Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.mft
File: RkVleaUXL8oI4EOwK7ly-3UDrq8.mft (raw, json)
Hash identifier: bYqB1yOVIcqY8xPRzEcj2UxKNz0hQt0NFYaYR6+m7bo=
Subject key identifier: 79:5B:C4:AC:81:20:E5:EE:44:89:47:F6:67:AB:D1:ED:83:1A:A3:1B
Authority key identifier: 46:45:65:79:A5:17:2F:CA:08:E0:43:B0:2B:B9:72:FB:75:03:AE:AF
Certificate issuer: /CN=46456579a5172fca08e043b02bb972fb7503aeaf
Certificate serial: 019A72938379B867098D4422E89A63FDD220
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RkVleaUXL8oI4EOwK7ly-3UDrq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.mft
Manifest number: 1474
Signing time: Tue 11 Nov 2025 11:01:01 +0000
Manifest this update: Tue 11 Nov 2025 11:01:01 +0000
Manifest next update: Wed 12 Nov 2025 11:01:01 +0000
Files and hashes: 1: 6--mKTLhcJSvHElJeuoDt_lQE_Q.roa (hash: SXpjKVkVSr9zsLSxhubs4WsDg8DBpMmGqFFwLSfPmwo=)
2: RkVleaUXL8oI4EOwK7ly-3UDrq8.crl (hash: BGkPQxq3DMAGLhPiG/UsLWgSEe+XWqMjd3pXdqMJ/n8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RkVleaUXL8oI4EOwK7ly-3UDrq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:93:83:79:b8:67:09:8d:44:22:e8:9a:63:fd:d2:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46456579a5172fca08e043b02bb972fb7503aeaf
Validity
Not Before: Nov 11 11:01:01 2025 GMT
Not After : Nov 12 11:01:01 2025 GMT
Subject: CN=795bc4ac8120e5ee448947f667abd1ed831aa31b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6a:6d:7f:33:bf:67:f5:35:43:cd:78:4c:89:
82:c6:26:fa:ff:29:79:35:fe:74:42:45:3a:5d:f0:
11:a1:d4:a2:08:e9:a3:3b:9f:99:37:e1:30:d5:7d:
fe:ae:54:4e:41:9e:55:a2:92:70:d5:d9:e2:f2:b5:
af:9b:b1:4f:00:59:c6:e8:a7:34:89:38:5e:3a:73:
60:6d:79:a1:b5:ff:8f:7a:e9:ab:11:9e:90:ca:15:
9f:25:08:68:5d:b3:ad:a5:ed:18:56:9b:48:ae:df:
51:61:93:68:79:ea:6c:2c:49:de:9c:8e:ae:93:23:
be:bd:ac:00:e1:70:2d:95:44:81:ed:c6:8b:5f:d8:
b4:da:ca:ee:a8:ce:94:8c:6e:81:0b:0c:1b:3f:e9:
81:97:39:c8:ff:f6:46:2c:af:32:f9:39:28:87:a9:
ed:61:ec:af:47:d1:42:2b:28:44:22:ce:d5:bd:57:
6e:2c:b1:f5:68:0f:4c:b1:3f:63:8a:3d:6b:2f:26:
34:9c:fe:cf:5e:27:1e:4f:b1:d5:13:07:dd:18:fd:
66:24:98:13:4a:b2:79:4b:75:b3:31:9f:7b:73:a7:
5a:e9:53:32:f6:d5:6f:aa:b4:1f:ef:7c:67:89:e7:
f8:6a:d9:d7:0c:52:e3:e6:40:ee:88:67:4f:34:dc:
20:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:5B:C4:AC:81:20:E5:EE:44:89:47:F6:67:AB:D1:ED:83:1A:A3:1B
X509v3 Authority Key Identifier:
keyid:46:45:65:79:A5:17:2F:CA:08:E0:43:B0:2B:B9:72:FB:75:03:AE:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RkVleaUXL8oI4EOwK7ly-3UDrq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/ec9e26-20f2-4e23-a08f-a34c855b5aab/1/RkVleaUXL8oI4EOwK7ly-3UDrq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:22:a7:51:92:bb:f1:3b:44:fc:f1:58:c5:0c:7d:b7:d7:64:
5f:fb:09:0a:2c:39:4b:3a:cb:5c:38:23:3d:99:14:e6:af:94:
e9:f7:ca:a2:1e:72:b9:f4:b0:32:73:19:98:ba:5b:c4:f9:fa:
36:c0:6a:93:17:a0:04:11:d1:66:df:c5:2b:45:fb:c4:34:a9:
a0:d9:46:a0:53:6c:ad:72:f2:dd:55:c4:6d:0c:2a:50:22:81:
8b:fc:84:5a:23:4c:32:d8:06:75:5a:42:47:22:5e:f2:57:ad:
f3:41:b7:81:da:cd:e8:b5:91:11:ad:db:9a:00:ae:af:6e:39:
53:b6:84:95:fa:9e:62:6c:c3:c3:83:11:0f:2d:d7:c9:f8:7b:
4b:17:35:4d:80:80:1f:62:b3:14:e9:9e:09:af:e1:78:8c:20:
c9:df:2c:d6:ea:3a:11:d8:97:4c:46:13:80:2c:e4:1d:da:2f:
55:8b:d0:92:0f:99:7e:70:d0:67:31:dd:d5:de:d5:ad:f5:27:
c1:5f:09:76:cf:b3:3a:49:9a:70:82:35:7a:17:73:dd:15:57:
f8:d1:55:d8:03:bf:cc:27:00:da:21:9c:47:55:f8:b2:0f:4d:
19:0b:cf:c7:be:09:b9:b0:19:c1:7f:c4:9b:eb:b2:2d:c3:7e:
d1:b1:7f:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:21:52 2025 by rpki-client