Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
File: 1TVDIcElQ2AUXq8l9pk4uN80ezE.mft (raw, json)
Hash identifier: bNiKyEAHlxP5ferpQqn2qJqk2ahGFMAnjVzXVzQPhUw=
Subject key identifier: 96:7C:C8:FE:DF:26:36:BA:1C:A0:63:FC:A6:72:0F:04:C7:A5:6D:88
Authority key identifier: D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
Certificate issuer: /CN=d5354321c1254360145eaf25f69938b8df347b31
Certificate serial: 019A4DAB0AB2C42F687A61C0BEBA423D2E45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
Manifest number: 0C0C
Signing time: Tue 04 Nov 2025 07:00:46 +0000
Manifest this update: Tue 04 Nov 2025 07:00:46 +0000
Manifest next update: Wed 05 Nov 2025 07:00:46 +0000
Files and hashes: 1: 1TVDIcElQ2AUXq8l9pk4uN80ezE.crl (hash: sVTJNL+5EZhNQ3n1q6wyuioPp/dLpFqx79IsJsPVDpU=)
2: YLggX1zVSuzWscKfrJDHnrsh8ls.roa (hash: 7Jlfup6Pw3zmGnZu3LgfRRcWJ28VWesMcyWjGhyh+m8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:ab:0a:b2:c4:2f:68:7a:61:c0:be:ba:42:3d:2e:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5354321c1254360145eaf25f69938b8df347b31
Validity
Not Before: Nov 4 07:00:46 2025 GMT
Not After : Nov 5 07:00:46 2025 GMT
Subject: CN=967cc8fedf2636ba1ca063fca6720f04c7a56d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f1:5e:0d:3b:5b:f0:19:98:52:6f:da:62:76:
27:cf:3c:93:b6:2c:d5:64:1a:6e:31:40:0a:f1:87:
e7:60:32:f7:97:3b:97:99:f7:63:f0:02:88:a6:86:
dc:a5:1e:6e:db:e5:0a:8e:ed:e4:50:45:3d:ce:b1:
96:17:d7:8e:11:f5:a5:3f:db:30:58:cc:2c:05:45:
82:ef:ac:13:d2:d0:f5:51:ca:7c:99:cb:6f:23:18:
5f:76:91:2b:a3:51:3c:3d:6d:1a:3c:d2:af:96:1f:
7b:8f:ae:df:b7:54:39:16:66:c1:1d:2b:c9:48:2b:
2f:e5:00:50:af:da:e0:37:41:59:04:8a:bd:84:91:
73:fe:de:58:4c:35:6c:fa:0b:82:f9:01:c9:5f:04:
94:03:69:b2:45:54:92:0a:da:3c:a3:5c:62:d1:b2:
b9:99:8a:bc:51:14:2e:da:7c:58:87:d4:c1:b0:52:
de:ae:a8:08:2a:e1:80:7c:e1:52:4a:e0:43:16:70:
a9:fe:ae:e9:81:03:73:9c:b5:30:7d:8b:bf:99:7a:
ee:60:23:43:a4:0b:7b:0f:42:79:f4:ee:ce:7a:95:
88:a1:d1:80:07:60:e1:ee:9b:d4:99:4b:d1:fc:67:
70:49:ae:eb:81:37:46:d6:c6:31:d7:9f:b5:42:ab:
2b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:7C:C8:FE:DF:26:36:BA:1C:A0:63:FC:A6:72:0F:04:C7:A5:6D:88
X509v3 Authority Key Identifier:
keyid:D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:ad:6e:92:63:a8:72:ef:c4:c1:bb:df:56:6c:fc:25:85:45:
42:c4:ac:50:4f:06:49:5f:9d:b0:6d:c9:2d:25:59:96:d5:fb:
e1:bc:e8:55:f9:e2:ee:d7:0b:ab:d5:2d:e6:b2:e2:4f:9a:39:
bc:dc:a0:05:81:ad:6f:80:49:d9:e2:fb:d3:d7:9c:a6:c7:69:
9c:f6:21:5a:18:ae:b3:e0:d1:b8:ec:1d:74:e0:68:87:9a:4a:
05:14:56:18:f1:7b:99:53:cc:2f:05:4d:7e:a8:2e:e0:5f:3f:
02:b2:9f:60:52:33:f5:9d:5d:c5:54:ba:71:44:5a:83:28:45:
f4:ac:16:85:eb:7f:11:5f:c8:32:68:32:d9:d5:6f:48:25:e7:
25:d6:85:f8:37:71:26:ca:bf:79:a1:7a:00:8d:3e:d5:e4:ad:
20:07:5c:62:60:a0:dc:43:2d:1b:4d:38:da:00:64:a0:e8:52:
f8:76:96:bf:6d:ea:f9:ee:9d:97:cc:57:9a:66:7e:2e:55:c9:
48:4d:72:18:fc:32:13:d6:73:37:a3:d0:7f:0d:cd:9b:2b:dd:
cd:e9:9d:0c:a4:f1:e1:f4:ba:8d:2b:d4:67:68:1c:57:e3:78:
ef:98:d4:7e:c0:ad:c9:10:6a:4b:12:04:03:3a:97:9e:03:79:
ed:41:76:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:46:32 2025 by rpki-client