Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
File: rXz7zh1tOmok8lZSBl0xV1go7bU.mft (raw, json)
Hash identifier: t3Dcqk9QDg5H52lpzLt6O+YbiU17F2rNi9Q/vIKMy0M=
Subject key identifier: 45:EC:C1:A1:76:7E:B0:1D:E2:58:E8:FA:2E:A7:E7:44:F3:82:02:A1
Authority key identifier: AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
Certificate issuer: /CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Certificate serial: 019A4EF42DCEAFA661774940213A102294D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
Manifest number: 0E1E
Signing time: Tue 04 Nov 2025 13:00:16 +0000
Manifest this update: Tue 04 Nov 2025 13:00:16 +0000
Manifest next update: Wed 05 Nov 2025 13:00:16 +0000
Files and hashes: 1: Im3NuoFQdX7egdBojqG76hMiXq0.roa (hash: MBZCzXbY6/6xAtTJ9sYOEhNyw2Jnz8TgfEJHylhcfdM=)
2: rXz7zh1tOmok8lZSBl0xV1go7bU.crl (hash: NeVtsQUexOXOTBSiViKWEjLRz3xodjPkYrNxLsGRPQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:2d:ce:af:a6:61:77:49:40:21:3a:10:22:94:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Validity
Not Before: Nov 4 13:00:16 2025 GMT
Not After : Nov 5 13:00:16 2025 GMT
Subject: CN=45ecc1a1767eb01de258e8fa2ea7e744f38202a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3d:8d:9a:bb:a5:0f:9a:5a:b6:02:d8:1f:75:
ae:77:df:e4:9c:a1:9c:cd:93:46:3e:65:1d:10:2c:
8b:78:16:9e:7c:89:9c:38:c2:cb:93:a9:8b:b3:c8:
1a:82:d9:83:89:39:51:e3:c4:0e:cb:a0:36:9e:e6:
48:13:c5:18:32:55:94:d6:cb:d8:96:39:d7:59:cb:
7a:84:5b:a5:e7:45:a1:ee:c8:a8:38:08:45:95:2c:
e0:8d:a8:9e:d5:17:dc:95:c4:43:3a:66:06:91:3c:
36:31:49:2c:ab:3e:91:cb:0b:3d:6b:48:b0:e4:e5:
32:e0:c1:c4:37:6a:e3:6f:02:d9:d9:70:4d:49:3d:
05:68:e8:e8:13:95:f0:f8:81:24:92:7a:ff:56:27:
33:77:2a:56:a8:7c:9b:3b:e5:f0:09:b1:ce:58:dd:
82:8a:d2:6e:b5:b4:e9:bf:56:2c:8f:97:3b:4d:0b:
9a:35:9d:a3:6a:ba:77:5a:46:24:65:58:3f:ee:bb:
e4:91:2e:e1:1c:cb:ee:d3:9d:2c:86:36:75:3f:d4:
9f:46:43:af:6a:d4:95:2e:fc:1e:11:b0:b3:87:bd:
46:da:fe:ee:8d:41:c7:ac:b3:b2:44:da:36:bc:43:
9b:42:32:8f:de:94:5d:07:dc:13:5d:25:56:b0:78:
62:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:EC:C1:A1:76:7E:B0:1D:E2:58:E8:FA:2E:A7:E7:44:F3:82:02:A1
X509v3 Authority Key Identifier:
keyid:AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:f6:c5:ce:d1:b6:5e:b6:96:59:fa:6c:ae:b4:8c:80:9a:4d:
16:08:61:78:4d:5c:c5:e6:e3:41:53:d2:ea:05:dc:59:ab:cf:
a5:e5:c0:fa:5c:e9:50:9b:8c:27:10:db:a0:8d:0b:7c:51:e4:
26:73:07:0b:1e:e3:53:1f:5e:12:53:85:6f:49:4f:d3:1e:2b:
a8:b6:ab:fb:87:5c:d2:ae:16:83:b3:bb:d4:1a:a9:fb:91:97:
28:cb:c1:d7:5b:c4:e9:98:0b:1a:a3:b3:fc:ad:43:44:35:dc:
53:06:3c:56:e0:56:53:6b:17:8f:fd:9b:f8:3d:79:55:08:13:
c3:4a:91:2e:ba:17:5a:19:5d:66:14:b3:e7:65:bc:21:61:62:
88:e6:0c:4b:ec:9e:f6:30:28:4f:48:4f:28:cc:62:ec:25:8c:
c3:2a:ed:ac:7a:87:ed:db:9f:0f:84:bd:16:50:3c:26:3f:5d:
15:f8:1b:14:b2:c4:0a:d4:0d:2e:dc:a2:57:21:40:f5:7a:c1:
79:d4:e9:c2:24:2e:59:22:fe:8d:ad:35:34:10:a6:bc:a4:5b:
d3:6e:0e:5d:57:61:6b:cf:4f:1d:00:a8:b5:ef:29:7b:0b:a2:
22:de:fe:1e:34:39:f4:d6:c6:05:07:cf:2f:fd:de:c2:ad:2a:
ef:6f:9f:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:40:37 2025 by rpki-client