Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
File: CChUc8l4ylHOVGmqSu3KFkRb1lI.mft (raw, json)
Hash identifier: v0Y0NATkCQsaa/tsh7SX3z/nmjrvfaOvgxnj3DE9rNU=
Subject key identifier: D1:C7:F0:A7:03:7B:9C:25:90:7B:60:B5:FD:CF:32:9C:81:D8:6E:DA
Authority key identifier: 08:28:54:73:C9:78:CA:51:CE:54:69:AA:4A:ED:CA:16:44:5B:D6:52
Certificate issuer: /CN=08285473c978ca51ce5469aa4aedca16445bd652
Certificate serial: 019A70DC1F87B55C3BEF17774035A99E4A9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
Manifest number: 1720
Signing time: Tue 11 Nov 2025 03:01:05 +0000
Manifest this update: Tue 11 Nov 2025 03:01:05 +0000
Manifest next update: Wed 12 Nov 2025 03:01:05 +0000
Files and hashes: 1: CChUc8l4ylHOVGmqSu3KFkRb1lI.crl (hash: oLsOSE60Y7ZXC8FvajUfVscj6H8Hl/4KF2zNMLJQ9Ng=)
2: FuulQ2OCXlEeKOdXSHSbO4OXD9g.roa (hash: vDsoze7SRq5/DcfNiXEwTROz6jQawFkLYnYc3el4ix8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:1f:87:b5:5c:3b:ef:17:77:40:35:a9:9e:4a:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08285473c978ca51ce5469aa4aedca16445bd652
Validity
Not Before: Nov 11 03:01:05 2025 GMT
Not After : Nov 12 03:01:05 2025 GMT
Subject: CN=d1c7f0a7037b9c25907b60b5fdcf329c81d86eda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:2a:3a:a1:fc:32:98:6a:2f:ff:31:f8:da:8b:
aa:bf:f1:ba:ee:f9:43:73:ec:16:c6:ed:ba:3c:72:
8d:ed:ed:fc:30:ab:99:0a:63:c6:80:8e:12:26:67:
07:8d:45:cc:20:a7:07:f3:72:ff:6d:77:5f:8a:62:
41:7d:da:3f:a8:0c:5a:14:c1:3b:9d:30:ff:2c:61:
a3:7b:8c:08:55:0c:42:7b:60:c5:e9:20:cf:ff:54:
a4:1f:ff:a9:a7:2b:81:28:be:13:58:cf:2b:29:26:
1d:4b:a6:9e:a4:df:05:d6:d7:b9:31:1f:29:c6:3e:
4b:13:f6:51:cb:94:79:bd:79:1c:9e:96:27:9b:dd:
68:ea:69:62:3f:50:86:a2:0e:ec:2c:15:9b:97:43:
7b:8b:2e:58:7c:83:10:7d:57:15:ab:23:24:e9:23:
d6:8b:bf:c5:1a:f0:e9:a7:b6:3b:0c:d3:ad:87:04:
71:51:98:58:eb:cd:27:71:28:45:8b:8f:dd:53:99:
b7:b0:d4:a1:49:6b:87:83:b3:d9:b0:28:31:a1:ca:
a4:7b:f5:0d:c5:76:3c:aa:12:89:f0:13:c6:22:7e:
95:1c:7e:10:38:60:0b:4d:7b:c9:44:b0:48:e0:3d:
48:c8:84:32:ef:21:5b:79:4b:53:28:8c:3f:79:1e:
b5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:C7:F0:A7:03:7B:9C:25:90:7B:60:B5:FD:CF:32:9C:81:D8:6E:DA
X509v3 Authority Key Identifier:
keyid:08:28:54:73:C9:78:CA:51:CE:54:69:AA:4A:ED:CA:16:44:5B:D6:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:a7:92:c9:10:c8:f3:2a:5b:b7:07:dc:57:94:5c:75:95:56:
14:ec:d2:70:8f:f0:f0:87:bc:d9:99:25:ff:85:24:14:74:f2:
26:e8:16:08:d1:e9:33:03:87:0c:a0:77:13:40:96:40:a2:44:
d5:b4:5a:64:f7:3f:74:68:3d:87:5c:93:25:c1:ca:5e:c3:04:
df:dc:01:31:b2:f0:9e:ce:ac:3f:7b:19:0b:3b:15:62:7c:ec:
56:a9:a8:58:8f:23:67:24:b2:0a:5d:1b:c3:fb:53:cb:97:35:
e5:96:c0:8d:e8:01:0d:4d:0b:d4:b4:4d:33:55:83:a0:03:de:
38:dd:25:d6:c1:0e:bc:2e:40:f2:22:03:79:32:31:28:12:cb:
a1:c4:d4:cc:46:b2:a2:7b:3c:6e:56:93:42:a5:71:34:fa:7d:
7e:e0:c4:c8:39:42:1a:65:9a:cc:b6:9c:16:f5:1e:93:6a:9f:
38:38:a3:4f:ca:b6:2c:11:ae:9c:7f:b3:a4:75:97:c3:ad:6d:
3e:fb:19:f7:3d:e9:98:c1:62:03:9f:52:d3:43:34:52:3f:15:
4f:0f:6d:b8:46:27:5a:74:17:17:3d:64:fe:a8:1d:d8:73:ac:
05:7a:d3:34:df:c1:ee:1c:e0:df:ac:f9:2c:1c:59:5f:75:c8:
65:a0:cf:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:30 2025 by rpki-client