Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: MJwAWgx0kLtGABdYD8C5fq3+4oe8PVUNudaGd7S6hwQ=
Subject key identifier: 67:45:73:15:EC:ED:2B:31:3F:2C:29:C4:C7:A6:2D:F7:96:8B:BC:B1
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 019A57C0DAB270AF2E7EFE4041CC6909C617
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 098B
Signing time: Thu 06 Nov 2025 06:00:47 +0000
Manifest this update: Thu 06 Nov 2025 06:00:47 +0000
Manifest next update: Fri 07 Nov 2025 06:00:47 +0000
Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: B/yF3BvzcZvz0IrMSfEqqLpdNKh1B1HZ/O2NyC5EYsE=)
2: eScdjGWs1U9IpMmrjPWOhIIwqvU.roa (hash: x3okkqhpjy6dpCXY46GTivoDmGIYftmyUmWz/IE8R4c=)
3: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=)
4: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Nov 2025 06:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:57:c0:da:b2:70:af:2e:7e:fe:40:41:cc:69:09:c6:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Nov 6 06:00:47 2025 GMT
Not After : Nov 7 06:00:47 2025 GMT
Subject: CN=67457315eced2b313f2c29c4c7a62df7968bbcb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8f:46:b9:2a:1f:54:f7:87:a0:c4:33:6a:eb:
99:4c:99:1d:0a:e1:33:d8:33:10:f7:d7:6f:c1:c1:
66:45:06:e4:c1:44:cb:ff:96:c4:2d:fc:85:40:3e:
86:b4:4c:ad:f8:e0:fd:c8:c5:b3:04:0c:e7:e4:dc:
81:0e:25:26:b9:2c:b5:72:f4:e6:31:b2:a1:43:3d:
97:9c:f6:9f:95:fe:55:79:bd:18:1a:4d:10:59:b7:
ef:91:8a:b9:31:d2:12:e9:4a:49:75:0f:1a:4d:b3:
3f:93:bd:7f:27:4d:a5:9b:f6:04:19:9b:5e:7f:26:
d2:15:1c:3c:26:b8:33:57:10:83:f2:b6:c6:4f:7c:
66:58:31:91:e8:33:11:b4:e9:6d:df:17:36:13:88:
71:de:d5:92:14:d8:22:14:d1:e5:2a:fd:e7:7c:d5:
1b:8a:ff:f5:1f:b4:4e:76:77:5f:27:d9:a2:fc:e4:
20:22:59:fa:26:37:34:15:d2:e1:c2:56:06:8d:0f:
71:4c:cf:92:a1:10:cb:17:b3:67:fc:85:3a:a8:85:
3a:e1:ee:b8:ed:df:bb:5a:7f:f7:c5:d6:da:71:bd:
b0:f7:3f:45:b4:d6:af:7f:34:a4:ee:27:45:e8:17:
f2:71:e9:af:f4:88:62:75:01:04:f4:4e:09:1b:dc:
08:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:45:73:15:EC:ED:2B:31:3F:2C:29:C4:C7:A6:2D:F7:96:8B:BC:B1
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:ae:4e:d1:51:9d:c4:a7:af:75:13:20:94:b2:ec:79:af:6b:
26:fe:9a:57:8f:40:4e:e0:50:fd:ea:d7:7c:52:75:b5:16:43:
52:fb:5f:04:06:3c:5c:bc:ef:88:6a:7f:f3:61:bb:c5:74:9d:
8c:68:0e:3a:b5:49:e7:71:1c:cf:ac:7d:a8:60:a4:e2:dd:5f:
51:26:ec:3d:27:c7:89:f2:4d:b9:02:7f:39:f3:d6:c3:05:e4:
1f:52:de:2d:46:b0:ea:46:2f:6a:90:75:5b:e2:6d:5a:6c:94:
1e:26:e9:c6:9e:07:7b:2a:7c:7b:4b:de:c0:a5:f2:0d:05:39:
76:b4:52:d5:07:4a:3a:25:63:9f:e3:6f:02:1b:15:6b:37:c6:
fb:d4:29:26:41:49:3b:51:8a:d4:1d:05:70:c9:2a:d7:76:ad:
ed:98:6a:04:30:2a:00:47:ca:df:5f:9e:5a:b2:9d:d3:02:42:
d6:2d:63:b5:20:5f:f5:6b:92:85:07:f0:83:1e:9b:0f:ee:1c:
77:c9:2d:db:f4:8b:5f:be:2d:32:b8:98:0e:65:e6:08:4d:ed:
6e:66:cc:72:e4:35:bf:75:95:65:2c:a9:6a:7b:36:17:eb:99:
fc:61:e2:b4:89:d8:9d:da:b3:eb:cc:d1:cc:1e:4a:38:3a:dc:
6a:d4:ff:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 14:51:56 2025 by rpki-client