848=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
rsync://rpki.ripe.net/repository/DEFAULT/pI2lIJvWz5DG321-bWOmOVW61LU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:2b:17:6a:50:20:96:ea:0d:f9:39:6f:cf:6f:d8:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a48da5209bd6cf90c6df6d7e6d63a63955bad4b5
Validity
Not Before: Nov 4 14:00:15 2025 GMT
Not After : Nov 5 14:00:15 2025 GMT
Subject: CN=fd72ae90b7f6b30f65e31a0af60dcf5f2d39c1ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bb:e5:ee:e2:84:fd:cf:dc:0e:89:10:ed:ef:
1f:d6:b4:46:8c:6d:1e:a8:8e:7d:7f:16:14:c2:3c:
09:7a:64:e9:5f:71:ee:68:a4:84:ad:f8:ba:34:48:
b3:c0:d2:ed:30:75:3d:1a:00:19:7f:8f:a1:50:ec:
15:62:75:c5:ee:9f:2f:c2:7a:25:f0:17:37:4b:64:
29:e9:e5:7c:01:b1:8d:d8:42:f8:ef:5b:19:af:ed:
ff:d6:59:94:55:6f:6a:71:79:5c:d8:0d:b4:41:61:
45:ad:3f:c9:2f:5f:6e:21:71:f0:e5:de:1d:62:b4:
c9:9f:54:6a:c9:19:07:6b:08:1b:83:fd:ba:cd:62:
8a:f8:25:09:3c:2f:37:10:87:80:3d:ba:ba:78:a3:
2b:a3:51:36:0d:ae:62:99:e8:89:37:bf:7d:9c:7c:
45:e9:60:87:43:ae:ae:ab:06:ef:bd:fa:1d:78:02:
4a:d9:eb:c4:f3:8e:89:b1:d2:38:df:45:2b:9b:3b:
48:de:64:d2:16:38:98:02:d5:7a:63:cf:95:a8:78:
82:2a:1f:2d:f6:9c:3c:47:0b:2f:3b:4f:87:1e:96:
57:12:70:72:b1:29:1e:ac:b8:f8:79:83:b6:91:15:
ea:ca:80:d7:d1:2c:94:bb:85:ed:50:0c:0d:9a:5d:
d7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:72:AE:90:B7:F6:B3:0F:65:E3:1A:0A:F6:0D:CF:5F:2D:39:C1:FF
X509v3 Authority Key Identifier:
keyid:A4:8D:A5:20:9B:D6:CF:90:C6:DF:6D:7E:6D:63:A6:39:55:BA:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pI2lIJvWz5DG321-bWOmOVW61LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:22:9e:1e:4d:5b:47:c7:66:3a:e8:10:7e:b0:e7:f8:70:46:
60:c4:cc:1d:85:17:84:bc:8f:fc:d5:85:38:0e:75:51:95:24:
df:22:24:6e:e5:3a:2d:36:db:04:ad:1a:1a:77:15:32:bb:73:
e1:ba:f3:ef:74:d2:85:02:47:87:23:6f:39:3d:f4:03:c7:c8:
34:ac:e1:d4:8b:4e:6b:2f:7a:fe:92:9c:71:46:66:c0:20:28:
7a:2a:8e:09:60:d6:b8:83:ca:4f:1b:5b:c3:4f:e4:4b:bc:74:
bc:a7:d3:d8:17:79:27:0d:c9:76:bf:cd:b4:44:c0:3d:25:5a:
c2:5e:c4:29:09:81:87:59:4f:e4:46:71:09:ae:1f:4d:7a:ca:
54:1d:09:0c:9b:db:39:7f:b7:70:14:37:0a:f8:73:55:68:07:
7d:c6:1f:58:c0:7f:45:bf:6f:96:54:fc:a5:b1:f8:d0:5d:90:
47:88:c0:22:fb:03:b0:69:0f:68:d3:a5:37:12:5b:62:0d:ec:
14:d8:a5:a2:ce:7a:f6:06:da:05:a3:ba:cf:c4:41:2f:12:44:
f9:e3:ed:74:6e:0a:63:b9:b5:b5:d8:10:fa:ea:66:25:0c:83:
76:ce:16:95:30:ab:f2:7d:ce:52:52:ef:88:25:ed:92:8b:88:
22:77:f8:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:16:59 2025 by rpki-client